IBM Support

LO68985: WHEN RENAMING INOTES USER, THE USER ID IS NOT RENAMED IN ID VAULT FOR INOTES USERS WITH USER ID STORED IN MAIL FILE

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as unreproducible.

Error description

  • When renaing iNotes user, the user id  is not renamed in Id
Vault for inotes users with user id stored in mail file

Steps to reproduce

1. Install 853 domino server and  administrator client

2. Set up Id Vault

Make sure that the if vault security policy has selected the
option: "Allow Notes-based programs to use the Notes ID
Vault=YES"

2. Register a Test User with the following options:

mail  system =  " Lotus iNotes" and the user.id is placed by
default in the id Vault and also select to include the
user.id "in mail file"

3. Verify that the registered test user, has the user.id
correctly included in the id Vault.

4. Verity that the registered test user, has the user.id
included in the mail file:

By logging with the test inotes user with the browser go to
Preferences> Security> contains the confirmation "Your mail
file CONTAINS a Notes ID"

Also the button Sync with Vault is active

5.  From Administrator client> People and Groups> select the
person document of the test user

6a. Go to Tools> People > Rename> Select "Change Common Name"
Select "Change Common Name"

Choose a Certifier> and enter password in the rename person chan
name <does it not matter>

For example rename from


Test User7/ACME to Renamed User7/acme


click ok


6b. After this in Admin4. nsf is generated the request type
"initiate rename in domino directory" and is completed


7. As documented on  TN  1216004 for the rename to go ahead is
required to encrypt or decrypt a message

If the user is an iNotes user only, they must encrypt or decrypt
a message in their mail file.  Note:  In order to encrypt or
decrypt messages, the user's Notes ID must be stored in their
mail file (e.g., iNotes Preferences -> Security -> Import Notes
ID).
At this point the remaining AdminP requests will be generated
and

Title: How to rename an iNotes (DWA) user with a Notes ID
Doc #: 1216004
URL: http://www.ibm.com/support/docview.wss?uid=swg21216004



Sent an encrypted mail to the Test User.and make the test user
to open this mail from inotes browser.


8. Let AdminP to finish to completion:

all this request get generated and completed

Rename person in domino directory
Rename in Acces Control List
Renaem in Person Documents
Rename Person in Unread list
Rename Person in free time database
rename person in calendar entries and profiles in mail file
rename in Reader/Author fields
rename person in calendar entries and profiles in mail files
extended
rename in design elements


9. In the security events from the server log.nsf upi can see
that synchronization
for the "Renamed User/ACME" has occurred with id vault


10 . In id vault nothing is changed. The old name still showing
if you extract the id form the id vault for the renamed user,
still the old name appears in this extracted id


11. In the test user inotes renamed if you go  ahead and click
manually on the button>Preferences> Security> Synch with Vault

appears the error message " Failed to Authenticate"


Conclusion:  The rename seems to complete in AdminProcess. The
Test User is renamed in the Person Document, in the ACL... but
the user.id is not renamed in the id vault


The user gets renamed on the Person Document, in The ACL... but
the user.id in the id vault does not get renamed and also the
user loses the possibility to send encrypted mails or sign mails
with the user.id that originally was uploaded into the user's
mail file.


If you open the mail file of the test user with Notespeek
The user id embedded in the mail file  seems not to have any
update, according to the time stamps, Created and modified
matches the same times

Also if you open the id vault database with notespeek the
user.id for the renamed user is not changed.


1. What is the proper iNotes rename user process?
2. Whhere rename information is kept and
for how long (in case iNotes user must login using Lotus Notes
client).

Local fix

  • No fix available

Problem summary

  • This APAR is closed as FIN. We have deferred the fix to a
 future release.

Problem conclusion

  • 



Temporary fix


    

  • 



Comments


    

  • This APAR is associated with SPR# BBSZ8TPDSU.
Fixed in 9.0/8.5.3 FP5

    



APAR Information




    

  • APAR number
    LO68985
    • 

  • Reported component name
    DOMINO SERVER
    • 

  • Reported component ID
    5724E6200
    • 

  • Reported release
    853
    • 

  • Status
    CLOSED  UR5
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt
    • 

  • Submitted date
    2012-04-25
    • 

  • Closed date
    2013-05-08
    • 

  • Last modified date
    2013-05-08
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    



Applicable component levels


    

  • R853  PSN
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU055","label":"Cognitive Applications"},"Product":{"code":"SSKTMJ","label":"Lotus Domino"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"8.5.3","Edition":"","Line of Business":{"code":"","label":""}}]
              

                                                                    

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            08 May 2013
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback