SlideShare uma empresa Scribd logo

Adminblast 2013 Tips for Managing IBM Lotus Notes and Sametime

Gabriella Davis
Gabriella Davis
1 de 69
Baixar para ler offline
BP101 Adminblast 2013 Paul Mooney | Bluewave Technology Gabriella Davis | The Turtle Partnership
Paul Mooney § Geek –Lotus software since R2 –Symantec Authorised Consultant –Google Certified Deployment Specialist § Speaker, Author, Blogger, jogger, biker –www.pmooney.net § Bluewave Technology –26 staff –Operate globally 2
Gabriella Davis § Proud Nerd Girl –Mathmo / Problem Solver / System Designer / Optimist § ccMail & Agenda then Lotus & WAS –I’m much older than I look § Co-Author of Sametime 8.5.2 Admin Guide –Available at all good bookshops but mostly Amazon –Domino & Exchange, Sametime & Lync Server, Sharepoint § Co-Author Connections101.net (being updated for Connections 4) § I present a lot globally & blog in fits and starts § The Turtle Partnership –High Level Support of IBM Lotus products • 20% support, 40% system design and implemtation, 40% development • 50% of our customers are in Europe and 50% in the US (nothing against Australasia mind you) 3
About This Presentation §Provides you with a brain dump of useful tips §Presentation is self-contained –There is plenty to cover –All the information you need to implement these tips is in this presentation §There are over 60 tips –Although some “tip pages” have more than one tip! §If you have any trouble with a tip, email me at: pmooney@pmooney.net §Paul keeps his two favourites in each year –Sue me §Gathered from life in the real world §Gathered from forums §Gathered from blogs 4
Right... what about the other Adminblast sessions? §Go to www.pmooney.net/resources §Many presentations there §Different versions of this one §Download away! §The latest and the “must know” slides are repeated this year. –I have favourites –You will ignore my recommendations anyway 5
Let’s get Legal! ● This slide presentation may contain the following copyrighted, trademarked, and/or restricted terms: ● IBM® Lotus® Domino®, IBM® Lotus® Notes®, IBM Lotus Symphony®, LotusScript® ● Microsoft® Windows®, Microsoft Excel®, Microsoft Office® ● Linux®, Java®, Adobe® Acrobat®, Adobe Flash® ● Your mileage may vary ● My mileage may vary ● Fill out the evaluations ● Buy us a beer ● Today is “punch a developer in the face day” ● No.. really it is 6
Tip #1: Separate domain / same certificates § For scaling and security § What if you need servers in a separate domain –e.g. Traveler server –e.g. Very large environment with regional management. • May be easier to have separate domains • Issues when users travel between them § What if you do not want to deal with cross certification § When creating a new server –Use existing certifier id files –Use existing server id files • Have them registered using the O or OU that you already have in place § Now you just have to deal with domain security –Certificates will match 7
Tip #2: Find what ACL’s contain a group / user § There are many ways to skin this cat § Adminp has one built right in! § Admin client / People and groups § Right click on Group –Find group –Adminp request submitted § And you get... 8
Tip #3: Message Tracking store and index § The Message Tracking database (MTStore.nsf) database –Needs to be indexed § This index can get corrupted § Can be reindexed by –“tell mtc reindex” § Force daily re-indexing by –MTCCompactReindex=1 9
Tip #4: Traveler and tracking device data § Want to know how much data is being used per user? § Enable domlog.nsf on traveler server § Build a new view –@Contains(Request,"/servlet/traveler") & AuthenticatedUser!="-" § Modify the columns as needed –User/Data etc 10
Tip #5: Catalog.nsf and disk % used § Since Domino 8.0.2 the application % used field is 0 on all documents in catalog.nsf –Be design § What if you want/need this data back in catalog.nsf? –CATALOG_DISK_USAGE=1 § Re run catalog and boom... § Be aware –Heavily used servers with many databases –This can slow down the cataloging task 11
Tip #6: Manually uninstalling plugins § Sometimes... –Plugins will not uninstall nicely / cleanly • Testing • Coding § Mikkel Heisterberg wrote up a manual process –Can be very useful § http://lekkimworld.com/2010/03/17/ complete_guide_to_manually_uninstalling_plugins_from_lotus_notes.html 12
Tip #7: Remove old SSL certificate compliance § Domino is *very* backward compliant –Can accept very old SSL certificates § Penetration tests / security compliance companies –Do not like this § Go to internet site documents / security –Remove older / lower size 13
Tip #8: Remove trace/demo http options § While we are talking HTTP security § Domino internet site documents –Permit a variety of http request types –GET, HEAD, POST are the “typicals” –Domino also accepts OPTIONS, TRACE § They are not needed for typical websites § Remove them in the internet site / configuration tab 14
Tip #9: Upgrade Traveler to Upgrade packs § Traveler now has two upgrade packs to raise it to 8.5.3UP1 or UP2 § Upgrade your traveler server to the Upgrade pack § It’s not all about High Availability –You do NOT need to go DB2, SQL backend § There are other security and configuration alterations/features § Note - upgrading to UP upgrades the database design –Have noticed this taking quite a bit of time, so be aware § Side note... you do know that Traveler data is in a Derby (not notes) database? –Ensure you are backing up the traveler data on any traveler server 15
Tip #10: Be NICE § Sometimes Notes clients don’t uninstall/upgrade properly –Left like a cat –Half in and half out of the world § Notes Install Cleanup Executable tool –Works on notes clients from 6.x up § Completes a “clean” uninstall by: –Killing all tasks –Removing all files –Removing all Registry entries –Optionally removes data files § More information here –http://www-01.ibm.com/support/docview.wss?uid=swg21459714 16
Tip #11: Me, you, MUMA § Notes has been installed many ways over the years § Local installation, network installation, 1/2 network installation § Makes it difficult to manage/upgrade § Multi user based versions of Notes client are good –Been around many years now –Personal data stored in Windows profile user directory –Shared/common data stored in the shared area § Moving from old style to this style is tricky to automate § Enter Multi User Migration Assistant –Tool moves the local setup to multi-user configuration –Moves “network” setup to multi-user configuration § More details here –http://www-01.ibm.com/support/docview.wss?uid=swg21459627 17
Tip #12: Finding Users In A Nest § Wildcards in groups are great and very useful, as are nested groups § The problem is determining which groups a user is in when they may only be a member of a group because they are a member of another group 3 layers down in a nested membership § Go to Domino Administrator - People and Groups § Choose - Groups and Manage. Select a user and click “show member hierarchies” 18
Tip #13: Stop Clients and Agents Creating Indexes § Ever seen this on your console? § "Warning: Agent is performing full text operations on database '<name>' which is not full text indexed. This is extremely inefficient." § This a BAD thing § If you have an agent that is set to do a search or a user who tries to search their mail file and the database isn’t indexed, the Domino server will try and create an index on the fly which is both unreliable and inefficient § FT_FLY_INDEX_OFF=1 –Will prevent users from searching where no search exists –Will prevent the agent from creating the index –Forces the agent to return with error “db not indexed” –BUT, it saves your server from unnecessary work 19 8
Tip #14: Restricting which clients can login to your ST server § In the sametime.ini you can control which client types are allowed to login to a Sametime server § The ensures you know which clients (including mobile clients) are being used in your environment § If user’s can’t login it may be they are using a client type you don’t authorise § In the [config] section of sametime.ini use the value with each approved type separated by a comma VPS_ALLOWED_LOGIN_TYPES=xxxx.xxxx § IBM supply a list of all known client types you can use to construct your sametime.ini setting http://www-01.ibm.com/support/docview.wss?uid=swg21114318 20
Tip #15: Allowing Multiple Sametime Logins Simultaneously § Very useful whe deploying ST Mobile clients so the desktop client doesn’t get logged out § Messages will be sent to both / all logged in client screens § Edited in the [config] section of the sametime.ini § VP_ONLY_SINGLE_LOGIN_ALLOWED=1 § VPS_EXCLUDED_LOGIN_TYPES=xxxx, xxxx –honours single login allowed but ignores the listed login types, allowing for mobile and desktop clients to be logged in at the same time but not two desktop clients § VPS_PREFERRED_LOGIN_TYPES=xxxx,xxxx –If a user is logged in on more than one client, this determines which client a new chat is sent to § IBM list of login types are here http://www-01.ibm.com/support/docview.wss? uid=swg21114318 21
Tip #16: Single Sign On and tracing authentication § Testing authentication over http? § Fantastic tracing parameter! § WebAuth_Verbose_Trace=1 –Shows authentication attempted when user tries to login • name • group memberships • hierarchy being validated • success or failure § Extremely useful when configuring SSO between different environments such as WebSphere and Domino to identify why a user might not be authenticating 22
Tip #17: Token and Token 2 for SSO § Pre v7 of Domino Single Sign On used “token” to generate LTPAToken § Post v7 Domino can generate and recognise both Token and Token 2 (the newer format) • For SSO to work both / all servers must use the same format § By default WAS now uses Token 2 only. To get WAS to also generate and recognise Token you must enable “interoperability mode” in the SSO configuration in WAS § Domino configuration is in the Web SSO document in Domino § A mismatch will cause SSO to fail completely 23
Tip #18: Take Full Text Indexing Out of Domino Memory Pool • When performing FT indexing , Domino will pull memory from its own resource pool to build the index • Large indexes can consume a lot of memory from the total pool Domino has allocated to itself • Using FTG_USE_SYS_MEMORY=1 in notes.ini, you can instruct Domino to take memory out of the OS resources for large indexing an free up the Domino pool 44
Tip #19: Separate View Updates from FTIs • The same update task is responsible for both view index builds and full text index builds • Applications requiring a lot of indexing or a server with many applications and a high number of transaction can consume the update task completely and stop view indexes being built in time. • Separate the FTI update from the view update generating two separate threads, one for view indexes and one for full text indexes s FTI updates happen in their own memory thread s Performance improves • Update_Fulltext_Thread=1 43
Tip #20: Move full text indexes to separate directory § 853 § FTBasePath=d:full_text § Restart server § Updall -f § Works on client too 26
Tip #21 XPages § The XPS engine is enabled by default in Domino § You may not want it § It can be disabled § INOTESDISABLEXPAGECMD=1 § Restart htttp... and it’s gone § Fantastic for screwing with developers. 27
Tip #22 Compact filtering § Exclude specific databases from scheduled compacting § Add line to domino notes.ini –COMPACT_FILTER=DBNAME.NSF,DBNAME2.NSF § These databases are skipped –Console displays message 28
Tip #23 8.5.3 Agent manager and compact § Ever have a scheduled agent fail as it was being compacted? § Will not run agent again until –AMGR restarted –Nightly cache reached § New line –DEBUG_AMGR_ENABLE_RETRY_ON_COMPACT=1 § Agent will now run on next scheduled attempt 29
Tip #24: Extending Your Logs § Default log keeping on LOG.NSF is sometimes too short –I tend to recommend at least 14 days of logging § Modify the NOTES.INI on the server –LOG=LOG.NSF, 1, 0, 14, 40000 • “14” is the number of days LOG.NSF records data § BUT... the longer the log, the longer the restart –After a crash § What if you want/need the log data on the server 30
Tip #24: Archive your log § Set up archiving on your log.nsf database –Database Properties / Archiving § Run compact -a program document against log.nsf nightly § Now you have access to older logs without performance impact 31
Tip #25: Remotely connect to your servers § Most of you cannot get to your servers with ease § Some of you don’t know where they are § We all use remote viewing software –RDP, VNC, Netsupport etc etc etc § Add the following to your notes.ini –RemoteProgram=pathfilename %hostname% –Mine is RemoteProgram=C:vncvncviewer.exe %hostname% § Will now try to open session § Note - have found issues if under directory structure with spaces (e.g program files) 32
Tip #26: Cluster servers and view indexes § Clustering works § Failover works § Can be an issue in active/passive clustering environment –Users waiting for $Inbox / $All view to update when using an “unused” mail file § Run an updall program § Load updall mail -c -t ($All) § Load updall mail -c -t ($Inbox) 33
Tip #27: Is your Update task too busy? § Default recommendation is to run n Update tasks –n= No of processors - 1 § Before you do that, is the update task busy?? § Sh Stat Update.Pending* –Update.PendingList - Number of unprocessed requests in the pending queue –Update.DeferredList - Number of unprocessed requests in the deferred queue –Update.FullTextList - Number of unprocessed requests in the FT queue –Also .Max for each one – Maximum number of requests in the given queue § If they are not busy, they are consuming resources 34
Tip #28: More compact options! § 8.5.1 and up only § Add the following to your server notes.ini –DEBUG_ENABLE_COMPACT_8_5=1 § You now have more compact options –Load Compact -W nn • Compact databases NOT compacted in the last number (nn) of days –Load Compact -w • Compact system databases only –Load Compact -X nn • Limit the time for compacting databases to number (x) of minutes –Load Compact -# nn • Start multiple (nn) compact tasks simultaneously 35
Tip #29: One missed last year § Load Compact -O<ODS Version Number> –Run compact against database running this ODS version only • e.g. Load compact -c -O43 § Load Compact -o<ODS Version Number> –Run compact against all databases, skipping dbs running this ODS version • e.g. Load compact -c -o43 36
Tip #30: Backup software and memory § Server backup runs utilise Domino shared memory § If server is already peaking memory usage –This can get nasty –Backups at night... what else is running? § Add this to your notes.ini –NSF_BACKUP_MEMORY_CONSTRAINED=1 § Limits memory that can be used by the backup software to 20MB § You can increase this –NSF_BACKUP_MEMORY_LIMIT=bytes § IBM recommend never going beyond 300MB § I have already seen this prevent backup related crashes 37
Tip #31: Clean Up Workspace / Rebuild Workspace § What do you do when a Notes client won’t load or appears corrupt § First we test with nlnotes.exe to see if it will load, if it will we know it’s a problem with the eclipse client § There are two client commands you can run to reset the workspace completely Clear Workspace § From a command Prompt § Launch the command prompt and type in the following to recreate the workspace: § "{path to the Notes directory}" then use "{path to the Notes directory}:notes -RPARAMS - resetconfig Clear Cache § From a command Prompt § "{path to the Notes directory}" then use "{path to the Notes directory}:notes -RPARAMS - clean. 38
Tip #32: Synchronise mail file quotas in clusters § Not available in client § Code available in community § http://www.thenewdominoadmin.com/blog/?p=2072 39
Tip #33: Server restrictions § New settings with Domino 8.5.2 FP3 and 8.5.3 § Server_Restricted –No new opens are allowed. –Existing opens still work. –Allows the Administrator to connect using remote console. –The restricted server will be able to initiate replication with other servers. –Other server will not be able to initiate replication with the restricted server. –The server will be able to route existing mail in its mail.box(es) for transfer or delivery. –Other servers will not be able to route mail to the restricted server. § =1. Is set back to 0 (unrestricted) when the server is restarted. § =2. persistent through server restarts § =3 as setting “1” but also blocks all replication from client replicas NEW § =4 as setting “3” but persistent through server restarts NEW 40
Tip #34 Change Attachment Handling on Client § Notes client gives options with attachments –Users get confused –Too many options! § Remove the options! –AttachmentActionDefault=1 –Double-click on attachment opens attachment by default 41
Tip #35: Know when Full Access Admin is being used § Should NOT be your default way of working § Domino servers log when FAA has been enabled against them § Use DDM to monitor for this § Have separate IDs for FAA rights so an administrator can’t use their regular ID 42
Tip #36: Disable Export of View Data § Database property - disable export of view data (8.0.2 and later) § File - Export option is still on the client menu but won’t bring up an export dialog § Can be applied on a template and propagate to any database based on that template § Make sure users have Editor access or less otherwise they can disable the setting! 43
Tip #37: Create A Local Replica Stub Of A Large Database § You’ve got a large database replica on a client or a server in another domain § You want to replicate it to another server but don’t want it to tie up your client whilst it does that –what you really want it background replication but you can’t do that until the a database stub at least is there § When doing File - New Replica - client on Options and create a fake replica formula eg form=”nonsenseform” –The database will create a replica with design elements but no documents because none of the documents meet the selection criteria § Once the replica stub is created you can remove the replication formula and then use background replication to send the documents over 44
Tip #38: Beware Size of Schema.NSF § Schema.nsf is used by the ldap task to analyse and translate LDAP queries § It’s based on schema.ntf which is a standard Domino template and the database should be less than 10MB in size when created § In some envrionments we’ve seen schema.nsf grow to 100s of MB or even multiple GBs in size and when that happens the LDAP task will be slow to respond to queries and could take up to an hour to load § This usually happens when schema.nsf is on multiple servers which are different versions or have been upgraded several times and all servers are allowed Editor access or higher to the documents resulting in hundreds of thousands of duplicate documents each populated by a different server § Delete the schema.nsf from all servers, load LDAP on the administration server and let it replicate out to the rest of the Domain 45
Tip #39: Running LDAP on Administration Server When You Aren’t Using It § For LDAP to work in your environment it must first be loaded at least once on the Administration server of the domain § The Administration server creates the schema.nsf § Any other server in the domain that runs LDAP pulls a replica of schema.nsf from the Administration server § If you’re not using LDAP on the Administration server, once the schema.nsf is created you don’t need to keep running it and can stop LDAP § Just remember LOAD LDAP once on the administration server after each upgrade so the schema.nsf gets updated and will replicate out to the other servers in the domain that are running LDAP 46
Tip #40: BASE_DN when using Domino as LDAP § Although Domino is an LDAP server it is about the only LDAP server that has non hierarchical entries § When a system connects to an LDAP server it usually wants the “Base_DN” defined, that’s the starting point in the hierarchy that all valid entries must share –In Domino that would usually be O=Turtle for instance § If you’re running web applications then your users may not have hierarchical names in which case you may struggle to define a Base_DN that captures all the users you want § This is especially problematic if you want to connect a WebSphere based product with a Domino LDAP directory. For that we have a couple of cheats –c=US. The C hierarchical level is actually above O (organisation) and isn’t used in most companies. C=US will usually capture all entries including groups and non hierarchical users –root - for WAS 7.0.0.19 or higher. Using the word “root” as a base_dn in newer versions of WebSphere will also capture all users and groups regardless of hierarchy 47
Tip #41 Understand file protection documents § Domino can be used / is used for serving non .nsf files –HTML –CGI –Images § You can protect these using an “ACL” –File protection documents –Protect a folder/file –Works just like an ACL –Uses domino directory authentication • Want to hide some files for selected download? 48
Tip #42: Let’s take a moment to ponder the number § Paul will not speak during this slide... § Paul has a wish.... § It involves server id files § He makes this wish every year § It involves passwords § Put passwords on your server ids please § Paul is considering threats –For every server id without a password, he will punch a baby in the face –For every server id without a password, he will execute a puppy –For every server id without a password, he will make the admin team run vista –For every server id without a password, he will make you attend a session saying “strategic” in the title § Paul will continue the presentation when everyone in the room agrees to set passwords on their server id files... 49
Tip #43: Validate Internet Address § Internet addresses need to be unique across all directories and person documents § There is a utility in Domino Administrator that will check all directories on a server to verify if there are any addressing conflicts § From Domino Administrator People and Groups choose “Validate Internet Addresses” under “People” 50
Tip #44: PIRC § New with 8.5.3 Purge Interval Replication Control § A database doesn’t replicate with a server for a year and then suddenly, one day, someone switches on an old machine and this old database (usually containing names.nsf) suddenly replicates. –and brings back all the deleted documents that are more than 90 days old with it § Suddenly your server replica is full of old documents you deleted months ago § A new database property on a database running on 8.5.3 or higher will prevent documents old than the purge date from replicating back in § To turn on PIRC to a large number of databases use Compact '-PIRC On' § The replicating client or server will think it has replicated successfully but the receiving server will reject the unwanted notes. To see what’s happening you can enable –DEBUG_REPL_PIRC (1 for general info , 2 for specific data info) –Replicate -NOPIRC will force PIRC to turn off for that replication session only 51
Tip #45: The mysterious growing HTML font size... § Ever play email tennis? –Ever see replies getting bigger? • Ever see the next reply getting bigger again? § Well.. these were supposed to be regulated by the configuration document –MIME/Settings by Character groups § From 8.5.2 –This value is ignored –HTML font size is fixed at 12 52
Tip #46: Set conf versus config doc § Set conf –Useful –Fast –Dymanic (usually) § Config document –Structured –easier tomanage § Lets have both! –EnableSrvCfg_nab_Update=1 –As you type in set conf commands, they go intot he config doc § Alternatively –Append ‘update’ to set conf commands 53
Tip #47: Remove the banner details from http server § Standard security recommendation § Most web servers will broadcast “what” they are –Including Domino § Add HTTPDisableServerHeader=1 to server notes.ini –Information not given § This is obscurity, NOT security 54
Tip #48: Client clock feature § Basic method of testing nrpc response times § Sometimes useful for testing support § ClientClock=1 / 2 / 3 in notes.ini –Restart § Console now appears logging data § Have Console_log_enabled=1 –All data now written to the console logs under Technical Support directory 55
Tip #49: Save your admin URLs in admin client § We have many admin clients –Portal –Sametime –Connections § Save the admin links to your admin client § They are now visible in bookmarks § 56
Tip #50 Stop mail forwarding § Dark pit in hell reserved for people that forward corporate email to hotmail, gmail, icloud, AOL, etc etc § So.. disable the ability to use forward based rules § Config document –RouterSMTP –Restrictions and Controls –Delivery controls –User Rules Mail forwarding • Set to disabled 57
Tip #51: RNRMgr in a Cluster § Rooms and Resources Manager handles booking and availability of Domino based rooms and resources § In a large cluster some people think you need to run RNRMgr on all servers –In fact this can cause problems in resource management § RNRMgr can actually only run successfully on two hosts, although you may think it’s running on all servers you load it on § One host must be the administration server for the resource database (as defined on the Advanced tab of the resource database ACL) § The other is any single clustermate of that administration server –any of the clustermates will do so long as you only load rnrmgr on one § Trying to run RNRMgr on more than those two servers can cause scheduling problems and conflicts in busytime.nsf 58
Tip #52: Speed up mail delivery to a single destination § Domino uses transfer threads to route mail to other servers and also to SMTP destinations outside your organisations § If you have 100 messages going to another server or to gmail - only one transfer thread will be generated § This means that the server can more efficiently use multiple threads for multiple destinations and mail is less likely to be backlogged § With RouterAllowConcurrentXferToAll=1 –Domino will create multiple threads per destination, delivering messages in the order they are queued and not restricting each destination to a single thread –Yay! 59
Tip #53: NSF_DBcache_Maxentries Performance § NSF_DBCache_Maxentries determines who many databases the Domino server will keep open in its cache § Without the explicit setting, Domino stores the last 25 open databases in cache § Cached databases are quicker to access § If you have the memory you can increase the number of cached databases using NSF_DBCache_Maxentries=x § The statistic database.dbcache.hits reports on how often a database access request was found in the cache. This number should be high, if it’s low then the databases being requested are not in the cache regularly enough. 60
Tip #54: Create_R85_Log § The standard size for blocks used to create transaction logs is 512bytes but newer operating systems often used larger block sizes for file creation § Beginning with Domino 8.5, the format of transaction logs can be optimized for Domino servers on operating systems that use a block size different than the default block size of 512 bytes. § The NOTES.INI option Create_R85_Log=1 will create new transaction logs with an updated format, properly aligning blocks for I/O. § It’s geeky, nerdy and obscure but it matters a lot to some backup / restore software 61
Tip #55: Tell Traveler PMR Traveler is almost a “default install” On many many sites Fantastic logging ability Increase logging per user! Dont you wish Domino could do that Dump all user information Don’t you wish Domino could do that Collect all information and configuration/logs into one handy file Tell Traveler log collect Don’t you wish Domino could do that How about this? Collect all inforomation and upload it to a specific PMR directly to IBM Tell Traveler pmr <PMR NUMBER> ...Don’t you wish.... 62
Tip #56: Console Log Mirroring § An 8.5 feature § Log mirroring takes the console.log –Copies it after exceeding 100mb –Retains it for future reading/troubleshooting –Nice feature § Parameters –Console_Log_Mirror=1 -- Enables the mirroring feature –Retain_Mirror_Logs=1 -- Prevents deletion of previous mirrors when Domino starts –Console_Log_Max_Kbytes= -- Sets the maximum size of the Console Log/mirror files 63
Tip #57: Sh St VM (Windows Only) [0968:0006-12E4] PID VMSize (KB) MemUsage (KB) pgFlts/sec procName %CPU Time [0968:0006-12E4] 4520 500040 436512 0.000000 nhttp0.000000 1 8587392740.000000 [0968:0006-12E4] 2408 382256 216068 0.400000 nserver0.000000 1 8588648560.000000 [0968:0006-12E4] 3172 113816 183044 0.000000 nldap0.000000 1 8588856772.000000 [0968:0006-12E4] 3980 110876 114612 0.330000 nevent0.030000 1 8588856811.000000 The Show Stat vm command displays the following system-wide summary information when available: Total physical memory available Available physical memory (Total - Used) PageFaults -- Indicates if there is heavy paging activity on the system, and identify and report the processes that are consuming the most virtual memory. The Show Stat vm command displays the following per-process memory information: Process identification number (pid) Program name Virtual memory size Memory Usage Page Faults (per second) % CPU Time 64
Tip #58: Use LDAP Password For Authentication –To authenticate a user against a Domino server we usually use the HTTP password in the person document –this applies to web applications, as well as Traveler, IMAP and POP etc –Instead of using the HTTP password in the person document Domino can instead validate against any alternate LDAP server with no additional server or client tools –Have your Traveler users validate using their Domino name and Active Directory password –Configure Directory Assistance to point to a LDAP server –Ensure an LDAP attribute contains the user’s Domino hierarchical name –That’s it –Domino will now accept both the HTTP Password in the person document and the password in the Active Directory entry that contains the hierarchical name –So you could clear out the Domino HTTP Passwords completely and just use the LDAP Password –Presentation on how to configure it here http://bit.ly/UYPc41 65
Tip #59: Sametime Configuration Validator § Tool available for download from IBM Support (no PMR required) § Analyses configuration details and install files for the entire Sametime environment including Domino , WebSphere configuration and ini settings § Produces a report on –Deployment Manager Sync – Validates that all nodes are in sync with the DMGR – WebSphere iFix - Check for missing iFixes for Sametime version   – LDAP Configuration – Consistent across environment   – Web SSO Configuration – Consistent across environment   – Domino Configuration – Validates Domino LDAP is not running on a Sametime Server   – Community Configuration – Validate Community Settings for Proxy, and Meeting.   § As well as environment details that can be given to support § Details including presentation and Q&A here http://www-01.ibm.com/support/ docview.wss?uid=swg27035839 66
Tip #60: Join the ND9 public beta program § There is a major release on the way § IBM have had thousands of downloads of the beta software –Who here is running it? § The more opinions the better § The more testing the better § Install and play with the beta –Give feedback! 67
Thank you... pmooney@pmooney.net (geekmail) gabriella@turtlepartnership.com pmooney.net (geeksite) blog.turtleweb.com www.twitter.com/pmooneynet (geektweets) www.twitter.com/gabturtle bleedyellow.com (IM) bleedyellow.com (geekchat) lotuslive.com (IM) paul_mooney@hotmail.com (geekmsn) greenhouse.com (IM) pmooney.net (skype) (geekcall) gabrielladavis (skype) www.turtlepartnership.com www.bluewave.ie (worksite) www.bluewavegroup.eu (workmail) paul.mooney@besystems.eu (moreworkmail) 68
Legal Disclaimer © IBM Corporation 2009. All Rights Reserved. The information contained in this publication is provided for informational purposes only. While efforts were made to verify the completeness and accuracy of the information contained in this publication, it is provided AS IS without warranty of any kind, express or implied. In addition, this information is based on IBM’s current product plans and strategy, which are subject to change by IBM without notice. IBM shall not be responsible for any damages arising out of the use of, or otherwise related to, this publication or any other materials. Nothing contained in this publication is intended to, nor shall have the effect of, creating any warranties or representations from IBM or its suppliers or licensors, or altering the terms and conditions of the applicable license agreement governing the use of IBM software. References in this presentation to IBM products, programs, or services do not imply that they will be available in all countries in which IBM operates. Product release dates and/or capabilities referenced in this presentation may change at any time at IBM’s sole discretion based on market opportunities or other factors, and are not intended to be a commitment to future product or feature availability in any way. Nothing contained in these materials is intended to, nor shall have the effect of, stating or implying that any activities undertaken by you will result in any specific sales, revenue growth or other results. IBM, the IBM logo, Lotus, Lotus Notes, Notes, Domino, Quickr, Sametime, WebSphere, UC2, PartnerWorld and Lotusphere are trademarks of International Business Machines Corporation in the United States, other countries, or both. Unyte is a trademark of WebDialogs, Inc., in the United States, other countries, or both. IJava and all Java-based trademarks are trademarks of Sun Microsystems, Inc. in the United States, other countries, or both. Other company, product, or service names may be trademarks or service marks of others. 69

Recomendados

Domino Adminblast
Domino AdminblastDomino Adminblast
Domino AdminblastGabriella Davis
 
SmartCloud Administration Best Practices MWLUG 2016
SmartCloud Administration Best Practices MWLUG 2016SmartCloud Administration Best Practices MWLUG 2016
SmartCloud Administration Best Practices MWLUG 2016David Hablewitz
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...Gabriella Davis
 
HTTP - The Other Face Of Domino
HTTP - The Other Face Of DominoHTTP - The Other Face Of Domino
HTTP - The Other Face Of DominoGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and ManagingGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerGabriella Davis
 

Recomendados

Domino Adminblast
Domino AdminblastDomino Adminblast
Domino AdminblastGabriella Davis
 
SmartCloud Administration Best Practices MWLUG 2016
SmartCloud Administration Best Practices MWLUG 2016SmartCloud Administration Best Practices MWLUG 2016
SmartCloud Administration Best Practices MWLUG 2016David Hablewitz
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...Gabriella Davis
 
HTTP - The Other Face Of Domino
HTTP - The Other Face Of DominoHTTP - The Other Face Of Domino
HTTP - The Other Face Of DominoGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and ManagingGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerGabriella Davis
 
Inform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for AdminsInform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for AdminsJared Roberts
 
IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning Vladislav Tatarincev
 
What is Node.js? (ICON UK)
What is Node.js? (ICON UK)What is Node.js? (ICON UK)
What is Node.js? (ICON UK)Tim Davis
 
Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015Darren Duke
 
Windows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC GroupWindows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC GroupEPC Group
 
60 Admin Tips
60 Admin Tips60 Admin Tips
60 Admin TipsGabriella Davis
 
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...Benedek Menesi
 
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell ToolsUnderstanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell ToolsEPC Group
 
June OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification ManagerJune OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification ManagerHoward Greenberg
 
How to use the new Domino Query Language
How to use the new Domino Query LanguageHow to use the new Domino Query Language
How to use the new Domino Query LanguageTim Davis
 
10135 a 07
10135 a 0710135 a 07
10135 a 07Bố Su
 
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-ServerBewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Serverpanagenda
 
File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10] File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10] Web Hosting for Students
 
Connections install in 45 mins
Connections install in 45 minsConnections install in 45 mins
Connections install in 45 minsSharon James
 
Practical solutions for connections administrators
Practical solutions for connections administratorsPractical solutions for connections administrators
Practical solutions for connections administratorsSharon James
 
Practical solutions for connections administrators lite
Practical solutions for connections administrators litePractical solutions for connections administrators lite
Practical solutions for connections administrators liteSharon James
 
Improving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve InternetImproving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve InternetAchieve Internet
 
Open mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social editionOpen mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social editionsreeJk
 
You don't want to do it like that
You don't want to do it like thatYou don't want to do it like that
You don't want to do it like thatSharon James
 
DDive11 - Quickr HowTo
DDive11 - Quickr HowToDDive11 - Quickr HowTo
DDive11 - Quickr HowToDominopoint - Italian Lotus User Group
 
Spnego configuration
Spnego configurationSpnego configuration
Spnego configurationGabriella Davis
 
Traveler management, security and performance
Traveler management, security and performanceTraveler management, security and performance
Traveler management, security and performanceGabriella Davis
 

Mais conteúdo relacionado

Mais procurados

Inform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for AdminsInform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for AdminsJared Roberts
 
IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning Vladislav Tatarincev
 
What is Node.js? (ICON UK)
What is Node.js? (ICON UK)What is Node.js? (ICON UK)
What is Node.js? (ICON UK)Tim Davis
 
Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015Darren Duke
 
Windows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC GroupWindows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC GroupEPC Group
 
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...Benedek Menesi
 
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell ToolsUnderstanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell ToolsEPC Group
 
June OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification ManagerJune OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification ManagerHoward Greenberg
 
How to use the new Domino Query Language
How to use the new Domino Query LanguageHow to use the new Domino Query Language
How to use the new Domino Query LanguageTim Davis
 
10135 a 07
10135 a 0710135 a 07
10135 a 07Bố Su
 
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-ServerBewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Serverpanagenda
 
File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10] File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10] Web Hosting for Students
 
Connections install in 45 mins
Connections install in 45 minsConnections install in 45 mins
Connections install in 45 minsSharon James
 
Practical solutions for connections administrators
Practical solutions for connections administratorsPractical solutions for connections administrators
Practical solutions for connections administratorsSharon James
 
Practical solutions for connections administrators lite
Practical solutions for connections administrators litePractical solutions for connections administrators lite
Practical solutions for connections administrators liteSharon James
 
Improving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve InternetImproving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve InternetAchieve Internet
 
Open mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social editionOpen mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social editionsreeJk
 
You don't want to do it like that
You don't want to do it like thatYou don't want to do it like that
You don't want to do it like thatSharon James
 

Mais procurados (20)

Inform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for AdminsInform2015 - What's New in Domino 9 & 9.0.1 for Admins
Inform2015 - What's New in Domino 9 & 9.0.1 for Admins
 
IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning IBM Domino / IBM Notes Performance Tuning
IBM Domino / IBM Notes Performance Tuning
 
What is Node.js? (ICON UK)
What is Node.js? (ICON UK)What is Node.js? (ICON UK)
What is Node.js? (ICON UK)
 
Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015Domino Security - not knowing is not an option - MWLUG 2015
Domino Security - not knowing is not an option - MWLUG 2015
 
Windows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC GroupWindows Server 2012 Deep-Dive - EPC Group
Windows Server 2012 Deep-Dive - EPC Group
 
60 Admin Tips
60 Admin Tips60 Admin Tips
60 Admin Tips
 
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
IBM Connect 2014 BP103: Ready, Aim, Fire: Mastering the Latest in the Adminis...
 
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell ToolsUnderstanding Windows Azure’s Active Directory (AD) and PowerShell Tools
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
 
June OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification ManagerJune OpenNTF Webinar - Domino V12 Certification Manager
June OpenNTF Webinar - Domino V12 Certification Manager
 
How to use the new Domino Query Language
How to use the new Domino Query LanguageHow to use the new Domino Query Language
How to use the new Domino Query Language
 
10135 a 07
10135 a 0710135 a 07
10135 a 07
 
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-ServerBewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
Bewährte Praktiken für HCL Notes/Domino-Sicherheit. Teil 2: Der Domino-Server
 
File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10] File Transfers - Web Hosting Curriculum [5/10]
File Transfers - Web Hosting Curriculum [5/10]
 
Connections install in 45 mins
Connections install in 45 minsConnections install in 45 mins
Connections install in 45 mins
 
Practical solutions for connections administrators
Practical solutions for connections administratorsPractical solutions for connections administrators
Practical solutions for connections administrators
 
Practical solutions for connections administrators lite
Practical solutions for connections administrators litePractical solutions for connections administrators lite
Practical solutions for connections administrators lite
 
Improving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve InternetImproving Website Performance with Memecached Webinar | Achieve Internet
Improving Website Performance with Memecached Webinar | Achieve Internet
 
Open mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social editionOpen mic on what's new in domino 9 social edition
Open mic on what's new in domino 9 social edition
 
You don't want to do it like that
You don't want to do it like thatYou don't want to do it like that
You don't want to do it like that
 
DDive11 - Quickr HowTo
DDive11 - Quickr HowToDDive11 - Quickr HowTo
DDive11 - Quickr HowTo
 

Destaque

Traveler management, security and performance
Traveler management, security and performanceTraveler management, security and performance
Traveler management, security and performanceGabriella Davis
 
Planning and Completing an IBM Connections Upgrade
Planning and Completing an IBM Connections UpgradePlanning and Completing an IBM Connections Upgrade
Planning and Completing an IBM Connections UpgradeGabriella Davis
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradeGabriella Davis
 
Rock Solid Sametime for High Availability
Rock Solid Sametime for High AvailabilityRock Solid Sametime for High Availability
Rock Solid Sametime for High AvailabilityGabriella Davis
 
BP201 Creating Your Own Connections Confection - Getting The Flavour Right
BP201 Creating Your Own Connections Confection - Getting The Flavour RightBP201 Creating Your Own Connections Confection - Getting The Flavour Right
BP201 Creating Your Own Connections Confection - Getting The Flavour RightGabriella Davis
 
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)Gabriella Davis
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Gabriella Davis
 
External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections Gabriella Davis
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 CertificatesGabriella Davis
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections UpgradeGabriella Davis
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoGabriella Davis
 
Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesGabriella Davis
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Gabriella Davis
 
IBM Connections Design To #NOTFAIL
IBM Connections Design To #NOTFAILIBM Connections Design To #NOTFAIL
IBM Connections Design To #NOTFAILGabriella Davis
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile ExperienceGabriella Davis
 
Domino in the Back, Party In The Front
Domino in the Back, Party In The FrontDomino in the Back, Party In The Front
Domino in the Back, Party In The FrontGabriella Davis
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesGabriella Davis
 

Destaque (20)

Spnego configuration
Spnego configurationSpnego configuration
Spnego configuration
 
Traveler management, security and performance
Traveler management, security and performanceTraveler management, security and performance
Traveler management, security and performance
 
Planning and Completing an IBM Connections Upgrade
Planning and Completing an IBM Connections UpgradePlanning and Completing an IBM Connections Upgrade
Planning and Completing an IBM Connections Upgrade
 
Changing technologies
Changing technologiesChanging technologies
Changing technologies
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections Upgrade
 
Rock Solid Sametime for High Availability
Rock Solid Sametime for High AvailabilityRock Solid Sametime for High Availability
Rock Solid Sametime for High Availability
 
BP201 Creating Your Own Connections Confection - Getting The Flavour Right
BP201 Creating Your Own Connections Confection - Getting The Flavour RightBP201 Creating Your Own Connections Confection - Getting The Flavour Right
BP201 Creating Your Own Connections Confection - Getting The Flavour Right
 
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...
 
External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 Certificates
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & Video
 
Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile Devices
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1
 
IBM Connections Design To #NOTFAIL
IBM Connections Design To #NOTFAILIBM Connections Design To #NOTFAIL
IBM Connections Design To #NOTFAIL
 
Penumbra briefing
Penumbra briefingPenumbra briefing
Penumbra briefing
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile Experience
 
Domino in the Back, Party In The Front
Domino in the Back, Party In The FrontDomino in the Back, Party In The Front
Domino in the Back, Party In The Front
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 Certificates
 

Semelhante a Adminblast 2013 Tips for Managing IBM Lotus Notes and Sametime

We4IT lcty 2013 - keynote - worst practices - the best of the worst
We4IT lcty 2013 - keynote - worst practices - the best of the worstWe4IT lcty 2013 - keynote - worst practices - the best of the worst
We4IT lcty 2013 - keynote - worst practices - the best of the worstWe4IT Group
 
Mwlug2014 - IBM Connections Security and Migration
Mwlug2014 - IBM Connections Security and MigrationMwlug2014 - IBM Connections Security and Migration
Mwlug2014 - IBM Connections Security and MigrationVictor Toal
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections Adminblastpanagenda
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastNico Meisenzahl
 
IBM Connections Adminblast
IBM Connections AdminblastIBM Connections Adminblast
IBM Connections AdminblastLetsConnect
 
Social Connections 12 - IBM Connections Adminblast
Social Connections 12 - IBM Connections AdminblastSocial Connections 12 - IBM Connections Adminblast
Social Connections 12 - IBM Connections AdminblastNico Meisenzahl
 
IBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 EditionIBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 Editionpanagenda
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hostingshendison
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Gabriella Davis
 
Back from the Dead: When Bad Code Kills a Good Server
Back from the Dead: When Bad Code Kills a Good ServerBack from the Dead: When Bad Code Kills a Good Server
Back from the Dead: When Bad Code Kills a Good ServerTeamstudio
 
XPages: No Experience Needed
XPages: No Experience NeededXPages: No Experience Needed
XPages: No Experience NeededKathy Brown
 
Lotusphere 2009 The 11 Commandments
Lotusphere 2009 The 11 CommandmentsLotusphere 2009 The 11 Commandments
Lotusphere 2009 The 11 CommandmentsBill Buchan
 
System hardening - OS and Application
System hardening - OS and ApplicationSystem hardening - OS and Application
System hardening - OS and Applicationedavid2685
 
Soccnx10: Best and worst practices deploying IBM Connections
Soccnx10: Best and worst practices deploying IBM ConnectionsSoccnx10: Best and worst practices deploying IBM Connections
Soccnx10: Best and worst practices deploying IBM Connectionspanagenda
 
Engage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance BoostEngage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance BoostChristoph Adler
 
Engage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance BoostEngage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance Boostpanagenda
 
Picnic Software - Developing a flexible and scalable application
Picnic Software - Developing a flexible and scalable applicationPicnic Software - Developing a flexible and scalable application
Picnic Software - Developing a flexible and scalable applicationNick Josevski
 
Infrastructure as Data with Ansible for easier Continuous Delivery
Infrastructure as Data with Ansible for easier Continuous DeliveryInfrastructure as Data with Ansible for easier Continuous Delivery
Infrastructure as Data with Ansible for easier Continuous DeliveryCarlo Bonamico
 
Managing Complexity and Privacy Debt with Drupal
Managing Complexity and Privacy Debt with DrupalManaging Complexity and Privacy Debt with Drupal
Managing Complexity and Privacy Debt with DrupalExove
 
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...Kim Greene
 

Semelhante a Adminblast 2013 Tips for Managing IBM Lotus Notes and Sametime (20)

We4IT lcty 2013 - keynote - worst practices - the best of the worst
We4IT lcty 2013 - keynote - worst practices - the best of the worstWe4IT lcty 2013 - keynote - worst practices - the best of the worst
We4IT lcty 2013 - keynote - worst practices - the best of the worst
 
Mwlug2014 - IBM Connections Security and Migration
Mwlug2014 - IBM Connections Security and MigrationMwlug2014 - IBM Connections Security and Migration
Mwlug2014 - IBM Connections Security and Migration
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections Adminblast
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections Adminblast
 
IBM Connections Adminblast
IBM Connections AdminblastIBM Connections Adminblast
IBM Connections Adminblast
 
Social Connections 12 - IBM Connections Adminblast
Social Connections 12 - IBM Connections AdminblastSocial Connections 12 - IBM Connections Adminblast
Social Connections 12 - IBM Connections Adminblast
 
IBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 EditionIBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 Edition
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10
 
Back from the Dead: When Bad Code Kills a Good Server
Back from the Dead: When Bad Code Kills a Good ServerBack from the Dead: When Bad Code Kills a Good Server
Back from the Dead: When Bad Code Kills a Good Server
 
XPages: No Experience Needed
XPages: No Experience NeededXPages: No Experience Needed
XPages: No Experience Needed
 
Lotusphere 2009 The 11 Commandments
Lotusphere 2009 The 11 CommandmentsLotusphere 2009 The 11 Commandments
Lotusphere 2009 The 11 Commandments
 
System hardening - OS and Application
System hardening - OS and ApplicationSystem hardening - OS and Application
System hardening - OS and Application
 
Soccnx10: Best and worst practices deploying IBM Connections
Soccnx10: Best and worst practices deploying IBM ConnectionsSoccnx10: Best and worst practices deploying IBM Connections
Soccnx10: Best and worst practices deploying IBM Connections
 
Engage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance BoostEngage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance Boost
 
Engage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance BoostEngage 2020 - HCL Notes V11 Performance Boost
Engage 2020 - HCL Notes V11 Performance Boost
 
Picnic Software - Developing a flexible and scalable application
Picnic Software - Developing a flexible and scalable applicationPicnic Software - Developing a flexible and scalable application
Picnic Software - Developing a flexible and scalable application
 
Infrastructure as Data with Ansible for easier Continuous Delivery
Infrastructure as Data with Ansible for easier Continuous DeliveryInfrastructure as Data with Ansible for easier Continuous Delivery
Infrastructure as Data with Ansible for easier Continuous Delivery
 
Managing Complexity and Privacy Debt with Drupal
Managing Complexity and Privacy Debt with DrupalManaging Complexity and Privacy Debt with Drupal
Managing Complexity and Privacy Debt with Drupal
 
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...
Adm07 The Health Check Extravaganza for IBM Social and Collaboration Environm...
 

Mais de Gabriella Davis

Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsGabriella Davis
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience ProjectGabriella Davis
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerGabriella Davis
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsGabriella Davis
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 
Setting Up a Hybrid Domino Environment to Ease your Way to the Cloud
Setting Up a Hybrid Domino Environment to Ease your Way to the CloudSetting Up a Hybrid Domino Environment to Ease your Way to the Cloud
Setting Up a Hybrid Domino Environment to Ease your Way to the CloudGabriella Davis
 
Embracing iot in the enterprise
Embracing iot in the enterpriseEmbracing iot in the enterprise
Embracing iot in the enterpriseGabriella Davis
 
Benefits and Risks of a Single Identity - IBM Connect 2017
Benefits and Risks of a Single Identity - IBM Connect 2017Benefits and Risks of a Single Identity - IBM Connect 2017
Benefits and Risks of a Single Identity - IBM Connect 2017Gabriella Davis
 

Mais de Gabriella Davis (16)

Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin Tips
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On Premises
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for Docker
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & Discovery
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
Brand Yourself
Brand YourselfBrand Yourself
Brand Yourself
 
Home Working
Home WorkingHome Working
Home Working
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration Solutions
 
The Imposter Syndrome
The Imposter SyndromeThe Imposter Syndrome
The Imposter Syndrome
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-Premises
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To Docker
 
Setting Up a Hybrid Domino Environment to Ease your Way to the Cloud
Setting Up a Hybrid Domino Environment to Ease your Way to the CloudSetting Up a Hybrid Domino Environment to Ease your Way to the Cloud
Setting Up a Hybrid Domino Environment to Ease your Way to the Cloud
 
Embracing iot in the enterprise
Embracing iot in the enterpriseEmbracing iot in the enterprise
Embracing iot in the enterprise
 
Benefits and Risks of a Single Identity - IBM Connect 2017
Benefits and Risks of a Single Identity - IBM Connect 2017Benefits and Risks of a Single Identity - IBM Connect 2017
Benefits and Risks of a Single Identity - IBM Connect 2017
 

Adminblast 2013 Tips for Managing IBM Lotus Notes and Sametime

  • 1. BP101 Adminblast 2013 Paul Mooney | Bluewave Technology Gabriella Davis | The Turtle Partnership
  • 2. Paul Mooney § Geek –Lotus software since R2 –Symantec Authorised Consultant –Google Certified Deployment Specialist § Speaker, Author, Blogger, jogger, biker –www.pmooney.net § Bluewave Technology –26 staff –Operate globally 2
  • 3. Gabriella Davis § Proud Nerd Girl –Mathmo / Problem Solver / System Designer / Optimist § ccMail & Agenda then Lotus & WAS –I’m much older than I look § Co-Author of Sametime 8.5.2 Admin Guide –Available at all good bookshops but mostly Amazon –Domino & Exchange, Sametime & Lync Server, Sharepoint § Co-Author Connections101.net (being updated for Connections 4) § I present a lot globally & blog in fits and starts § The Turtle Partnership –High Level Support of IBM Lotus products • 20% support, 40% system design and implemtation, 40% development • 50% of our customers are in Europe and 50% in the US (nothing against Australasia mind you) 3
  • 4. About This Presentation §Provides you with a brain dump of useful tips §Presentation is self-contained –There is plenty to cover –All the information you need to implement these tips is in this presentation §There are over 60 tips –Although some “tip pages” have more than one tip! §If you have any trouble with a tip, email me at: pmooney@pmooney.net §Paul keeps his two favourites in each year –Sue me §Gathered from life in the real world §Gathered from forums §Gathered from blogs 4
  • 5. Right... what about the other Adminblast sessions? §Go to www.pmooney.net/resources §Many presentations there §Different versions of this one §Download away! §The latest and the “must know” slides are repeated this year. –I have favourites –You will ignore my recommendations anyway 5
  • 6. Let’s get Legal! ● This slide presentation may contain the following copyrighted, trademarked, and/or restricted terms: ● IBM® Lotus® Domino®, IBM® Lotus® Notes®, IBM Lotus Symphony®, LotusScript® ● Microsoft® Windows®, Microsoft Excel®, Microsoft Office® ● Linux®, Java®, Adobe® Acrobat®, Adobe Flash® ● Your mileage may vary ● My mileage may vary ● Fill out the evaluations ● Buy us a beer ● Today is “punch a developer in the face day” ● No.. really it is 6
  • 7. Tip #1: Separate domain / same certificates § For scaling and security § What if you need servers in a separate domain –e.g. Traveler server –e.g. Very large environment with regional management. • May be easier to have separate domains • Issues when users travel between them § What if you do not want to deal with cross certification § When creating a new server –Use existing certifier id files –Use existing server id files • Have them registered using the O or OU that you already have in place § Now you just have to deal with domain security –Certificates will match 7
  • 8. Tip #2: Find what ACL’s contain a group / user § There are many ways to skin this cat § Adminp has one built right in! § Admin client / People and groups § Right click on Group –Find group –Adminp request submitted § And you get... 8
  • 9. Tip #3: Message Tracking store and index § The Message Tracking database (MTStore.nsf) database –Needs to be indexed § This index can get corrupted § Can be reindexed by –“tell mtc reindex” § Force daily re-indexing by –MTCCompactReindex=1 9
  • 10. Tip #4: Traveler and tracking device data § Want to know how much data is being used per user? § Enable domlog.nsf on traveler server § Build a new view –@Contains(Request,"/servlet/traveler") & AuthenticatedUser!="-" § Modify the columns as needed –User/Data etc 10
  • 11. Tip #5: Catalog.nsf and disk % used § Since Domino 8.0.2 the application % used field is 0 on all documents in catalog.nsf –Be design § What if you want/need this data back in catalog.nsf? –CATALOG_DISK_USAGE=1 § Re run catalog and boom... § Be aware –Heavily used servers with many databases –This can slow down the cataloging task 11
  • 12. Tip #6: Manually uninstalling plugins § Sometimes... –Plugins will not uninstall nicely / cleanly • Testing • Coding § Mikkel Heisterberg wrote up a manual process –Can be very useful § http://lekkimworld.com/2010/03/17/ complete_guide_to_manually_uninstalling_plugins_from_lotus_notes.html 12
  • 13. Tip #7: Remove old SSL certificate compliance § Domino is *very* backward compliant –Can accept very old SSL certificates § Penetration tests / security compliance companies –Do not like this § Go to internet site documents / security –Remove older / lower size 13
  • 14. Tip #8: Remove trace/demo http options § While we are talking HTTP security § Domino internet site documents –Permit a variety of http request types –GET, HEAD, POST are the “typicals” –Domino also accepts OPTIONS, TRACE § They are not needed for typical websites § Remove them in the internet site / configuration tab 14
  • 15. Tip #9: Upgrade Traveler to Upgrade packs § Traveler now has two upgrade packs to raise it to 8.5.3UP1 or UP2 § Upgrade your traveler server to the Upgrade pack § It’s not all about High Availability –You do NOT need to go DB2, SQL backend § There are other security and configuration alterations/features § Note - upgrading to UP upgrades the database design –Have noticed this taking quite a bit of time, so be aware § Side note... you do know that Traveler data is in a Derby (not notes) database? –Ensure you are backing up the traveler data on any traveler server 15
  • 16. Tip #10: Be NICE § Sometimes Notes clients don’t uninstall/upgrade properly –Left like a cat –Half in and half out of the world § Notes Install Cleanup Executable tool –Works on notes clients from 6.x up § Completes a “clean” uninstall by: –Killing all tasks –Removing all files –Removing all Registry entries –Optionally removes data files § More information here –http://www-01.ibm.com/support/docview.wss?uid=swg21459714 16
  • 17. Tip #11: Me, you, MUMA § Notes has been installed many ways over the years § Local installation, network installation, 1/2 network installation § Makes it difficult to manage/upgrade § Multi user based versions of Notes client are good –Been around many years now –Personal data stored in Windows profile user directory –Shared/common data stored in the shared area § Moving from old style to this style is tricky to automate § Enter Multi User Migration Assistant –Tool moves the local setup to multi-user configuration –Moves “network” setup to multi-user configuration § More details here –http://www-01.ibm.com/support/docview.wss?uid=swg21459627 17
  • 18. Tip #12: Finding Users In A Nest § Wildcards in groups are great and very useful, as are nested groups § The problem is determining which groups a user is in when they may only be a member of a group because they are a member of another group 3 layers down in a nested membership § Go to Domino Administrator - People and Groups § Choose - Groups and Manage. Select a user and click “show member hierarchies” 18
  • 19. Tip #13: Stop Clients and Agents Creating Indexes § Ever seen this on your console? § "Warning: Agent is performing full text operations on database '<name>' which is not full text indexed. This is extremely inefficient." § This a BAD thing § If you have an agent that is set to do a search or a user who tries to search their mail file and the database isn’t indexed, the Domino server will try and create an index on the fly which is both unreliable and inefficient § FT_FLY_INDEX_OFF=1 –Will prevent users from searching where no search exists –Will prevent the agent from creating the index –Forces the agent to return with error “db not indexed” –BUT, it saves your server from unnecessary work 19 8
  • 20. Tip #14: Restricting which clients can login to your ST server § In the sametime.ini you can control which client types are allowed to login to a Sametime server § The ensures you know which clients (including mobile clients) are being used in your environment § If user’s can’t login it may be they are using a client type you don’t authorise § In the [config] section of sametime.ini use the value with each approved type separated by a comma VPS_ALLOWED_LOGIN_TYPES=xxxx.xxxx § IBM supply a list of all known client types you can use to construct your sametime.ini setting http://www-01.ibm.com/support/docview.wss?uid=swg21114318 20
  • 21. Tip #15: Allowing Multiple Sametime Logins Simultaneously § Very useful whe deploying ST Mobile clients so the desktop client doesn’t get logged out § Messages will be sent to both / all logged in client screens § Edited in the [config] section of the sametime.ini § VP_ONLY_SINGLE_LOGIN_ALLOWED=1 § VPS_EXCLUDED_LOGIN_TYPES=xxxx, xxxx –honours single login allowed but ignores the listed login types, allowing for mobile and desktop clients to be logged in at the same time but not two desktop clients § VPS_PREFERRED_LOGIN_TYPES=xxxx,xxxx –If a user is logged in on more than one client, this determines which client a new chat is sent to § IBM list of login types are here http://www-01.ibm.com/support/docview.wss? uid=swg21114318 21
  • 22. Tip #16: Single Sign On and tracing authentication § Testing authentication over http? § Fantastic tracing parameter! § WebAuth_Verbose_Trace=1 –Shows authentication attempted when user tries to login • name • group memberships • hierarchy being validated • success or failure § Extremely useful when configuring SSO between different environments such as WebSphere and Domino to identify why a user might not be authenticating 22
  • 23. Tip #17: Token and Token 2 for SSO § Pre v7 of Domino Single Sign On used “token” to generate LTPAToken § Post v7 Domino can generate and recognise both Token and Token 2 (the newer format) • For SSO to work both / all servers must use the same format § By default WAS now uses Token 2 only. To get WAS to also generate and recognise Token you must enable “interoperability mode” in the SSO configuration in WAS § Domino configuration is in the Web SSO document in Domino § A mismatch will cause SSO to fail completely 23
  • 24. Tip #18: Take Full Text Indexing Out of Domino Memory Pool • When performing FT indexing , Domino will pull memory from its own resource pool to build the index • Large indexes can consume a lot of memory from the total pool Domino has allocated to itself • Using FTG_USE_SYS_MEMORY=1 in notes.ini, you can instruct Domino to take memory out of the OS resources for large indexing an free up the Domino pool 44
  • 25. Tip #19: Separate View Updates from FTIs • The same update task is responsible for both view index builds and full text index builds • Applications requiring a lot of indexing or a server with many applications and a high number of transaction can consume the update task completely and stop view indexes being built in time. • Separate the FTI update from the view update generating two separate threads, one for view indexes and one for full text indexes s FTI updates happen in their own memory thread s Performance improves • Update_Fulltext_Thread=1 43
  • 26. Tip #20: Move full text indexes to separate directory § 853 § FTBasePath=d:full_text § Restart server § Updall -f § Works on client too 26
  • 27. Tip #21 XPages § The XPS engine is enabled by default in Domino § You may not want it § It can be disabled § INOTESDISABLEXPAGECMD=1 § Restart htttp... and it’s gone § Fantastic for screwing with developers. 27
  • 28. Tip #22 Compact filtering § Exclude specific databases from scheduled compacting § Add line to domino notes.ini –COMPACT_FILTER=DBNAME.NSF,DBNAME2.NSF § These databases are skipped –Console displays message 28
  • 29. Tip #23 8.5.3 Agent manager and compact § Ever have a scheduled agent fail as it was being compacted? § Will not run agent again until –AMGR restarted –Nightly cache reached § New line –DEBUG_AMGR_ENABLE_RETRY_ON_COMPACT=1 § Agent will now run on next scheduled attempt 29
  • 30. Tip #24: Extending Your Logs § Default log keeping on LOG.NSF is sometimes too short –I tend to recommend at least 14 days of logging § Modify the NOTES.INI on the server –LOG=LOG.NSF, 1, 0, 14, 40000 • “14” is the number of days LOG.NSF records data § BUT... the longer the log, the longer the restart –After a crash § What if you want/need the log data on the server 30
  • 31. Tip #24: Archive your log § Set up archiving on your log.nsf database –Database Properties / Archiving § Run compact -a program document against log.nsf nightly § Now you have access to older logs without performance impact 31
  • 32. Tip #25: Remotely connect to your servers § Most of you cannot get to your servers with ease § Some of you don’t know where they are § We all use remote viewing software –RDP, VNC, Netsupport etc etc etc § Add the following to your notes.ini –RemoteProgram=pathfilename %hostname% –Mine is RemoteProgram=C:vncvncviewer.exe %hostname% § Will now try to open session § Note - have found issues if under directory structure with spaces (e.g program files) 32
  • 33. Tip #26: Cluster servers and view indexes § Clustering works § Failover works § Can be an issue in active/passive clustering environment –Users waiting for $Inbox / $All view to update when using an “unused” mail file § Run an updall program § Load updall mail -c -t ($All) § Load updall mail -c -t ($Inbox) 33
  • 34. Tip #27: Is your Update task too busy? § Default recommendation is to run n Update tasks –n= No of processors - 1 § Before you do that, is the update task busy?? § Sh Stat Update.Pending* –Update.PendingList - Number of unprocessed requests in the pending queue –Update.DeferredList - Number of unprocessed requests in the deferred queue –Update.FullTextList - Number of unprocessed requests in the FT queue –Also .Max for each one – Maximum number of requests in the given queue § If they are not busy, they are consuming resources 34
  • 35. Tip #28: More compact options! § 8.5.1 and up only § Add the following to your server notes.ini –DEBUG_ENABLE_COMPACT_8_5=1 § You now have more compact options –Load Compact -W nn • Compact databases NOT compacted in the last number (nn) of days –Load Compact -w • Compact system databases only –Load Compact -X nn • Limit the time for compacting databases to number (x) of minutes –Load Compact -# nn • Start multiple (nn) compact tasks simultaneously 35
  • 36. Tip #29: One missed last year § Load Compact -O<ODS Version Number> –Run compact against database running this ODS version only • e.g. Load compact -c -O43 § Load Compact -o<ODS Version Number> –Run compact against all databases, skipping dbs running this ODS version • e.g. Load compact -c -o43 36
  • 37. Tip #30: Backup software and memory § Server backup runs utilise Domino shared memory § If server is already peaking memory usage –This can get nasty –Backups at night... what else is running? § Add this to your notes.ini –NSF_BACKUP_MEMORY_CONSTRAINED=1 § Limits memory that can be used by the backup software to 20MB § You can increase this –NSF_BACKUP_MEMORY_LIMIT=bytes § IBM recommend never going beyond 300MB § I have already seen this prevent backup related crashes 37
  • 38. Tip #31: Clean Up Workspace / Rebuild Workspace § What do you do when a Notes client won’t load or appears corrupt § First we test with nlnotes.exe to see if it will load, if it will we know it’s a problem with the eclipse client § There are two client commands you can run to reset the workspace completely Clear Workspace § From a command Prompt § Launch the command prompt and type in the following to recreate the workspace: § "{path to the Notes directory}" then use "{path to the Notes directory}:notes -RPARAMS - resetconfig Clear Cache § From a command Prompt § "{path to the Notes directory}" then use "{path to the Notes directory}:notes -RPARAMS - clean. 38
  • 39. Tip #32: Synchronise mail file quotas in clusters § Not available in client § Code available in community § http://www.thenewdominoadmin.com/blog/?p=2072 39
  • 40. Tip #33: Server restrictions § New settings with Domino 8.5.2 FP3 and 8.5.3 § Server_Restricted –No new opens are allowed. –Existing opens still work. –Allows the Administrator to connect using remote console. –The restricted server will be able to initiate replication with other servers. –Other server will not be able to initiate replication with the restricted server. –The server will be able to route existing mail in its mail.box(es) for transfer or delivery. –Other servers will not be able to route mail to the restricted server. § =1. Is set back to 0 (unrestricted) when the server is restarted. § =2. persistent through server restarts § =3 as setting “1” but also blocks all replication from client replicas NEW § =4 as setting “3” but persistent through server restarts NEW 40
  • 41. Tip #34 Change Attachment Handling on Client § Notes client gives options with attachments –Users get confused –Too many options! § Remove the options! –AttachmentActionDefault=1 –Double-click on attachment opens attachment by default 41
  • 42. Tip #35: Know when Full Access Admin is being used § Should NOT be your default way of working § Domino servers log when FAA has been enabled against them § Use DDM to monitor for this § Have separate IDs for FAA rights so an administrator can’t use their regular ID 42
  • 43. Tip #36: Disable Export of View Data § Database property - disable export of view data (8.0.2 and later) § File - Export option is still on the client menu but won’t bring up an export dialog § Can be applied on a template and propagate to any database based on that template § Make sure users have Editor access or less otherwise they can disable the setting! 43
  • 44. Tip #37: Create A Local Replica Stub Of A Large Database § You’ve got a large database replica on a client or a server in another domain § You want to replicate it to another server but don’t want it to tie up your client whilst it does that –what you really want it background replication but you can’t do that until the a database stub at least is there § When doing File - New Replica - client on Options and create a fake replica formula eg form=”nonsenseform” –The database will create a replica with design elements but no documents because none of the documents meet the selection criteria § Once the replica stub is created you can remove the replication formula and then use background replication to send the documents over 44
  • 45. Tip #38: Beware Size of Schema.NSF § Schema.nsf is used by the ldap task to analyse and translate LDAP queries § It’s based on schema.ntf which is a standard Domino template and the database should be less than 10MB in size when created § In some envrionments we’ve seen schema.nsf grow to 100s of MB or even multiple GBs in size and when that happens the LDAP task will be slow to respond to queries and could take up to an hour to load § This usually happens when schema.nsf is on multiple servers which are different versions or have been upgraded several times and all servers are allowed Editor access or higher to the documents resulting in hundreds of thousands of duplicate documents each populated by a different server § Delete the schema.nsf from all servers, load LDAP on the administration server and let it replicate out to the rest of the Domain 45
  • 46. Tip #39: Running LDAP on Administration Server When You Aren’t Using It § For LDAP to work in your environment it must first be loaded at least once on the Administration server of the domain § The Administration server creates the schema.nsf § Any other server in the domain that runs LDAP pulls a replica of schema.nsf from the Administration server § If you’re not using LDAP on the Administration server, once the schema.nsf is created you don’t need to keep running it and can stop LDAP § Just remember LOAD LDAP once on the administration server after each upgrade so the schema.nsf gets updated and will replicate out to the other servers in the domain that are running LDAP 46
  • 47. Tip #40: BASE_DN when using Domino as LDAP § Although Domino is an LDAP server it is about the only LDAP server that has non hierarchical entries § When a system connects to an LDAP server it usually wants the “Base_DN” defined, that’s the starting point in the hierarchy that all valid entries must share –In Domino that would usually be O=Turtle for instance § If you’re running web applications then your users may not have hierarchical names in which case you may struggle to define a Base_DN that captures all the users you want § This is especially problematic if you want to connect a WebSphere based product with a Domino LDAP directory. For that we have a couple of cheats –c=US. The C hierarchical level is actually above O (organisation) and isn’t used in most companies. C=US will usually capture all entries including groups and non hierarchical users –root - for WAS 7.0.0.19 or higher. Using the word “root” as a base_dn in newer versions of WebSphere will also capture all users and groups regardless of hierarchy 47
  • 48. Tip #41 Understand file protection documents § Domino can be used / is used for serving non .nsf files –HTML –CGI –Images § You can protect these using an “ACL” –File protection documents –Protect a folder/file –Works just like an ACL –Uses domino directory authentication • Want to hide some files for selected download? 48
  • 49. Tip #42: Let’s take a moment to ponder the number § Paul will not speak during this slide... § Paul has a wish.... § It involves server id files § He makes this wish every year § It involves passwords § Put passwords on your server ids please § Paul is considering threats –For every server id without a password, he will punch a baby in the face –For every server id without a password, he will execute a puppy –For every server id without a password, he will make the admin team run vista –For every server id without a password, he will make you attend a session saying “strategic” in the title § Paul will continue the presentation when everyone in the room agrees to set passwords on their server id files... 49
  • 50. Tip #43: Validate Internet Address § Internet addresses need to be unique across all directories and person documents § There is a utility in Domino Administrator that will check all directories on a server to verify if there are any addressing conflicts § From Domino Administrator People and Groups choose “Validate Internet Addresses” under “People” 50
  • 51. Tip #44: PIRC § New with 8.5.3 Purge Interval Replication Control § A database doesn’t replicate with a server for a year and then suddenly, one day, someone switches on an old machine and this old database (usually containing names.nsf) suddenly replicates. –and brings back all the deleted documents that are more than 90 days old with it § Suddenly your server replica is full of old documents you deleted months ago § A new database property on a database running on 8.5.3 or higher will prevent documents old than the purge date from replicating back in § To turn on PIRC to a large number of databases use Compact '-PIRC On' § The replicating client or server will think it has replicated successfully but the receiving server will reject the unwanted notes. To see what’s happening you can enable –DEBUG_REPL_PIRC (1 for general info , 2 for specific data info) –Replicate -NOPIRC will force PIRC to turn off for that replication session only 51
  • 52. Tip #45: The mysterious growing HTML font size... § Ever play email tennis? –Ever see replies getting bigger? • Ever see the next reply getting bigger again? § Well.. these were supposed to be regulated by the configuration document –MIME/Settings by Character groups § From 8.5.2 –This value is ignored –HTML font size is fixed at 12 52
  • 53. Tip #46: Set conf versus config doc § Set conf –Useful –Fast –Dymanic (usually) § Config document –Structured –easier tomanage § Lets have both! –EnableSrvCfg_nab_Update=1 –As you type in set conf commands, they go intot he config doc § Alternatively –Append ‘update’ to set conf commands 53
  • 54. Tip #47: Remove the banner details from http server § Standard security recommendation § Most web servers will broadcast “what” they are –Including Domino § Add HTTPDisableServerHeader=1 to server notes.ini –Information not given § This is obscurity, NOT security 54
  • 55. Tip #48: Client clock feature § Basic method of testing nrpc response times § Sometimes useful for testing support § ClientClock=1 / 2 / 3 in notes.ini –Restart § Console now appears logging data § Have Console_log_enabled=1 –All data now written to the console logs under Technical Support directory 55
  • 56. Tip #49: Save your admin URLs in admin client § We have many admin clients –Portal –Sametime –Connections § Save the admin links to your admin client § They are now visible in bookmarks § 56
  • 57. Tip #50 Stop mail forwarding § Dark pit in hell reserved for people that forward corporate email to hotmail, gmail, icloud, AOL, etc etc § So.. disable the ability to use forward based rules § Config document –RouterSMTP –Restrictions and Controls –Delivery controls –User Rules Mail forwarding • Set to disabled 57
  • 58. Tip #51: RNRMgr in a Cluster § Rooms and Resources Manager handles booking and availability of Domino based rooms and resources § In a large cluster some people think you need to run RNRMgr on all servers –In fact this can cause problems in resource management § RNRMgr can actually only run successfully on two hosts, although you may think it’s running on all servers you load it on § One host must be the administration server for the resource database (as defined on the Advanced tab of the resource database ACL) § The other is any single clustermate of that administration server –any of the clustermates will do so long as you only load rnrmgr on one § Trying to run RNRMgr on more than those two servers can cause scheduling problems and conflicts in busytime.nsf 58
  • 59. Tip #52: Speed up mail delivery to a single destination § Domino uses transfer threads to route mail to other servers and also to SMTP destinations outside your organisations § If you have 100 messages going to another server or to gmail - only one transfer thread will be generated § This means that the server can more efficiently use multiple threads for multiple destinations and mail is less likely to be backlogged § With RouterAllowConcurrentXferToAll=1 –Domino will create multiple threads per destination, delivering messages in the order they are queued and not restricting each destination to a single thread –Yay! 59
  • 60. Tip #53: NSF_DBcache_Maxentries Performance § NSF_DBCache_Maxentries determines who many databases the Domino server will keep open in its cache § Without the explicit setting, Domino stores the last 25 open databases in cache § Cached databases are quicker to access § If you have the memory you can increase the number of cached databases using NSF_DBCache_Maxentries=x § The statistic database.dbcache.hits reports on how often a database access request was found in the cache. This number should be high, if it’s low then the databases being requested are not in the cache regularly enough. 60
  • 61. Tip #54: Create_R85_Log § The standard size for blocks used to create transaction logs is 512bytes but newer operating systems often used larger block sizes for file creation § Beginning with Domino 8.5, the format of transaction logs can be optimized for Domino servers on operating systems that use a block size different than the default block size of 512 bytes. § The NOTES.INI option Create_R85_Log=1 will create new transaction logs with an updated format, properly aligning blocks for I/O. § It’s geeky, nerdy and obscure but it matters a lot to some backup / restore software 61
  • 62. Tip #55: Tell Traveler PMR Traveler is almost a “default install” On many many sites Fantastic logging ability Increase logging per user! Dont you wish Domino could do that Dump all user information Don’t you wish Domino could do that Collect all information and configuration/logs into one handy file Tell Traveler log collect Don’t you wish Domino could do that How about this? Collect all inforomation and upload it to a specific PMR directly to IBM Tell Traveler pmr <PMR NUMBER> ...Don’t you wish.... 62
  • 63. Tip #56: Console Log Mirroring § An 8.5 feature § Log mirroring takes the console.log –Copies it after exceeding 100mb –Retains it for future reading/troubleshooting –Nice feature § Parameters –Console_Log_Mirror=1 -- Enables the mirroring feature –Retain_Mirror_Logs=1 -- Prevents deletion of previous mirrors when Domino starts –Console_Log_Max_Kbytes= -- Sets the maximum size of the Console Log/mirror files 63
  • 64. Tip #57: Sh St VM (Windows Only) [0968:0006-12E4] PID VMSize (KB) MemUsage (KB) pgFlts/sec procName %CPU Time [0968:0006-12E4] 4520 500040 436512 0.000000 nhttp0.000000 1 8587392740.000000 [0968:0006-12E4] 2408 382256 216068 0.400000 nserver0.000000 1 8588648560.000000 [0968:0006-12E4] 3172 113816 183044 0.000000 nldap0.000000 1 8588856772.000000 [0968:0006-12E4] 3980 110876 114612 0.330000 nevent0.030000 1 8588856811.000000 The Show Stat vm command displays the following system-wide summary information when available: Total physical memory available Available physical memory (Total - Used) PageFaults -- Indicates if there is heavy paging activity on the system, and identify and report the processes that are consuming the most virtual memory. The Show Stat vm command displays the following per-process memory information: Process identification number (pid) Program name Virtual memory size Memory Usage Page Faults (per second) % CPU Time 64
  • 65. Tip #58: Use LDAP Password For Authentication –To authenticate a user against a Domino server we usually use the HTTP password in the person document –this applies to web applications, as well as Traveler, IMAP and POP etc –Instead of using the HTTP password in the person document Domino can instead validate against any alternate LDAP server with no additional server or client tools –Have your Traveler users validate using their Domino name and Active Directory password –Configure Directory Assistance to point to a LDAP server –Ensure an LDAP attribute contains the user’s Domino hierarchical name –That’s it –Domino will now accept both the HTTP Password in the person document and the password in the Active Directory entry that contains the hierarchical name –So you could clear out the Domino HTTP Passwords completely and just use the LDAP Password –Presentation on how to configure it here http://bit.ly/UYPc41 65
  • 66. Tip #59: Sametime Configuration Validator § Tool available for download from IBM Support (no PMR required) § Analyses configuration details and install files for the entire Sametime environment including Domino , WebSphere configuration and ini settings § Produces a report on –Deployment Manager Sync – Validates that all nodes are in sync with the DMGR – WebSphere iFix - Check for missing iFixes for Sametime version   – LDAP Configuration – Consistent across environment   – Web SSO Configuration – Consistent across environment   – Domino Configuration – Validates Domino LDAP is not running on a Sametime Server   – Community Configuration – Validate Community Settings for Proxy, and Meeting.   § As well as environment details that can be given to support § Details including presentation and Q&A here http://www-01.ibm.com/support/ docview.wss?uid=swg27035839 66
  • 67. Tip #60: Join the ND9 public beta program § There is a major release on the way § IBM have had thousands of downloads of the beta software –Who here is running it? § The more opinions the better § The more testing the better § Install and play with the beta –Give feedback! 67
  • 68. Thank you... pmooney@pmooney.net (geekmail) gabriella@turtlepartnership.com pmooney.net (geeksite) blog.turtleweb.com www.twitter.com/pmooneynet (geektweets) www.twitter.com/gabturtle bleedyellow.com (IM) bleedyellow.com (geekchat) lotuslive.com (IM) paul_mooney@hotmail.com (geekmsn) greenhouse.com (IM) pmooney.net (skype) (geekcall) gabrielladavis (skype) www.turtlepartnership.com www.bluewave.ie (worksite) www.bluewavegroup.eu (workmail) paul.mooney@besystems.eu (moreworkmail) 68
  • 69. Legal Disclaimer © IBM Corporation 2009. All Rights Reserved. The information contained in this publication is provided for informational purposes only. While efforts were made to verify the completeness and accuracy of the information contained in this publication, it is provided AS IS without warranty of any kind, express or implied. In addition, this information is based on IBM’s current product plans and strategy, which are subject to change by IBM without notice. IBM shall not be responsible for any damages arising out of the use of, or otherwise related to, this publication or any other materials. Nothing contained in this publication is intended to, nor shall have the effect of, creating any warranties or representations from IBM or its suppliers or licensors, or altering the terms and conditions of the applicable license agreement governing the use of IBM software. References in this presentation to IBM products, programs, or services do not imply that they will be available in all countries in which IBM operates. Product release dates and/or capabilities referenced in this presentation may change at any time at IBM’s sole discretion based on market opportunities or other factors, and are not intended to be a commitment to future product or feature availability in any way. Nothing contained in these materials is intended to, nor shall have the effect of, stating or implying that any activities undertaken by you will result in any specific sales, revenue growth or other results. IBM, the IBM logo, Lotus, Lotus Notes, Notes, Domino, Quickr, Sametime, WebSphere, UC2, PartnerWorld and Lotusphere are trademarks of International Business Machines Corporation in the United States, other countries, or both. Unyte is a trademark of WebDialogs, Inc., in the United States, other countries, or both. IJava and all Java-based trademarks are trademarks of Sun Microsystems, Inc. in the United States, other countries, or both. Other company, product, or service names may be trademarks or service marks of others. 69