SlideShare uma empresa Scribd logo

External users

Gabriella Davis
Gabriella Davis

Presentation on working with External Users in Connections v5 including how to configure that feature and some sample screenshots. Given first at Icon UK in London Sept 2014

Apresentações e oratória
1 de 36
Baixar para ler offline
Bringing External Users Into Your Connections 5 World Gabriella Davis! Technical Director! The Turtle Partnership September 2014
01 Let’s talk about me for a minute ✤ Admin of all things and especially quite complicated things where the fun is! ✤ Working with security , healthchecks, single sign on, design and deployment of Domino, ST, Connections and things that they talk to! ✤ Stubborn and relentless problem solver! ✤ Lives in London about half of the time
What’s This All About?
How Does It Work - The Brief Version
What Can An External Person Do? ✤ Be a full member of a Community that allows external users! ✤ Share Files with others as well as Download files shared with you ! ✤ See Activity Streams that they are invited into! ✤ Edit Their Profile! ✤ View business cards of anyone who has shared content with them
What Can’t An External Person Do? ✤ See Any Public Content! ✤ Create a community! ✤ Follow people! ✤ See or search the company directory! ✤ Use type-ahead to find people! ✤ See recommended content or people! ✤ Access the Profiles menu! ✤ Access other user profiles! ✤ See @Mentions for them
✤ An existing Community can’t become a Community that allows external users! ✤ Once created as either internal or allowing external user access - a Community cannot be changed! ✤ Only internal users with a specific role can invite and share with external users! ✤ Communites with external users must be restricted
In general an external user is limited to participating in a restricted community they are invited into This isn’t a bad thing
Let’s set things up or … here comes the technical bit
01 Internal vs External User Directories ✤ Who am I talking to? Who am I sharing with?! ✤ There needs to be a simple way of identifying internal vs external users! ✤ We need to tell Connections how to identify an internal and external user! ✤ There are three ways to do this! ✤ They all involve using TDI scripts
A Quick Catch Up On TDI ✤ To enable external users, the Profile DB must be used as a Directory! ✤ TDISOL found in the Connections install directory! ✤ Updated on Fix Central! ✤ Files we change for External users! ✤ profiles_tdi.properties! ✤ map_dbrepos_from_source.properties! ✤ sync_all_dns
Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm*! ✤ source_ldap_search_filter_visitor_confirm
Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm! ✤ source_ldap_search_filter_visitor_confirm
Separate LDAP Steps ✤ Ensure the External directory is also configured as a Federated Repository in WAS! ✤ otherwise your external users can’t authenticate! ✤ source_ldap_search_base_visitor_confirm must not be empty! ✤ In mapdb_repos_from_source add sync_source_url_enforce=true so TDI doesn’t remove one directory’s entries
LDAP Attribute ✤ This is a bit easier but needs careful managing! ✤ In mapdb_repos_from_source assign an LDAP attribute so that mode=“external”! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User
LDAP Attribute As A Function ✤ Instead of mapping an LDAP attribute containing “external” to the mode= entry you can use a javascript function! ✤ The function must compute to the word ‘external’ for external users! ✤ It must be placed in profiles_functions.js file
Whatever Method You Choose ! sync_all_dns.bat when done .. on failure check the logs ibmdi.log and SyncUpdates.log
Exployee-Extended Role ✤ Not all internal users / employees can invite external users - they must have the special Connections role! ✤ “Employee-Extended! ✤ The only way to get this role is to be assigned it via wsadmin
Assigning Roles ✤ From /profiles/dmgr01/bin directory! ✤ wsadmin.bat/sh -lang jython -username <wasadmin> -password <password>! ✤ execfile(“profilesAdmin.py”)! ✤ ProfilesService.setRole(“gabriella@turtlepartnership.c om, EMPLOYEE_EXTENDED)
Securing the Perimeter
Directory Decisions ✤ How will external users register! ✤ Who will have rights to invite external users! ✤ Password quality
Anonymous Access ✤ Disable Anonymous access for all applications! ✤ Edit each application’s “security role to user group mapping” ! ✤ Ensure “reader” is not set to “Everyone”
Public Files ✤ External users can’t see public files! ✤ or can they?! ✤ If you use a caching proxy then the public cache will contain information external users shouldn’t see! ✤ Disable public caching in LotusConnections-config.mxl using <genericProperty name="publicCacheEnabled">false</ genericProperty>
Working with Libraries ✤ With CCM installed the URL /dm can provide access to any public Libraries! ✤ External users shouldn’t see public ANYTHING! ✤ Ensure the /dm URL is blocked from public interfaces
Desktop Plugin ✤ When using Connections, the interface constantly warns you if you are going to share with internal users! ✤ The desktop plugin doesn’t do that! ✤ This quote from the documentation says it all! ✤ “In addition, some operations might result in unexpected errors” !
Internal and External (Visitor) Views or.. Spot What’s Missing
Internal - Homepage
Visitor Homepage
Internal Community Page
Visitor Community Page
Internal - My Profile
Visitor My Profile
✤ As A Visitor…! ✤ You can add tags but not see existing tag lists! ✤ You can view partial business cards but not full profiles! ✤ You can search for content but that only finds things that are shared with you! ✤ You can share files but only with the Communities you are part of, not with people directly
✤ All of this is good - it keeps your environment secure! ✤ It protects your users from accidentally sharing something unintended! ✤ It doesn’t give up any information the external user doesn’t already know! ! ! ✤ Some things are a bit buggy but hopefully being fixed
01 Questions? ✤ Gab Davis - Technical Director! ✤ The Turtle Partnership! ✤ gabriella@turtlepartnership.com! ✤ GabriellaDavis on Skype! ✤ gabturtle on twitter

Recomendados

External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections Gabriella Davis
 
Webnet Presentation
Webnet PresentationWebnet Presentation
Webnet PresentationTrish Roque
 
What is jQuery?
What is jQuery?What is jQuery?
What is jQuery?tina3reese7
 
Modern Web Development
Modern Web DevelopmentModern Web Development
Modern Web DevelopmentRobert Nyman
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradeGabriella Davis
 
Changing technologies
Changing technologiesChanging technologies
Changing technologiesGabriella Davis
 
User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)TIMETOACT GROUP
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections UpgradeGabriella Davis
 

Recomendados

External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections Gabriella Davis
 
Webnet Presentation
Webnet PresentationWebnet Presentation
Webnet PresentationTrish Roque
 
What is jQuery?
What is jQuery?What is jQuery?
What is jQuery?tina3reese7
 
Modern Web Development
Modern Web DevelopmentModern Web Development
Modern Web DevelopmentRobert Nyman
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradeGabriella Davis
 
Changing technologies
Changing technologiesChanging technologies
Changing technologiesGabriella Davis
 
User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)TIMETOACT GROUP
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections UpgradeGabriella Davis
 
Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesGabriella Davis
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoGabriella Davis
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorGabriella Davis
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessRené Winkelmeyer
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Gabriella Davis
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile ExperienceGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesGabriella Davis
 
Domino Adminblast
Domino AdminblastDomino Adminblast
Domino AdminblastGabriella Davis
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 CertificatesGabriella Davis
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Gabriella Davis
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”panagenda
 
IBM Single Sign-On
IBM Single Sign-OnIBM Single Sign-On
IBM Single Sign-OnVan Staub, MBA
 
Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal introTarunsingh198
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbaivibrantuser
 
Pastanaga UI
Pastanaga UIPastanaga UI
Pastanaga UIkitconcept GmbH
 
Drupal intro (1)
Drupal intro (1)Drupal intro (1)
Drupal intro (1)abhineshsharma
 
Drupal intro
Drupal introDrupal intro
Drupal introGeetanjali Srivastava
 
Drupal intro
Drupal introDrupal intro
Drupal introAntonio Perez
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)Rachel M. Carmena
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site AccessibleHelena Zubkow
 
Adminblast 2013
Adminblast 2013Adminblast 2013
Adminblast 2013Gabriella Davis
 

Mais conteúdo relacionado

Destaque

Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesGabriella Davis
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoGabriella Davis
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorGabriella Davis
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessRené Winkelmeyer
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Gabriella Davis
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile ExperienceGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesGabriella Davis
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 CertificatesGabriella Davis
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Gabriella Davis
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”panagenda
 

Destaque (13)

Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile Devices
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & Video
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections Administrator
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily Business
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile Experience
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and Performance
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 Certificates
 
Domino Adminblast
Domino AdminblastDomino Adminblast
Domino Adminblast
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 Certificates
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
 
IBM Single Sign-On
IBM Single Sign-OnIBM Single Sign-On
IBM Single Sign-On
 

Semelhante a External users

Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal introTarunsingh198
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbaivibrantuser
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)Rachel M. Carmena
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site AccessibleHelena Zubkow
 
Denver ACE March Remote Transition Tips
Denver ACE March Remote Transition TipsDenver ACE March Remote Transition Tips
Denver ACE March Remote Transition Tipsdenveraug
 
GDD Moscow - Open Social
GDD Moscow - Open SocialGDD Moscow - Open Social
GDD Moscow - Open SocialChris Chabot
 
Bringing "real life" relations to Plone
Bringing "real life" relations to PloneBringing "real life" relations to Plone
Bringing "real life" relations to PloneMassimo Azzolini
 
Splunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk
 
User Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIUser Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIStacy Deere
 
Your First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyYour First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyStuart McIntyre
 
Destination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your OrgDestination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your Orgcsupilowski
 

Semelhante a External users (20)

Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal intro
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbai
 
Pastanaga UI
Pastanaga UIPastanaga UI
Pastanaga UI
 
Drupal intro (1)
Drupal intro (1)Drupal intro (1)
Drupal intro (1)
 
Drupal intro
Drupal introDrupal intro
Drupal intro
 
Drupal intro
Drupal introDrupal intro
Drupal intro
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible
 
Adminblast 2013
Adminblast 2013Adminblast 2013
Adminblast 2013
 
Denver ACE March Remote Transition Tips
Denver ACE March Remote Transition TipsDenver ACE March Remote Transition Tips
Denver ACE March Remote Transition Tips
 
GDD Moscow - Open Social
GDD Moscow - Open SocialGDD Moscow - Open Social
GDD Moscow - Open Social
 
Bringing "real life" relations to Plone
Bringing "real life" relations to PloneBringing "real life" relations to Plone
Bringing "real life" relations to Plone
 
Splunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User Experience
 
BDD, Behat & Drupal
BDD, Behat & DrupalBDD, Behat & Drupal
BDD, Behat & Drupal
 
Joomla! Template for Beginners
Joomla! Template for BeginnersJoomla! Template for Beginners
Joomla! Template for Beginners
 
User Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIUser Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHI
 
Your First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyYour First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made Easy
 
Destination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your OrgDestination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your Org
 
Luis Majano The Battlefield ORM
Luis Majano The Battlefield ORMLuis Majano The Battlefield ORM
Luis Majano The Battlefield ORM
 
Drupal -Introduction to Drupal
Drupal -Introduction to DrupalDrupal -Introduction to Drupal
Drupal -Introduction to Drupal
 

Mais de Gabriella Davis

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsGabriella Davis
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience ProjectGabriella Davis
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and ManagingGabriella Davis
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesGabriella Davis
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Gabriella Davis
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...Gabriella Davis
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerGabriella Davis
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsGabriella Davis
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 

Mais de Gabriella Davis (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin Tips
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On Premises
 
60 Admin Tips
60 Admin Tips60 Admin Tips
60 Admin Tips
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for Docker
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for Docker
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & Discovery
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
Brand Yourself
Brand YourselfBrand Yourself
Brand Yourself
 
Home Working
Home WorkingHome Working
Home Working
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration Solutions
 
The Imposter Syndrome
The Imposter SyndromeThe Imposter Syndrome
The Imposter Syndrome
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-Premises
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To Docker
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To Docker
 

Último

Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyCall Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyPooja Nehwal
 
Mathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMoumonDas2
 
Report Writing Webinar Training
Report Writing Webinar TrainingReport Writing Webinar Training
Report Writing Webinar TrainingKylaCullinane
 
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesVVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesPooja Nehwal
 
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...Sheetaleventcompany
 
If this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaIf this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaKayode Fayemi
 
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceDelhi Call girls
 
SaaStr Workshop Wednesday w/ Lucas Price, Yardstick
SaaStr Workshop Wednesday w/ Lucas Price, YardstickSaaStr Workshop Wednesday w/ Lucas Price, Yardstick
SaaStr Workshop Wednesday w/ Lucas Price, Yardsticksaastr
 
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort ServiceDelhi Call girls
 
Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Chameera Dedduwage
 
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfThe workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfSenaatti-kiinteistöt
 
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Hasting Chen
 
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxChiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxraffaeleoman
 
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779Night 7k Call Girls Noida Sector 128 Call Me: 8448380779
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779Delhi Call girls
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Vipesco
 
George Lever - eCommerce Day Chile 2024
George Lever - eCommerce Day Chile 2024George Lever - eCommerce Day Chile 2024
George Lever - eCommerce Day Chile 2024eCommerce Institute
 
Presentation on Engagement in Book Clubs
Presentation on Engagement in Book ClubsPresentation on Engagement in Book Clubs
Presentation on Engagement in Book Clubssamaasim06
 
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024eCommerce Institute
 
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...Kayode Fayemi
 
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxNikitaBankoti2
 

Último (20)

Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyCall Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
 
Mathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptx
 
Report Writing Webinar Training
Report Writing Webinar TrainingReport Writing Webinar Training
Report Writing Webinar Training
 
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesVVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
 
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...
No Advance 8868886958 Chandigarh Call Girls , Indian Call Girls For Full Nigh...
 
If this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaIf this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New Nigeria
 
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
 
SaaStr Workshop Wednesday w/ Lucas Price, Yardstick
SaaStr Workshop Wednesday w/ Lucas Price, YardstickSaaStr Workshop Wednesday w/ Lucas Price, Yardstick
SaaStr Workshop Wednesday w/ Lucas Price, Yardstick
 
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 97 Noida Escorts >༒8448380779 Escort Service
 
Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)
 
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfThe workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
 
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
 
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxChiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
 
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779Night 7k Call Girls Noida Sector 128 Call Me: 8448380779
Night 7k Call Girls Noida Sector 128 Call Me: 8448380779
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510
 
George Lever - eCommerce Day Chile 2024
George Lever - eCommerce Day Chile 2024George Lever - eCommerce Day Chile 2024
George Lever - eCommerce Day Chile 2024
 
Presentation on Engagement in Book Clubs
Presentation on Engagement in Book ClubsPresentation on Engagement in Book Clubs
Presentation on Engagement in Book Clubs
 
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024
Andrés Ramírez Gossler, Facundo Schinnea - eCommerce Day Chile 2024
 
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...
Governance and Nation-Building in Nigeria: Some Reflections on Options for Po...
 
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
 

External users

  • 1. Bringing External Users Into Your Connections 5 World Gabriella Davis! Technical Director! The Turtle Partnership September 2014
  • 2. 01 Let’s talk about me for a minute ✤ Admin of all things and especially quite complicated things where the fun is! ✤ Working with security , healthchecks, single sign on, design and deployment of Domino, ST, Connections and things that they talk to! ✤ Stubborn and relentless problem solver! ✤ Lives in London about half of the time
  • 4.
  • 5. How Does It Work - The Brief Version
  • 6. What Can An External Person Do? ✤ Be a full member of a Community that allows external users! ✤ Share Files with others as well as Download files shared with you ! ✤ See Activity Streams that they are invited into! ✤ Edit Their Profile! ✤ View business cards of anyone who has shared content with them
  • 7. What Can’t An External Person Do? ✤ See Any Public Content! ✤ Create a community! ✤ Follow people! ✤ See or search the company directory! ✤ Use type-ahead to find people! ✤ See recommended content or people! ✤ Access the Profiles menu! ✤ Access other user profiles! ✤ See @Mentions for them
  • 8. ✤ An existing Community can’t become a Community that allows external users! ✤ Once created as either internal or allowing external user access - a Community cannot be changed! ✤ Only internal users with a specific role can invite and share with external users! ✤ Communites with external users must be restricted
  • 9. In general an external user is limited to participating in a restricted community they are invited into This isn’t a bad thing
  • 10. Let’s set things up or … here comes the technical bit
  • 11. 01 Internal vs External User Directories ✤ Who am I talking to? Who am I sharing with?! ✤ There needs to be a simple way of identifying internal vs external users! ✤ We need to tell Connections how to identify an internal and external user! ✤ There are three ways to do this! ✤ They all involve using TDI scripts
  • 12. A Quick Catch Up On TDI ✤ To enable external users, the Profile DB must be used as a Directory! ✤ TDISOL found in the Connections install directory! ✤ Updated on Fix Central! ✤ Files we change for External users! ✤ profiles_tdi.properties! ✤ map_dbrepos_from_source.properties! ✤ sync_all_dns
  • 13. Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm*! ✤ source_ldap_search_filter_visitor_confirm
  • 14. Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm! ✤ source_ldap_search_filter_visitor_confirm
  • 15. Separate LDAP Steps ✤ Ensure the External directory is also configured as a Federated Repository in WAS! ✤ otherwise your external users can’t authenticate! ✤ source_ldap_search_base_visitor_confirm must not be empty! ✤ In mapdb_repos_from_source add sync_source_url_enforce=true so TDI doesn’t remove one directory’s entries
  • 16. LDAP Attribute ✤ This is a bit easier but needs careful managing! ✤ In mapdb_repos_from_source assign an LDAP attribute so that mode=“external”! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User
  • 17. LDAP Attribute As A Function ✤ Instead of mapping an LDAP attribute containing “external” to the mode= entry you can use a javascript function! ✤ The function must compute to the word ‘external’ for external users! ✤ It must be placed in profiles_functions.js file
  • 18. Whatever Method You Choose ! sync_all_dns.bat when done .. on failure check the logs ibmdi.log and SyncUpdates.log
  • 19. Exployee-Extended Role ✤ Not all internal users / employees can invite external users - they must have the special Connections role! ✤ “Employee-Extended! ✤ The only way to get this role is to be assigned it via wsadmin
  • 20. Assigning Roles ✤ From /profiles/dmgr01/bin directory! ✤ wsadmin.bat/sh -lang jython -username <wasadmin> -password <password>! ✤ execfile(“profilesAdmin.py”)! ✤ ProfilesService.setRole(“gabriella@turtlepartnership.c om, EMPLOYEE_EXTENDED)
  • 22. Directory Decisions ✤ How will external users register! ✤ Who will have rights to invite external users! ✤ Password quality
  • 23. Anonymous Access ✤ Disable Anonymous access for all applications! ✤ Edit each application’s “security role to user group mapping” ! ✤ Ensure “reader” is not set to “Everyone”
  • 24. Public Files ✤ External users can’t see public files! ✤ or can they?! ✤ If you use a caching proxy then the public cache will contain information external users shouldn’t see! ✤ Disable public caching in LotusConnections-config.mxl using <genericProperty name="publicCacheEnabled">false</ genericProperty>
  • 25. Working with Libraries ✤ With CCM installed the URL /dm can provide access to any public Libraries! ✤ External users shouldn’t see public ANYTHING! ✤ Ensure the /dm URL is blocked from public interfaces
  • 26. Desktop Plugin ✤ When using Connections, the interface constantly warns you if you are going to share with internal users! ✤ The desktop plugin doesn’t do that! ✤ This quote from the documentation says it all! ✤ “In addition, some operations might result in unexpected errors” !
  • 27. Internal and External (Visitor) Views or.. Spot What’s Missing
  • 32. Internal - My Profile
  • 34. ✤ As A Visitor…! ✤ You can add tags but not see existing tag lists! ✤ You can view partial business cards but not full profiles! ✤ You can search for content but that only finds things that are shared with you! ✤ You can share files but only with the Communities you are part of, not with people directly
  • 35. ✤ All of this is good - it keeps your environment secure! ✤ It protects your users from accidentally sharing something unintended! ✤ It doesn’t give up any information the external user doesn’t already know! ! ! ✤ Some things are a bit buggy but hopefully being fixed
  • 36. 01 Questions? ✤ Gab Davis - Technical Director! ✤ The Turtle Partnership! ✤ gabriella@turtlepartnership.com! ✤ GabriellaDavis on Skype! ✤ gabturtle on twitter