SlideShare una empresa de Scribd logo

External users

Gabriella Davis
Gabriella Davis

Presentation on working with External Users in Connections v5 including how to configure that feature and some sample screenshots. Given first at Icon UK in London Sept 2014

Presentaciones y charlas públicas
1 de 36
Descargar para leer sin conexión
Bringing External Users Into Your Connections 5 World Gabriella Davis! Technical Director! The Turtle Partnership September 2014
01 Let’s talk about me for a minute ✤ Admin of all things and especially quite complicated things where the fun is! ✤ Working with security , healthchecks, single sign on, design and deployment of Domino, ST, Connections and things that they talk to! ✤ Stubborn and relentless problem solver! ✤ Lives in London about half of the time
What’s This All About?
How Does It Work - The Brief Version
What Can An External Person Do? ✤ Be a full member of a Community that allows external users! ✤ Share Files with others as well as Download files shared with you ! ✤ See Activity Streams that they are invited into! ✤ Edit Their Profile! ✤ View business cards of anyone who has shared content with them
What Can’t An External Person Do? ✤ See Any Public Content! ✤ Create a community! ✤ Follow people! ✤ See or search the company directory! ✤ Use type-ahead to find people! ✤ See recommended content or people! ✤ Access the Profiles menu! ✤ Access other user profiles! ✤ See @Mentions for them
✤ An existing Community can’t become a Community that allows external users! ✤ Once created as either internal or allowing external user access - a Community cannot be changed! ✤ Only internal users with a specific role can invite and share with external users! ✤ Communites with external users must be restricted
In general an external user is limited to participating in a restricted community they are invited into This isn’t a bad thing
Let’s set things up or … here comes the technical bit
01 Internal vs External User Directories ✤ Who am I talking to? Who am I sharing with?! ✤ There needs to be a simple way of identifying internal vs external users! ✤ We need to tell Connections how to identify an internal and external user! ✤ There are three ways to do this! ✤ They all involve using TDI scripts
A Quick Catch Up On TDI ✤ To enable external users, the Profile DB must be used as a Directory! ✤ TDISOL found in the Connections install directory! ✤ Updated on Fix Central! ✤ Files we change for External users! ✤ profiles_tdi.properties! ✤ map_dbrepos_from_source.properties! ✤ sync_all_dns
Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm*! ✤ source_ldap_search_filter_visitor_confirm
Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm! ✤ source_ldap_search_filter_visitor_confirm
Separate LDAP Steps ✤ Ensure the External directory is also configured as a Federated Repository in WAS! ✤ otherwise your external users can’t authenticate! ✤ source_ldap_search_base_visitor_confirm must not be empty! ✤ In mapdb_repos_from_source add sync_source_url_enforce=true so TDI doesn’t remove one directory’s entries
LDAP Attribute ✤ This is a bit easier but needs careful managing! ✤ In mapdb_repos_from_source assign an LDAP attribute so that mode=“external”! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User
LDAP Attribute As A Function ✤ Instead of mapping an LDAP attribute containing “external” to the mode= entry you can use a javascript function! ✤ The function must compute to the word ‘external’ for external users! ✤ It must be placed in profiles_functions.js file
Whatever Method You Choose ! sync_all_dns.bat when done .. on failure check the logs ibmdi.log and SyncUpdates.log
Exployee-Extended Role ✤ Not all internal users / employees can invite external users - they must have the special Connections role! ✤ “Employee-Extended! ✤ The only way to get this role is to be assigned it via wsadmin
Assigning Roles ✤ From /profiles/dmgr01/bin directory! ✤ wsadmin.bat/sh -lang jython -username <wasadmin> -password <password>! ✤ execfile(“profilesAdmin.py”)! ✤ ProfilesService.setRole(“gabriella@turtlepartnership.c om, EMPLOYEE_EXTENDED)
Securing the Perimeter
Directory Decisions ✤ How will external users register! ✤ Who will have rights to invite external users! ✤ Password quality
Anonymous Access ✤ Disable Anonymous access for all applications! ✤ Edit each application’s “security role to user group mapping” ! ✤ Ensure “reader” is not set to “Everyone”
Public Files ✤ External users can’t see public files! ✤ or can they?! ✤ If you use a caching proxy then the public cache will contain information external users shouldn’t see! ✤ Disable public caching in LotusConnections-config.mxl using <genericProperty name="publicCacheEnabled">false</ genericProperty>
Working with Libraries ✤ With CCM installed the URL /dm can provide access to any public Libraries! ✤ External users shouldn’t see public ANYTHING! ✤ Ensure the /dm URL is blocked from public interfaces
Desktop Plugin ✤ When using Connections, the interface constantly warns you if you are going to share with internal users! ✤ The desktop plugin doesn’t do that! ✤ This quote from the documentation says it all! ✤ “In addition, some operations might result in unexpected errors” !
Internal and External (Visitor) Views or.. Spot What’s Missing
Internal - Homepage
Visitor Homepage
Internal Community Page
Visitor Community Page
Internal - My Profile
Visitor My Profile
✤ As A Visitor…! ✤ You can add tags but not see existing tag lists! ✤ You can view partial business cards but not full profiles! ✤ You can search for content but that only finds things that are shared with you! ✤ You can share files but only with the Communities you are part of, not with people directly
✤ All of this is good - it keeps your environment secure! ✤ It protects your users from accidentally sharing something unintended! ✤ It doesn’t give up any information the external user doesn’t already know! ! ! ✤ Some things are a bit buggy but hopefully being fixed
01 Questions? ✤ Gab Davis - Technical Director! ✤ The Turtle Partnership! ✤ gabriella@turtlepartnership.com! ✤ GabriellaDavis on Skype! ✤ gabturtle on twitter

Recomendados

External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections Gabriella Davis
 
Webnet Presentation
Webnet PresentationWebnet Presentation
Webnet PresentationTrish Roque
 
What is jQuery?
What is jQuery?What is jQuery?
What is jQuery?tina3reese7
 
Modern Web Development
Modern Web DevelopmentModern Web Development
Modern Web DevelopmentRobert Nyman
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradeGabriella Davis
 
Changing technologies
Changing technologiesChanging technologies
Changing technologiesGabriella Davis
 
User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)TIMETOACT GROUP
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections UpgradeGabriella Davis
 

Recomendados

External Users Accessing Connections
External Users Accessing Connections External Users Accessing Connections
External Users Accessing Connections Gabriella Davis
 
Webnet Presentation
Webnet PresentationWebnet Presentation
Webnet PresentationTrish Roque
 
What is jQuery?
What is jQuery?What is jQuery?
What is jQuery?tina3reese7
 
Modern Web Development
Modern Web DevelopmentModern Web Development
Modern Web DevelopmentRobert Nyman
 
Planning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradePlanning & Completing An IBM Connections Upgrade
Planning & Completing An IBM Connections UpgradeGabriella Davis
 
Changing technologies
Changing technologiesChanging technologies
Changing technologiesGabriella Davis
 
User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)User Access Manager for IBM Connections (UAM)
User Access Manager for IBM Connections (UAM)TIMETOACT GROUP
 
1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections Upgrade 1084: Planning and Completing an IBM Connections Upgrade
1084: Planning and Completing an IBM Connections UpgradeGabriella Davis
 
Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesGabriella Davis
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoGabriella Davis
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorGabriella Davis
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessRené Winkelmeyer
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Gabriella Davis
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile ExperienceGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesGabriella Davis
 
Domino Adminblast
Domino AdminblastDomino Adminblast
Domino AdminblastGabriella Davis
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 CertificatesGabriella Davis
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Gabriella Davis
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”panagenda
 
IBM Single Sign-On
IBM Single Sign-OnIBM Single Sign-On
IBM Single Sign-OnVan Staub, MBA
 
Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal introTarunsingh198
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbaivibrantuser
 
Pastanaga UI
Pastanaga UIPastanaga UI
Pastanaga UIkitconcept GmbH
 
Drupal intro (1)
Drupal intro (1)Drupal intro (1)
Drupal intro (1)abhineshsharma
 
Drupal intro
Drupal introDrupal intro
Drupal introGeetanjali Srivastava
 
Drupal intro
Drupal introDrupal intro
Drupal introAntonio Perez
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)Rachel M. Carmena
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site AccessibleHelena Zubkow
 
Adminblast 2013
Adminblast 2013Adminblast 2013
Adminblast 2013Gabriella Davis
 

Más contenido relacionado

Destacado

Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesGabriella Davis
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoGabriella Davis
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorGabriella Davis
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessRené Winkelmeyer
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Gabriella Davis
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile ExperienceGabriella Davis
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceGabriella Davis
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesGabriella Davis
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 CertificatesGabriella Davis
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Gabriella Davis
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”panagenda
 

Destacado (13)

Working With Sametime For Mobile Devices
Working With Sametime For Mobile DevicesWorking With Sametime For Mobile Devices
Working With Sametime For Mobile Devices
 
A Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & VideoA Guide To Sametime 9.0.1 Audio & Video
A Guide To Sametime 9.0.1 Audio & Video
 
What We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections AdministratorWhat We Wish We Had Known: Becoming an IBM Connections Administrator
What We Wish We Had Known: Becoming an IBM Connections Administrator
 
ConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily BusinessConnectED 2015 - IBM Notes Traveler Daily Business
ConnectED 2015 - IBM Notes Traveler Daily Business
 
Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...Connections Directory Integration: A Tour Through Best Practices for Directo...
Connections Directory Integration: A Tour Through Best Practices for Directo...
 
The Sametime Mobile Experience
The Sametime Mobile ExperienceThe Sametime Mobile Experience
The Sametime Mobile Experience
 
IBM Traveler Management, Security and Performance
IBM Traveler Management, Security and PerformanceIBM Traveler Management, Security and Performance
IBM Traveler Management, Security and Performance
 
The SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 CertificatesThe SSL Problem and How to Deploy SHA2 Certificates
The SSL Problem and How to Deploy SHA2 Certificates
 
Domino Adminblast
Domino AdminblastDomino Adminblast
Domino Adminblast
 
Fun With SHA2 Certificates
Fun With SHA2 CertificatesFun With SHA2 Certificates
Fun With SHA2 Certificates
 
Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1Upgrading to Sametime 9.0.1
Upgrading to Sametime 9.0.1
 
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
Soccnx10: IBM Connections Troubleshooting or “Get the Cow off the Ice”
 
IBM Single Sign-On
IBM Single Sign-OnIBM Single Sign-On
IBM Single Sign-On
 

Similar a External users

Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal introTarunsingh198
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbaivibrantuser
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)Rachel M. Carmena
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site AccessibleHelena Zubkow
 
Denver ACE March Remote Transition Tips
Denver ACE March Remote Transition TipsDenver ACE March Remote Transition Tips
Denver ACE March Remote Transition Tipsdenveraug
 
GDD Moscow - Open Social
GDD Moscow - Open SocialGDD Moscow - Open Social
GDD Moscow - Open SocialChris Chabot
 
Bringing "real life" relations to Plone
Bringing "real life" relations to PloneBringing "real life" relations to Plone
Bringing "real life" relations to PloneMassimo Azzolini
 
Splunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk
 
User Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIUser Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIStacy Deere
 
Your First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyYour First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyStuart McIntyre
 
Destination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your OrgDestination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your Orgcsupilowski
 

Similar a External users (20)

Synapse india reviews on drupal intro
Synapse india reviews on drupal introSynapse india reviews on drupal intro
Synapse india reviews on drupal intro
 
Drupal intro-training-in-mumbai
Drupal intro-training-in-mumbaiDrupal intro-training-in-mumbai
Drupal intro-training-in-mumbai
 
Pastanaga UI
Pastanaga UIPastanaga UI
Pastanaga UI
 
Drupal intro (1)
Drupal intro (1)Drupal intro (1)
Drupal intro (1)
 
Drupal intro
Drupal introDrupal intro
Drupal intro
 
Drupal intro
Drupal introDrupal intro
Drupal intro
 
The power of accessibility (November, 2018)
The power of accessibility (November, 2018)The power of accessibility (November, 2018)
The power of accessibility (November, 2018)
 
10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible10 Simple Rules for Making My Site Accessible
10 Simple Rules for Making My Site Accessible
 
Adminblast 2013
Adminblast 2013Adminblast 2013
Adminblast 2013
 
Denver ACE March Remote Transition Tips
Denver ACE March Remote Transition TipsDenver ACE March Remote Transition Tips
Denver ACE March Remote Transition Tips
 
GDD Moscow - Open Social
GDD Moscow - Open SocialGDD Moscow - Open Social
GDD Moscow - Open Social
 
Bringing "real life" relations to Plone
Bringing "real life" relations to PloneBringing "real life" relations to Plone
Bringing "real life" relations to Plone
 
Splunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User ExperienceSplunk conf2014 - Curating User Experience
Splunk conf2014 - Curating User Experience
 
BDD, Behat & Drupal
BDD, Behat & DrupalBDD, Behat & Drupal
BDD, Behat & Drupal
 
Joomla! Template for Beginners
Joomla! Template for BeginnersJoomla! Template for Beginners
Joomla! Template for Beginners
 
User Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHIUser Profiles: I Didn't Know I Could Do That!! @SPSHI
User Profiles: I Didn't Know I Could Do That!! @SPSHI
 
Your First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made EasyYour First Lotus Connections 2.5 Customisations Made Easy
Your First Lotus Connections 2.5 Customisations Made Easy
 
Destination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your OrgDestination Documentation: How Not to Get Lost in Your Org
Destination Documentation: How Not to Get Lost in Your Org
 
Luis Majano The Battlefield ORM
Luis Majano The Battlefield ORMLuis Majano The Battlefield ORM
Luis Majano The Battlefield ORM
 
Drupal -Introduction to Drupal
Drupal -Introduction to DrupalDrupal -Introduction to Drupal
Drupal -Introduction to Drupal
 

Más de Gabriella Davis

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsGabriella Davis
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience ProjectGabriella Davis
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and ManagingGabriella Davis
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesGabriella Davis
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Gabriella Davis
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...Gabriella Davis
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerGabriella Davis
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryGabriella Davis
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsGabriella Davis
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsGabriella Davis
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To DockerGabriella Davis
 

Más de Gabriella Davis (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Engage2022 - Domino Admin Tips
Engage2022 - Domino Admin TipsEngage2022 - Domino Admin Tips
Engage2022 - Domino Admin Tips
 
. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project. Design Decisions: Developing for Mobile - The Template Experience Project
. Design Decisions: Developing for Mobile - The Template Experience Project
 
Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing Domino Server Health - Monitoring and Managing
Domino Server Health - Monitoring and Managing
 
Face Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On PremisesFace Off Domino vs Exchange On Premises
Face Off Domino vs Exchange On Premises
 
60 Admin Tips
60 Admin Tips60 Admin Tips
60 Admin Tips
 
Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10Adminlicious - A Guide To TCO Features In Domino v10
Adminlicious - A Guide To TCO Features In Domino v10
 
An Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for DockerAn Introduction to Configuring Domino for Docker
An Introduction to Configuring Domino for Docker
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
× The Road To A #Perfect10 - How To Get Ready For Domino, Sametime, VOP and T...
 
An introduction to configuring Domino for Docker
An introduction to configuring Domino for DockerAn introduction to configuring Domino for Docker
An introduction to configuring Domino for Docker
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & Discovery
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
Brand Yourself
Brand YourselfBrand Yourself
Brand Yourself
 
Home Working
Home WorkingHome Working
Home Working
 
A Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration SolutionsA Guide To Single Sign-On for IBM Collaboration Solutions
A Guide To Single Sign-On for IBM Collaboration Solutions
 
The Imposter Syndrome
The Imposter SyndromeThe Imposter Syndrome
The Imposter Syndrome
 
What's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-PremisesWhat's New in Notes, Sametime and Verse On-Premises
What's New in Notes, Sametime and Verse On-Premises
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To Docker
 
An Introduction To Docker
An Introduction To DockerAn Introduction To Docker
An Introduction To Docker
 

Último

Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...
Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...
Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...Pooja Nehwal
 
Digital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of DrupalDigital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of DrupalFabian de Rijk
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Vipesco
 
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...Delhi Call girls
 
Causes of poverty in France presentation.pptx
Causes of poverty in France presentation.pptxCauses of poverty in France presentation.pptx
Causes of poverty in France presentation.pptxCamilleBoulbin1
 
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verified
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verifiedSector 62, Noida Call girls :8448380779 Noida Escorts | 100% verified
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verifiedDelhi Call girls
 
Report Writing Webinar Training
Report Writing Webinar TrainingReport Writing Webinar Training
Report Writing Webinar TrainingKylaCullinane
 
Dreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video TreatmentDreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video Treatmentnswingard
 
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdfAWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdfSkillCertProExams
 
My Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle BaileyMy Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle Baileyhlharris
 
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfThe workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfSenaatti-kiinteistöt
 
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...amilabibi1
 
lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.lodhisaajjda
 
Dreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio IIIDreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio IIINhPhngng3
 
If this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaIf this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaKayode Fayemi
 
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxChiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxraffaeleoman
 
Uncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac FolorunsoUncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac FolorunsoKayode Fayemi
 

Último (18)

Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...
Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...
Aesthetic Colaba Mumbai Cst Call girls 📞 7738631006 Grant road Call Girls ❤️-...
 
Digital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of DrupalDigital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of Drupal
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510
 
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...
Busty Desi⚡Call Girls in Sector 51 Noida Escorts >༒8448380779 Escort Service-...
 
Causes of poverty in France presentation.pptx
Causes of poverty in France presentation.pptxCauses of poverty in France presentation.pptx
Causes of poverty in France presentation.pptx
 
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verified
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verifiedSector 62, Noida Call girls :8448380779 Noida Escorts | 100% verified
Sector 62, Noida Call girls :8448380779 Noida Escorts | 100% verified
 
Report Writing Webinar Training
Report Writing Webinar TrainingReport Writing Webinar Training
Report Writing Webinar Training
 
Dreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video TreatmentDreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video Treatment
 
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdfAWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
 
My Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle BaileyMy Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle Bailey
 
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdfThe workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
The workplace ecosystem of the future 24.4.2024 Fabritius_share ii.pdf
 
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
 
lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.
 
Dreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio IIIDreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio III
 
If this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New NigeriaIf this Giant Must Walk: A Manifesto for a New Nigeria
If this Giant Must Walk: A Manifesto for a New Nigeria
 
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptxChiulli_Aurora_Oman_Raffaele_Beowulf.pptx
Chiulli_Aurora_Oman_Raffaele_Beowulf.pptx
 
Uncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac FolorunsoUncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac Folorunso
 
ICT role in 21st century education and it's challenges.pdf
ICT role in 21st century education and it's challenges.pdfICT role in 21st century education and it's challenges.pdf
ICT role in 21st century education and it's challenges.pdf
 

External users

  • 1. Bringing External Users Into Your Connections 5 World Gabriella Davis! Technical Director! The Turtle Partnership September 2014
  • 2. 01 Let’s talk about me for a minute ✤ Admin of all things and especially quite complicated things where the fun is! ✤ Working with security , healthchecks, single sign on, design and deployment of Domino, ST, Connections and things that they talk to! ✤ Stubborn and relentless problem solver! ✤ Lives in London about half of the time
  • 4.
  • 5. How Does It Work - The Brief Version
  • 6. What Can An External Person Do? ✤ Be a full member of a Community that allows external users! ✤ Share Files with others as well as Download files shared with you ! ✤ See Activity Streams that they are invited into! ✤ Edit Their Profile! ✤ View business cards of anyone who has shared content with them
  • 7. What Can’t An External Person Do? ✤ See Any Public Content! ✤ Create a community! ✤ Follow people! ✤ See or search the company directory! ✤ Use type-ahead to find people! ✤ See recommended content or people! ✤ Access the Profiles menu! ✤ Access other user profiles! ✤ See @Mentions for them
  • 8. ✤ An existing Community can’t become a Community that allows external users! ✤ Once created as either internal or allowing external user access - a Community cannot be changed! ✤ Only internal users with a specific role can invite and share with external users! ✤ Communites with external users must be restricted
  • 9. In general an external user is limited to participating in a restricted community they are invited into This isn’t a bad thing
  • 10. Let’s set things up or … here comes the technical bit
  • 11. 01 Internal vs External User Directories ✤ Who am I talking to? Who am I sharing with?! ✤ There needs to be a simple way of identifying internal vs external users! ✤ We need to tell Connections how to identify an internal and external user! ✤ There are three ways to do this! ✤ They all involve using TDI scripts
  • 12. A Quick Catch Up On TDI ✤ To enable external users, the Profile DB must be used as a Directory! ✤ TDISOL found in the Connections install directory! ✤ Updated on Fix Central! ✤ Files we change for External users! ✤ profiles_tdi.properties! ✤ map_dbrepos_from_source.properties! ✤ sync_all_dns
  • 13. Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm*! ✤ source_ldap_search_filter_visitor_confirm
  • 14. Separate LDAP Branch or Server ✤ In map_dbrepos_from_source.properties! ✤ mode={func_mode_visitor_branch}! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User! ✤ In profiles_tdi.properties! ! ! ✤ source_ldap_url_visitor_confirm! ✤ source_ldap_search_base_visitor_confirm! ✤ source_ldap_search_filter_visitor_confirm
  • 15. Separate LDAP Steps ✤ Ensure the External directory is also configured as a Federated Repository in WAS! ✤ otherwise your external users can’t authenticate! ✤ source_ldap_search_base_visitor_confirm must not be empty! ✤ In mapdb_repos_from_source add sync_source_url_enforce=true so TDI doesn’t remove one directory’s entries
  • 16. LDAP Attribute ✤ This is a bit easier but needs careful managing! ✤ In mapdb_repos_from_source assign an LDAP attribute so that mode=“external”! ✤ displayName={func_decorate_displayName_if_visitor}! ✤ displayNameLdapAttr=cn! ✤ decorateVisitorDisplayName= - External User
  • 17. LDAP Attribute As A Function ✤ Instead of mapping an LDAP attribute containing “external” to the mode= entry you can use a javascript function! ✤ The function must compute to the word ‘external’ for external users! ✤ It must be placed in profiles_functions.js file
  • 18. Whatever Method You Choose ! sync_all_dns.bat when done .. on failure check the logs ibmdi.log and SyncUpdates.log
  • 19. Exployee-Extended Role ✤ Not all internal users / employees can invite external users - they must have the special Connections role! ✤ “Employee-Extended! ✤ The only way to get this role is to be assigned it via wsadmin
  • 20. Assigning Roles ✤ From /profiles/dmgr01/bin directory! ✤ wsadmin.bat/sh -lang jython -username <wasadmin> -password <password>! ✤ execfile(“profilesAdmin.py”)! ✤ ProfilesService.setRole(“gabriella@turtlepartnership.c om, EMPLOYEE_EXTENDED)
  • 22. Directory Decisions ✤ How will external users register! ✤ Who will have rights to invite external users! ✤ Password quality
  • 23. Anonymous Access ✤ Disable Anonymous access for all applications! ✤ Edit each application’s “security role to user group mapping” ! ✤ Ensure “reader” is not set to “Everyone”
  • 24. Public Files ✤ External users can’t see public files! ✤ or can they?! ✤ If you use a caching proxy then the public cache will contain information external users shouldn’t see! ✤ Disable public caching in LotusConnections-config.mxl using <genericProperty name="publicCacheEnabled">false</ genericProperty>
  • 25. Working with Libraries ✤ With CCM installed the URL /dm can provide access to any public Libraries! ✤ External users shouldn’t see public ANYTHING! ✤ Ensure the /dm URL is blocked from public interfaces
  • 26. Desktop Plugin ✤ When using Connections, the interface constantly warns you if you are going to share with internal users! ✤ The desktop plugin doesn’t do that! ✤ This quote from the documentation says it all! ✤ “In addition, some operations might result in unexpected errors” !
  • 27. Internal and External (Visitor) Views or.. Spot What’s Missing
  • 32. Internal - My Profile
  • 34. ✤ As A Visitor…! ✤ You can add tags but not see existing tag lists! ✤ You can view partial business cards but not full profiles! ✤ You can search for content but that only finds things that are shared with you! ✤ You can share files but only with the Communities you are part of, not with people directly
  • 35. ✤ All of this is good - it keeps your environment secure! ✤ It protects your users from accidentally sharing something unintended! ✤ It doesn’t give up any information the external user doesn’t already know! ! ! ✤ Some things are a bit buggy but hopefully being fixed
  • 36. 01 Questions? ✤ Gab Davis - Technical Director! ✤ The Turtle Partnership! ✤ gabriella@turtlepartnership.com! ✤ GabriellaDavis on Skype! ✤ gabturtle on twitter