DIRECTORY SERVICES

Specifying a name and password for Domino servers in a Directory Assistance document for a remote LDAP directory
In the "Optional Authentication Credential" section on the LDAP tab of a Directory Assistance document for a remote LDAP directory you can enter a distinguished user name and a password. If an IBM® Lotus® Domino™ server connects to the remote LDAP directory server, it presents the name and password so the remote LDAP directory server can authenticate the Domino server.

If you don't specify a name and password, a Domino server attempts to connect to a remote LDAP directory server anonymously. You must specify a name and password if the remote LDAP directory server does not allow anonymous access.

Enter a distinguished name in the Username field, and a password in the Password field. The name and password must correspond to a valid name and password in the remote LDAP directory. Enter the distinguished name in LDAP format, for example cn=domino server,o=acme.

The Username and Password fields are encryptable fields. Do the following to encrypt the fields to limit which Domino administrators and servers can read their contents:

1. Create a secret encryption key.

2. Use the secret encryption key to encrypt the Directory Assistance document.

3. Distribute and merge the encryption key only into the ID files of administrators and Domino servers who should read the user name and password.

Only administrators and servers with the secret encryption key can read the user name and password. Any Domino server that connects to the remote LDAP directory server or that replicates changes to the directory assistance database requires the encryption key.

For information on creating and using secret encryption keys, see Domino Designer 8 Help.

See also