We have recently been using the new "Upload ID Files To ID Vault" process (in the Domino Directory), but would like to see a couple of enhancements:
Currently it requires a user to have a mail server in their person document. Most of the users we needed to upload into the vault are application only users (no mail server). We have had to change the person document, run the process and then revert the person document back. Maybe the process could use the home mail server of the admin user running the process (if the ID file being uploaded relates to a person without a mail server)?
The process can return an error indicating a problem with the ID Vault and/or Policy configuration when the actual issue was that it could not connect to the admin users home mail server. This appears to be related to the use of the API "SECPolicyGetVaultInfo" call to find the applicable vault for the ID being uploaded. Maybe this function could be enhanced so it can fail-over to a cluster mate if necessary?