HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Add a new idea Subscribe
Status Needs Clarification
Workspace Domino
Categories Administration
Created by Guest
Created on Apr 17, 2023

RELATED IDEAS

Register users using a hash as the unique key

When you register a user using a unique hash thats the source of your personal keys/certificate, you never have to do a rename users by adminp anymore. The hash will never change and we can use the Full Name as the displayname. When a user needs te be renamed, just alter the changed information. Reader and Names fields contains the hash. Even groups must contain the hash. And just like Alternate Name, Notes will show the Full Name and not the hash.
  • Attach files
  • Guest
    Reply
    |     Apr 18, 2023

    Certificates are not in question, only the field that is used during the creation of it.

    Why not create a hash when you create a user and that has is used for generating the certificate?

    Now UserName is used and that is sooo inefficient. UserName is the key, and is changed often. This is calling out for soo much problems.

    The reason for the problems is that there are organizations that are not allowed to change the owner of a mail or calendar information. You wrote a mail or invited someone with your old name, not with your new name. It's now allowed because you cannot alter this kind of information. We have disable this in mail and certain databases.


    When you take a look at Outlook/Exchange/AD, users are registered with a GUID ( Like HCL Connections ), and this one is the hash that is not changed. You can easily change the name of the user without running complex renames in names/reader fields. Sometimes ADMINP lost track of the renames and people are not renames correctly. And the rename takes a while in Domino, when you have 80 servers....it takes almost 3 weeks.


    So, still use certificates but based on a hash and not the username so we can rename users without long running renames processes in ADMINP.

  • Admin
    Thomas Hampel
    Reply
    |     Apr 18, 2023

    Our entire system is based on certificates and certificates are issued for an identity, so how can one validate the identity if all you have is a hash that can map to any form of username string?

Copyright © 2023 HCL Technologies Limited