Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Status Needs Review
Workspace Notes
Created by Guest
Created on Apr 12, 2024

Admincentral - get user password in a way that isn't by email

Firstly, let's have a category for ideas relating to AdminCentral!

It's great that we can now register users and reset passwords using AdminCentral. At the moment, the only way you can get the new password for the user is to send it via email from the AdminCentral application.

There are further restrictions here - the email containing the password is encrypted so you can't send the email to a mail-in database (as there's no public key for the email to be decrypted with). If you're forwarding your mail to another service, then the encrypted part of the message is inaccessible. The only solution is to send the email to a Notes-enabled mail recipient, and you need to be logged in to Notes / Nomad / DWA as that Notes user to access the password.

Now - let's be honest here - not all Notes shops using Notes for mail. Whilst this feature is secure, it's also a bit frustrating.

Is there a way the reset password can be displayed to the administrator in some other way? Maybe a copyable text box which appears for a few seconds in AdminCentral after the password reset, or maybe AdminCentral itself could receive the email instead?

As a workaround, I need to switch the mail system for my AdminCentral users to Notes and remove their forwarders. Not the end of the world, but it can be annoying to have to check two mailboxes rather than one.

  • Attach files
  • Guest
    Apr 18, 2024

    Thanks for the reply.
    "Pick the user" is my issue with encrypted mail for mail-ins. I have at least a dozen local administrators which would like to take advantage of this.
    So I could create a mail-in for each administrator, but then I have multiple users per registration profile in AdminCentral.

    Removing the forwarders for the admins for the time being until other options become available.

  • Guest
    Apr 16, 2024

    We didn't want to store the password in AdminCentral, which is why we went with emailing encrypted as you said. You could use the PW Reset function in the regular admin client to choose a password (PW Reset in AdminCentral also emails the new password.) I understand what you are saying about not all Notes shops use Notes for mail. Displaying for a period of time is an interesting idea. BUt you CAN send encrypted mail to a mail-in db. After creating the mail file to be used, when creating the mail-in database document, on the Basis pane choose the "Encrypt incoming mail" option, then choose the form action "Get Certificates...", then pick the user you want to be able to read the encrypted mail. This will copy the Notes certified public key to a field under the Administration tab. Now in the AdminCenteral registration preferences choose the mail-in db as one of the recipients. Now when you register a user, you can go fetch the password from there!