Notes.ini Entry


Name:
    INet_Authenticate_With_Secondary

Syntax
    INet_Authenticate_With_Secondary=0 / 1

Applies to:
    Servers

Add-on:
    Yes

First Release:

    Obsolete since:

      Category:
        Quickplace

      Default:
        1

      UI equivalent:
        None

      Description:
      Allows a Domino POP3 server to use passwords stored in directories other than the primary for services other than HTTP, such as LDAP, IMAP, and POP3.

      Valid values are:

      0 - Disables this setting.

      1 - Enables this setting

      If you are using LDAP this allows authentification from the secondary adressbook.

      Setting this variabel to 0 Prevents LDAP authentication from working in any secondary Address Books. This also effects the Schedule Manager! The SchedMgr tasks will use this parameter/setting to decide if it should do more exhaustive lookups when validating users. Since the mail users will have to be in a trusted Directory Assistance for the mail server to authenticate them, turning on INet_Authenticate_With_Secondary=1 in the mail server's Notes.ini will allow SchedMgr to do a more exhaustive lookup and validation.

      This table displays the Domino settings used by Quickplace 2.x with Domino/LDAP service or just the Domino NAB.

      Config on Domino Server
      QuickPlace to Domino Server via Notes RPC
      QuickPlace to Domino Server via LDAP

      Lookups

      Authentication

      Lookups

      Authentication

      Primary NAB
      Sec NAB
      Primary NAB
      Sec NAB
      Primary NAB
      Sec NAB
      Primary NAB
      Sec NAB

      Cascaded NAB (old style) (names=names,cascaded)
      yes
      yes
      yes
      yes
      yes
      yes
      yes
      no

      Dir assistance (with inet_authenticate_with_secondary=1)
      yes
      yes
      yes
      yes
      yes&
      yes&
      yes
      yes

      Dir assistance (without inet_authenticate_with_secondary=1)
      yes
      yes
      yes
      yes
      yes&
      yes&
      yes
      no

      Dir catalog (without dir assist, with inet_authenticate_with_secondary=1) and IS dir cat being used
      yes
      no dir cat call
      no
      yes
      no dir cat call
      yes
      no dir cat call
      yes*
      yes*^
      yes
      no

      Dir catalog (without dir assist, without inet_authenticate_with_secondary=1)
      yes
      no
      yes
      yes
      yes*
      yes*^
      yes
      no

      Dir catalog (with dir assist, withinet_authenticate_with_secondary=1) and IS dir cat being used
      yes
      no dir cat call
      yes
      no dir cat call
      yes
      no dir cat call
      yes
      no dir cat call
      yes&
      yes^&
      yes
      yes

      Dir catalog (with dir assist, without inet_authenticate_with_secondary=1)
      yes
      yes
      yes
      yes
      yes&
      yes^&
      yes
      no

      Although the INET_AUTHENTICATE_WITH_SECONDARY=1 parameter allows services other than HTTP to use secondary directories to find names and passwords for authentication, only Domino directories - not external LDAP directories - can be used successfully. Therefore, a Person document configured with an internet password is required in the primary or secondary Domino Directory.

      Note that, if you are using the SET CONFIG command from the server console, the server does NOT need to be restarted in any way after the parameter has been entered. Since the parameter influences the Directory Assistance module, reconfiguration is almost instantaneous.

      In case of Quiclplace, for users to be added to places In addition to the notes.ini parameter, the secondary directory's entries in the directory assistance database must be set to TRUSTED for CREDENTIALS.