Skip to main content

Managing a user’s note ID file password

In Lotus Notes there are four places where a user’s ID file is stored:

  1. In a user’s document

  2. In an ID file stored in the mailfile

  3. In a location accessible to a batch file

  4. The Notes ID vault

The following are some of the options for managing a user’s note ID file password in different locations. These and other options are located within the id-file KVGroup in the configuration file :

  • reset determines whether or not to manage a user’s note ID file password. If set to yes , Bravura Pass is able to manage, reset and verify passwords on an ID file. The default is no.

    The ID file must also exist in the DID table before it can be managed by Bravura Pass . There are two ways to add a user’s note ID file to the DID table:

    1. Using the Bravura Security s Lotus Notes Extension. For details, see Lotus Notes Extension .

    2. Usingupddid.

  • usernote-attachment-update determines whether or not to manage a user’s note ID file password within the user’s document. If set to yes , Bravura Pass is able to manage, reset and verify passwords on the ID file in a user’s document. The default is no .

  • batch-file Specify the name of a batch file to enable this option. If a batch file is specified, agtdmno attempts to run the batch file and perform the operations contained within. This is often used to run copy operations and copy changes to other ID files. There is a sample batch file in the samples.

    If you cannot find the sample file, try re-running setup to modify your installation. Sample files are automatically installed with complete (typical) installations. You can select them in custom installations.

    For more information, see Configuring Bravura Pass batch files .

upddid

Use the upddid program to add, delete, or update entries in the Bravura Security Fabric did table (the digital ID repository). This program is installed with Bravura Security Fabric .

Requirements

Note the following:

  • Use double quotes (" ) to specify -didloc, -idfileloc, and -idfiledir arguments.

  • Escape backslashes in file names. That is, write \\.

Usage

upddid.exe -cmd get|put|delete -password <password> -target <target ID> [-workstnid <workstation ID>] [-nosid <NOS ID>] [-account <account ID>] [-didloc <digital ID path>] -idfileloc <filename> [-serverid <domino server>]
Table 1. upddid arguments

Argument

Description

-cmd <command>

The command to execute. Possible values are:

get Retrieve an ID file from the did table.

put Add or update an ID file in the did table.

delete Remove an ID file from the did table.

-password <password>

The password for the new digital ID.

-target <target ID>

The Lotus Notes target ID for the new digital ID.

-nosid <network operating system ID>

The user’s network account ID. This argument is required for a put operation.

-account <account ID>

The account ID for the stored digital ID. This argument is optional for the put command, but required for the get and delete commands.

-workstnid <workstation ID>

The ID of the client workstation on which the update is taking place.

-didloc <digital ID path>

The location path of the digital ID on the client workstation.

-idfiledir <folder>

The folder used to store retrieved digital ID files.

-idfileloc <filename>

The input or output location of the digital ID, including full path and the ID file name.

-serverid <serverid>

The ID of the Lotus Domino server. If not specified, the serverid field in the did table will be empty.



The upddid program verifies the supplied password before adding entries to the did table. It extracts the account name from the digital ID file.

Examples

  1. To get a digital ID file from the repository and place it in the c:\ directory, type on one line:

    upddid.exe -cmd get -account "CN=test 1/O=hitachi-id" -target DD -nosid test -workstnid WINxp206 -idfileloc "c:\psns\t1.id"

  2. To get a digital ID file from the repository and place it in the current working directory, type on one line:

    upddid.exe -cmd get -account "CN=test 1/O=hitachi-id" -target DD -nosid test -workstnid WINxp206 -idfiledir "."

  3. To put a digital ID file from the c:\ directory into the did table, type on one line:

    upddid.exe -cmd put -password haikou02 -target DD -nosid test -workstnid WINXP206 -didloc "c:\\id7\\t1.id" -idfileloc "c:\\id7\\t1.id" -serverid "domino7r"

  4. To delete a digital ID file:

    upddid.exe -cmd delete -account "CN=test 1/O=hitachi-id" -target DD -nosid test -workstnid WINXP20
In this section: