Enterprise Vault 11.0.1 Cumulative Hotfix 4: New Custodian Manager option to use a synchronization account for all Domino LDAP communications

book

Article ID: 100031513

calendar_today

Updated On:

Description

Bypass the synchronization account checks

  1. On the Discovery Accelerator server, find the following file and open it in a plain-text editor such as Windows Notepad:

    ..\Program Files (x86)\Enterprise Vault Business Accelerator\CustodianManagerWeb\web.config

  2. Add the following key to the ... section:

  3. Save and close the file.

  4. In a Command Prompt window, type iisreset to restart Internet Information Services (IIS).

Create the synchronization account to use with Domino

  1. In the Custodian Manager home page, click Synchronization Accounts.

  2. In the Synchronization Accounts page, click New Account.

  3. In the Domain name (NETBIOS) field, type the name of the Domino server that you previously specified in the Directory Synchronization area of Custodian Manager. This is the Domino server against which Custodian Manager performs LDAP lookups.

  4. Check Use a specific account when connecting to the domain.

  5. In the Account name (domain\user) field, type the Domino domain and user name of the user with which to perform authenticated synchronization, separated by a backslash. For example, MyDomain\Domino Admin.

  6. In the Account password field, type the internet password for the specified Domino user.

    IMPORTANT: Do not click Check Account after you have entered the password.

  7. Click OK to save the new synchronization account and bypass the normal Active Directory account checks.

Enable LDAP authentication with Domino

  1. On the Discovery Accelerator server, find the following file and open it in a plain-text editor such as Windows Notepad:

    ..\Program Files (x86)\Enterprise Vault Business Accelerator\ADSynchroniser.exe.config

  2. Add the following key to the ... section:

  3. Save and close the file.

  4. Restart the Enterprise Vault Accelerator Manager service.

Subsequent synchronizations will now use the new synchronization account on each LDAP lookup to the corresponding Domino server.

Resolution

With Enterprise Vault 11.0.1 Cumulative Hotfix 4, all communications between Custodian Manager and a Domino LDAP directory can now be authenticated and not anonymous. This enhancement makes use of the existing synchronization account functionality, which previously was reserved for Active Directory communications only.

To obtain Enterprise Vault 11.0.1 Cumulative Hotfix 4, go to the following page:

https://www.veritas.com/docs/000097959

Follow the steps below to implement this enhancement.

Issue/Introduction

Existing versions of Custodian Manager permit only unauthenticated, anonymous access to a Domino LDAP directory.
Powered by Wolken Software