Beruflich Dokumente
Kultur Dokumente
(1 rating)
Abstract
Domino Policies
In the Notes/Domino environment, policies are a powerful feature allowing an administrator to control many user settings at once. They can be used to set purely
administrative controls like enabling inbox maintenance. Or they can be used to enforce company practices by enabling e-mail message disclaimers. The great power and
flexibility of policies; however, can be confusing and complicated particularly when multiple policies are used. Therefore this article will be used to call out and answer some
of the frequently asked questions regarding policies so that you can take advantage of all that they can do for you. The questions will be grouped into categories to make it
easier to find a particular question and answer. This list is just a start so check back later!
General
What is the priority with respect to each other of the different types of policies? (Organizational, Explicit, and Dynamic)
An upcoming Wiki entry will discuss this in great detail. But the general answer is that excluding Inherit/Enforce settings, the more specific policy takes precedence. So an
explicit policy takes precedence over a dynamic group policy and a dynamic group policy takes precedence over an organizational policy.
Why can't I send down NOTES.INI settings or managed settings for plug-ins down to the client?
In 8.5 you can! In a Desktop Settings document, look for the Custom Settings tab (far to the right on the list of tabs, use the arrows next to the tabs to get there) and you'll
see sub-tabs for Notes.ini and Managed Settings.
So what info is encoded in this hashed value? Previous to R8.5 and dynamic policies, it was simply the last modified time of the $Policies view in the server's NAB. With the
introduction of dynamic policies, the hash was expanded to include any group or user names that caused a policy to be assigned to the user, as well as the last modified time
of the $Policies view. So, if any policy info changes on the server, or the user is assigned to any new groups that cause a policy to be assigned to them, then the hash will
change which will trigger the client to pull new policies. Note that on the Domino server, we rely on the Update task to update the views in the NAB once per minute. If this
doesn't happen, then the $Policies view won't get updated, the code won't know anything has changed, and no policy changes will get pulled to the client. This is a very
common cause of policy problems on test machines.
In the Domino Admin client, there are several tools on the Configuration tab.
Policy Viewers
In the left-hand pane, there are a couple of ways to view your policies:
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/domino-policies-faq 2011.08.15.
Domino Policies - FAQ Page 2 of 4
The "By Settings" view allows you to easily see which policies a given Settings document is referenced from, so you can tell which users in your domain will be affected by a
change to that Settings document.
The "By Hierarchy" view shows your policies based on their hierarchical names. The best feature of this view is the ability to select a particular user, a particular policy
settings type (e.g., Desktop settings), and be shown the effective policy for that user. You select a user using these controls in the header of that tab:
Policy Synopsis
The Policy Synopsis tool is available from the toolbar on the right-hand side of the Configuration tab.
For the 'Report Type' one can get a summary report or a detailed report. In a summary report, the following information is provided:
Effective Policy for - this field provides a link back to the person record
Derived from the following policies: - shows which Policies entered into the calculation and provides links back to those Policy documents
One can chose to examine on or more Policies at a given time. In a detailed report, in addition to providng the "Effective Policy for " and "Derived from the following
policies" fields, the document will also contain
a report with very detailed information describing every item on the effective policy note, its value, which policy it came from, etc. It's very handy when you have multiple
policies assigned to a user and you want to know
why they are getting a particular value assigned to them. One can choose to append a record to the existing results database, or overwrite the database all together.
How often are Mail and Traveler settings applied?
Mail and Traveler settings are applied to the mail files on the server by the Administration Process (Adminp) every 12 hours by default. An administrator can also make
Adminp process those settings by using the following TELL commands on the server console: "tell adminp process mailpolicy" or "tell adminp process traveler".
Additionally, the server INI variable, ADMINP_POLL_INTERVAL, can be used to specify the time (in minutes) that Adminp should process those settings. However, since
this will cause Adminp to go through every mail file on the server, this setting should not be set too low so as not to impact server performance.
8.5 Features
Do new groups have to be created to use the new Dynamic Policy feature?
No, your existing groups can be used. Just place them under the Policy Assignment tab in the policy document.
No, a Home Server group is just a group that is auto-populated by those users that have the same home mail server. So while a Home Server group is populated differently
than a regular group, it can be used wherever a regular group is used and that includes Dynamic Policies.
If a user is in two different groups and each of those groups are in a different dynamic policy, which one takes precedence?
The precedence question only comes into play if both policies specify the same setting, otherwise the various settings from each policy are just merged. If there is a conflict
for a particular setting, the precedence setting specified in the Domino Directory in the People -> Policies -> Dynamic Policies view is used. There the group policies are
listed in decreasing precedence. So the setting from policy with the highest precedence would be chosen.
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/domino-policies-faq 2011.08.15.
Domino Policies - FAQ Page 3 of 4
Article information
Category: Customer self-assist, Domino admin, Domino policies, Lotus Domino, Lotus Notes, Notes client,
This Version: Version 8 2010. június 22. 7:58:57 by Jan Van Puyvelde
Attachments (0)
Versions (8)
Comments (6)
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/domino-policies-faq 2011.08.15.
Domino Policies - FAQ Page 4 of 4
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/domino-policies-faq 2011.08.15.