Hello,

my customer i migrating from Notes 6.5 to 8.5.1 fp2 and so is willing
to use the new Domino ID Vault feature to store the user ID files (as
long as to store them on the remote loader file system also).
Novell's Notes driver documentation states that IDM 3.6.1 Notes driver
support the Domino ID vault, adding 3 new subscriber options; but this
documentation is only giving example of user delete policies to use.

I tried to use the 3 new options (using latest IDM Notes driver v3.5.5
from idm361notesir1 on a SLES10 SP2 server, using the Remote Loader
connection; the eDirectory 8.8.4 sp2 software is running on OESv2 SP1
Linux server), but the user ID file still get published to the Remote
loader file system but nothing appear in the ID vault.

I have added a policy to my Notes driver that will select the ID Vault
database depending on the user location.
The user id file gets still published on the remote loader file system
but nothing appears in the Notes ID Vault.

Here is a trace seen on the remote loader side (as you can see the
IDVault-database setting is added to the add event, but on the remote
loader side there is no sign of any attempt to use the ID vault, i am
using the latest idm 3.6.1 Notes driver patch idm361notesir1, so Notes
driver is 3.5.5) :

DirXML: [01/24/11 16:35:13.55]: TRACE: Remote Loader: Received document
for subscriber channel
DirXML: [01/24/11 16:35:13.55]: TRACE: Remote Loader: Waiting for
receive...
DirXML: [01/24/11 16:35:13.55]: TRACE: Remote Loader: Calling
SubscriptionShim.execute()
DirXML: [01/24/11 16:35:13.55]: TRACE: <nds dtdversion="3.5"
ndsversion="8.x">
<source>
<product version="3.6.0.4294">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<add IDVault-database="/IBM_ID_VAULT/EU_Vault.nsf"
cached-time="20110124153513.443Z"
cert-id="/busdata/ilnu/gbl0/_lgi/cert/fr.id" cert-pwd="CLIENT"
certify-user="yes" class-name="Person" de
st-dn="CN=Idm-FPT7307 Atroissept/OU=FR/OU=EU/O=CLIENT"
event-id="MIANM821#20110124153513#1#1" mail-server="" mail-system="NONE"
mailfile-template=""
qualified-src-dn="C=FR\O=CLIENT\OU=ZONE3\OU=FR\CN=FPT7
307" src-dn="\DXML1_TREE\FR\CLIENT\ZONE3\FR\FPT7307"
src-entry-id="279264" tell-adminp-process="tell adminp process new"
timestamp="1295883313#21" user-id-file="fpt7307.id"
user-id-path="/busdata/ilnu/gbl0
/_lgi/user/fr" user-pwd="CJYRRN8PT">
<add-attr attr-name="CLIENTNotesCertify">
<value timestamp="1295883313#12" type="state">true</value>
</add-attr>
<add-attr attr-name="CLIENTDirDispatch">
9782,2-9 82%
<value timestamp="1295883313#18" type="string">ADA</value>
</add-attr>
<add-attr attr-name="ShortName">
<value timestamp="1295883313#5" type="string">FPT7307</value>
</add-attr>
<add-attr attr-name="LastName">
<value timestamp="1295883313#21" type="string">Atroissept</value>
</add-attr>
<add-attr attr-name="SametimeServer">
<value timestamp="1295883313#16"
type="string">SametimeCSCluster</value>
</add-attr>
<add-attr attr-name="MailDomain">
<value
DirXML: [01/24/11 16:35:13.55]: type="string"/>
</add-attr>
<add-attr attr-name="MailFile">
<value type="string"/>
</add-attr>
<add-attr attr-name="FullName">
<value type="string">CN=FPT7307/OU=FR/OU=ZONE3/O=CLIENT/C=FR</value>
</add-attr>
<add-attr attr-name="LocalAdmin">
<value type="string">EU_UserAdmin</value>
</add-attr>
</add>
</input>
</nds>
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: NotesSubscriptionShim:
Connected to CN=MIANT007/O=CLIENT
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: NotesSubscriptionShim:
Connected as CN=eDir Administrator/O=CLIENT
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: NotesSubscriptionShim:
Reading from names.nsf
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: NotesSubscriptionShim:
Input Document contains 1 Identity Manager commands
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Certifier ID File: /busdata/ilnu/gbl0/_lgi/cert/fr.id
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser - is
North American: false
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
Creating Mail File:false
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
Storing UserID File in Address Book: false
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
Updating Notes Address Book (names.nsf)true
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser - Log
File: certlog.nsf
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
Server Name: CN=MIANT007/O=CLIENT
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
OU:
DirXML: [01/24/11 16:35:13.55]: TRACE: 2NOTES2: registerNotesUser -
LastName: Atroissept
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
FirstName: Idm-FPT7307
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
MiddleInitial: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
ShortName: FPT7307
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - Use
Certificate Authority: false
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Cert ID File: /busdata/ilnu/gbl0/_lgi/cert/fr.id
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Certifier Pwd: <!-- content suppressed -->
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - ID
File: /busdata/ilnu/gbl0/_lgi/user/fr/fpt7307.id
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - ID
File Expiration Interval 2 years
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - ID
File Expiration Date: 01/24/2013 04:35:13 PM CET
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - ID
Type (int): 173
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Minimum Password Length: null (8)
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Sync Internet Password: false
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Location: ADA
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Forwarding e-mail address: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Policy Name: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Enforce Unique Short Name: false
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser - DO
NOT create ID File: false
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
Create Roaming User: false
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
AltFullName: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
AltFullNameLanguage: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
AltOrgUnit: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
AltOrgUnitLanguage: null
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser -
SearchKey = DirXML Notes Driver AddKey = 1295883313563
DirXML: [01/24/11 16:35:13.56]: TRACE: 2NOTES2: registerNotesUser:
checking for existence of User CN=Idm-FPT7307
Atroissept/OU=FR/OU=EU/O=CLIENT
DirXML: [01/24/11 16:35:13.59]: TRACE: 2NOTES2: getUNIDVectorByNotesDN:
UNID not found with query = @Matches (FullName; "CN=Idm-FPT7307
Atroissept/OU=FR/OU=EU/O=CLIENT")
DirXML: [01/24/11 16:35:13.59]: TRACE: 2NOTES2: registerNotesUser: User
CN=Idm-FPT7307 Atroissept/OU=FR/OU=EU/O=CLIENT could not be found,
continue with registration.
DirXML: [01/24/11 16:35:14.03]: TRACE: 2NOTES2: registerNewUser
succeeded
DirXML: [01/24/11 16:35:14.06]: TRACE: Remote Loader:
SubscriptionShim.execute() returned:
DirXML: [01/24/11 16:35:14.06]: TRACE: <nds dtdversion="2.0"
ndsversion="8.x">
<source>
<product build="20091123_111317" instance="2NOTES2"
version="3.5.5">Identity Manager Driver for Lotus Notes</product>
<contact>Novell, Inc.</contact>
</source>
<output>

Did any of you manage to create Domino users AND to publish the user id
file in the Notes ID Vault AND to still publish the user id file on the
remote loader local file system ?

Best regards,
Linus.


--
linus101
------------------------------------------------------------------------
linus101's Profile: http://forums.novell.com/member.php?userid=103141
View this thread: http://forums.novell.com/showthread.php?t=430996