Lotus Notes passwords simply unlock their ID files so that the user can gain access to the security certificates stored inside the ID file, which are then exchanged with a domino server during the authentication process.
Sametime access (either via Notes Instant Messaging, Sametime connect or the Browser connect client) relies on the Internet Password field of the users person document in the Domino Directory.
Through Notes (if the software has been installed with the single-sign-on task included), it is possible to synchronise a user's Lotus Notes password with the Windows password. Through a security policy, it is also possible to synchronise the Lotus Notes ID file password with the users Internet password during a Notes password change.
The short answer is to implement password change policies through Notes, not through a Windows policy. This will enable one password change (made through Notes) to update the Notes ID file password, Windows (NT/AD) password and Internet (Web and Sametime) password with one password change.
Once the passwords are synchronised, a user will have the benefit of single sign-on -- logging onto Windows will then log into Notes, and then into Sametime, without further password prompts.
Do you have comments on this Ask the Expert question and response? Let us know.
Feedback: On Aug. 16, Alfonso DÍaz wrote, "In my company we use Windows AD account as principal. Is there any way to synchronize from AD to Lotus Notes and SameTime?"
This was first published in August 2005