Q

Is NRPC 1352 secure?

Notes uses NRPC 1352 for client access and it's secure. But I cannot find any documentation on notes.net or IBM's Web site that would support this. Do you know of a link or support document for this? I have a client that will not open his firewall. I could use iNotes, but I would like to use the full client.
Secure is all in the setup. A simple notes.ini change on the server will require all traffic to be encrypted between it and any client. You can also require the checking of user certificates and passwords. In the end, you can have a two factor authentication scheme running over an encrypted channel. You can't do that with other systems unless you buy expensive equipment and tokens.

MEMBER FEEDBACK TO THIS ASK THE EXPERT Q&A:

You write: "A simple notes.ini change on the server will require all traffic to be encrypted between it and any client."

I was always under the impression that server-to-client traffic was always encrypted, and that made the use of the Notes client more secure than using iNotes. What's the .ini variable we need to check?

—David S.

******************************************

Traffic is not encrypted unless you set it. What makes Notes client usage inherently more secure is the need and use of a physical ID file as well as a password. DWA/iNotes only requires a name/pw combo.

If you want to encrypt all network traffic to a server, modify the server's TPCIP= setting to TCPIP=TCP,0,15,0,,45056. "TCPIP" in this case is the port name, and it could be whatever you named it, such as CLUSTER, TCPPORT, etc. Please note that encrypting all traffic does require more bandwidth and usually impacts your server resources by about 10%-15%.

—Mike Lazar, Domino Administration Expert

Do you have comments on this Ask the Expert question and response? Let us know.

This was first published in January 2005

Dig deeper on Lotus Notes Domino Performance

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchWinIT

Search400

  • iSeries tutorials

    Search400.com's tutorials provide in-depth information on the iSeries. Our iSeries tutorials address areas you need to know about...

  • V6R1 upgrade planning checklist

    When upgrading to V6R1, make sure your software will be supported, your programs will function and the correct PTFs have been ...

  • Connecting multiple iSeries systems through DDM

    Working with databases over multiple iSeries systems can be simple when remotely connecting logical partitions with distributed ...

SearchEnterpriseLinux

SearchVirtualDataCentre.co.uk

Close