How can we secure Notes Webmail and eventually iNotes?

At my company we are looking to make users' e-mail accessible from any Internet connection via Notes Webmail in the beginning and eventually iNotes. We have all the router settings that we need to make, but what do you recommend on the Domino end that will make getting mail like this a secure process? Would we have to get an SSL certificate from somewhere like Verisign, or could we generate our own certificates from the Domino server? Please give me your feedback and recommendations on the best way to accomplish this. Thanks for your help!
The best way to secure Webmail is with high-quality passwords. Make sure every user has a password that is a phrase (not a single word) with mixed upper-/lowercase or letters/numbers. Also use the address book option to "store Internet passwords in more secure format." Also, check the ACLs on each person's mail file, to make sure it is as tight as possible. There should be no access for Anonymous or Default. With these practices, it is nearly impossible for someone to break into a Domino Webmail account.

Editor's Note:
For more information on secure passwords, check out these tips written by Chuck:

Also check out Assigning unique initial passwords, which is a tip unto itself filled with member feedback to the second tip in the above list.

Do you have comments on this Ask the Expert Q&A? Let us know.

Dig Deeper on Lotus Notes Domino Password Management

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.




  • iSeries tutorials

    Search400.com's tutorials provide in-depth information on the iSeries. Our iSeries tutorials address areas you need to know about...

  • V6R1 upgrade planning checklist

    When upgrading to V6R1, make sure your software will be supported, your programs will function and the correct PTFs have been ...

  • Connecting multiple iSeries systems through DDM

    Working with databases over multiple iSeries systems can be simple when remotely connecting logical partitions with distributed ...