In iNotes Web Access, how do I stop Web users from seeing the NAB when picking addresses from the address dialog box? I would like to restrict them to their own personal address book. I feel that seeing the whole NAB (with all of its groups) poses an unnecessary security risk.
Here is an answer from Frederic Dahm at Lotus, who helps me out from time to time.
I had to think about this one for a small while. The person wants to curtail access to the public directory because of a perceived security risk. My thoughts on this is that this is not a security risk, because, well, the information is supposed to be, well, public. Granted, there is an unneasiness about hashed passwords in the directory, but this can be alleviated by using a shadow directory for authentication purposes only. Imposing changes on the iNotes Web Access client eliminates the ease of use and increases the administrative overhead. It is best that the person in question do what any security-minded person would do: 1) determine what constitutes this probable security risk, 2) determine what information is sensitive, 3) determine the risk and costs associated with the disclosure of said sensitive information and, 4) apply the corrective measures at the directory (not client) level.
Dig Deeper on Domino Resources
Related Q&A from Chuck Connell
Is it possible to encrypt a user's name before sending an email? SearchDomino.com expert Chuck Connell weighs in. Continue Reading
Learn how to change authentication timeout interval for Domino Web Access logins. Continue Reading
SearchDomino.com expert Chuck Connell explains your options if you can't restore a corrupted certlog.nsf file using the fixup command. Continue Reading