Content Feed

 Domino  IBM Domino  IBM Notes 18 August 2017

IBM Notes and Domino 9.0.1 Feature Pack 9 available

Looks like IBM Domino and IBM Notes 9.0.1 Feature Pack 9 are available for download from Fix Central

Link to all Domino downloads

Link to all Notes downloads

Here's a quick hit of new features available in each:

Domino:
The documentation in Knowledgebase will be updated with these new features to coincide with the ship date of 9.0.1 FP9

1) Enhancement Request To Be Able To Increase The Amgr Queue Beyond 100 (SPR #RSTNA4SL7C APARID: LO87242)
The Agent Manager's Eligible queue is now able to change from the lowest value possible at 100, to 255 which is the highest value possible via an INI AMGRMaxQueue.

2) Databases and views can be opened more quickly in databases that are enabled for transaction logging
It takes less time to open databases and views that are at ODS 52 or higher and enabled for transaction logging. Previously, performance for opening databases or views could be slow in frequently updated databases. This improvement is due to the implementation of less contention with update operations.

3) Restricting the use of mail rules to forward messages to external domains (SPR #JPAR9NEACX APARID: LO81771
You can control the extent to which users can use the Send copy to mail rule to automatically forward received messages to external domains that are not recognized by the mail server. This feature does not affect any forwarding rules that are specified in a user's Person document or any other type of mail server
forwarding or re-direction.

4) Enabling and managing inline view indexing
A view index is an internal filing system that Notes® uses to build the list of documents to display in a database view or folder. By default, view indexes are updated on a server at scheduled intervals. To update a view index immediately after documents change instead, administrators can enable inline view indexing. When you enable inline view indexing, a critical view is always kept up-to-date for your users.

5) Updating the default Java from 1.6 to 1.8 on IBM i (SPR #BYAGALM8J8)

Notes:
1) Delegated mail files are refreshed automatically (SPR #RGAU829D4G APARID: LO48407)
If you have delegate access to another user's mail file, that mail file is refreshed automatically in your Notes® client. To enable this feature, upgrade to the Mail9.ntf template provided with the FP9 Client. No notes.ini setting is required for this feature.

2) Support for recall of messages created with Memo stationary (SPR #JLEN9C9E3G APARID: LO77349)
When message recall is configured on the server, messages created using Memo stationery can now be recalled. To enable this feature, upgrade to the Mail9.ntf template provided with FP9.

3) High resolution support for the Notes® Client
The Notes® client on Windows correctly scales text and icons when high resolution monitors or custom DPI settings are used.

4) Improved name lookup in Notes®
Searching by through typeahead or in the ambiguous name dialog, returns the same results as searching by . For example, searching for don smith or smith don returns the same results, including variants such as Donald, Donovan, Smithfield. To enable this feature, upgrade to the pernames.ntf template provided with 9.0.1 FP9 and add the notes.ini setting AllowWildcardLookup=1 to the Notes® 9.0.1 FP9 client.

5) Improved support for Notes® addressing with mobile directory catalogs (SPR #SAPLAK8ANL)
The list of names that is shown when using typeahead to search a mobile directory catalog is now sorted according to the directory catalog configuration. Names in local contacts follow this list. In addition, the Search Directory for option is available at the end of the list to facilitate server lookup. To enable this feature, add the notes.ini setting $TypeAheadShowDircatFirst = 1 to the Notes® 9.0.1 FP9 client.

There are also updated templates for mail and pernames.ntf that are separate downloads.

The full list is available here.

Happy downloading and testing before putting this update into production!


 connections  ibm connections 14 August 2017

One More Setting to Force TLSv1.2 in Connections 6.0

It appears that there is one additional setting that is needed to force IBM Connections 6.0 to use TLSv1.2.  In each Application Server go to Process Definiition > Java Virtual Machine and add the following setting in the Generic JVM arguments:  -Dcom.ibm.jsse2.overrideDefaultTLS=true . Save the changes and after applying to all application servers, restart the servers.

Image:One More Setting to Force TLSv1.2 in Connections 6.0

Link to complete Technote


 connections  ibm connections 18 July 2017

IBM Technote: Customizing Default Navigation Order of Apps in Connections 6.0 Mobile App

A technote published today outlines the ability to customize the default order of the apps displayed in the IBM Connections Mobile app.  This does require IBM Connections 6.0 and the June 2017 update to be installed for the new setting to work.

See this technote for the details on configuring the new setting.



27 April 2017

IBM Docs 2.0 CR2 IF1 Available

No sooner after I publish my post about the Security Updates in CR2, do I see that there's CR2 IF1 available now as well.

IBM Connections Docs 2.0 CR2 iFix 001 Release Notes

This includes support for TLS v1.2, so if that' important to you - I'm looking at you externally facing servers - then you'll want to check this out.

Enjoy!


 IBM Connections Docs  IBM Docs 27 April 2017

IBM Docs 2.0 - CR2 Includes Fixes For Security Vulnerabilities

If you're looking for another reason to install CR2 for IBM Docs 2.0 beyond "just getting the latest", here's one: this CR includes fixes for three different security vulnerabilities.  If you've got an externally facing Connections environment, I would recommend getting the update scheduled sooner rather than later.

Security Bulletin: IBM Connections Docs is Vulnerable to a Denial of Service (CVE-2015-8806)

Security Bulletin: IBM Connections Docs is Vulnerable to a Heap-based Buffer Overflow (CVE-2016-2073)

Security Bulletin: IBM Connections Docs is Vulnerable to a Stack-based Buffer Overflow (CVE-2016-3705)


Happy upgrading!


 IBM Verse  Traveler  Verse 17 February 2017

IBM Traveler 9.0.1.16 - A Note On Upgrading

So IBM Traveler 9.0.1.16 is now available.  We've been waiting on it to upgrade our internal server that was on an older version, mostly due to the issue that Detlev posted about in December.  That is "fixed" in this release, however my experience upgrading revealed that it wasn't so much fixed as the command that you need to issue to resolve the error was enabled for use.

So, after upgrading Traveler from the .12 release, the server started up and watched as the Traveler db had its design updated and also saw updates to the Derby database used by Traveler getting logged:

02/16/2017 05:19:42 PM Traveler: Server starting...
02/16/2017 05:19:56 PM Traveler: GUIDMAP has no records violating the constraint.
02/16/2017 05:19:56 PM Traveler: Primary key PK_GUIDMAP successfully created.
02/16/2017 05:19:56 PM Traveler: GUIDMAP table is repaired.
02/16/2017 05:19:56 PM Traveler: TS_FILTERS has no violating records.
02/16/2017 05:19:56 PM Traveler: Primary key PK_TSFILTERS successfully created.
02/16/2017 05:19:56 PM Traveler: TS_FILTERS table is repaired.
02/16/2017 05:19:56 PM Traveler: PUSH has no violating records.
02/16/2017 05:19:56 PM Traveler: Primary key PK_PUSH successfully created.
02/16/2017 05:19:56 PM Traveler: PUSH table is repaired.
02/16/2017 05:19:56 PM Traveler: REPLICAS has no violating records.
02/16/2017 05:19:56 PM Traveler: Primary key PK_REPLICAS successfully created.
02/16/2017 05:19:56 PM Traveler: REPLICAS table is repaired.

However, after that was done, I saw the message Detlev wrote about:

02/16/2017 05:20:00 PM Traveler: WARNING *system Exception caught trying to create constraint PK_INVMAP on Table INV_MAP. Exception Thrown: com.lotus.sync.db.PersistenceException: java.sql.SQLSyntaxErrorException: 'DEVUID' cannot be a column of a primary key because it can contain null values.

I wasn't expecting this, but figured I could try the command IBM gave out with the Hotfix:

tell traveler sql ALTER TABLE inv_map ALTER COLUMN devuid NOT NULL

After restarting HTTP, the error did not appear again, so it looks like running this command may be necessary if you are upgrading your standalone Traveler install from an older release.

Of course, as always, YMMV.

I'll be at the IBM Connect conference next week - hope to see some of you there!


 Verse  IBM Verse 17 January 2017

IBM Verse On-Premises - some thoughts after using for two weeks

We installed IBM Verse On-Premises (VOP) the day it was released.  See my previous post about the installation (simple).  This post will cover my impressions after having used it for two weeks as my main access point to my company email.

Basic Usage:

Overall, I'm pretty pleased with the VOP 1.0 release.  Reading and composing emails are easy and straightforward. When new mail arrives, the browser tab adds a red dot to the Verse icon to let me know there's something new. Messages render as expected and give me the option to show images if desired - just like Notes or iNotes do. The options to work with a message are available in the icon bar and are a mix of text button (Reply, Reply All, Forward) or images (Mark Needs Action, Mark read/unread, delete, move to folder, print or schedule a meeting).  There's also an indicator of which folder(s) the message is found in. This is very nice.   The Mark Read/Unread button was a topic of conversation in that it wasn't immediately apparent from the icon what it's for - and was missed entirely by someone else.  The hover text does point it out, but I'm chalking up missing it due to me not paying attention.

Continue Reading "IBM Verse On-Premises - some thoughts after using for two weeks" »


 ibm connections  IBM Connections Docs  IBM Docs 13 January 2017

IBM Docs - Technote on Understanding the Save, Publish and Copy options

This came across my feed this morning and I think it's a useful piece of information to share with users of IBM Docs.  They often ask the difference between the save, auto-save, publish, auto-publish and the copy options when working on documents.  This technote from IBM gives a fairly succinct explanation of what the differences are.

Understanding Save, Auto-save, Publish, Auto-publish, and Copy


 Domino  ibm connections  Lotus Notes Domino  SSL  iNotes 6 January 2017

IBM Connections Files Integration with iNotes

Now that Verse On-Premises 1.0 is out, I was taking a look at the integration with Connections Files.  I've run into an issue with that that I'm still looking at, but as part of the diagnosis, I went back to look at the Connections Files integration with iNotes to try and get some better logging.  During that inspection, I came across a different issue after we've upgraded our Connections instance to 5.5 and narrowed the TLS settings.

The issue in iNotes was that the client was failing wth a SSL handshake error in the iNotes console (nice to have that in iNotes).  Further review in the IHS log on the Connections side indicated a cipher mismatch.

First off, on the Domino side I enabled SSL_DEBUG_ALL=1 to get more information and the interesting thing is that Domino as the client was attempting to connect using the ECDHE_RSA_WITH_AES_256_GCM_SHA384 cipher. On Domino this is the top cipher used when TLS 1.2 is enabled.  However, this cipher isn't enabled by default in IHS according to the docs, so I updated the httpd.conf to add the additional ciphers for TLS 1.2 and all TLS versions.

# SSL Cipher settings
SSLCipherSpec ALL NONE
SSLCipherSpec TLSv12 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
SSLCipherSpec TLSv12 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
SSLCipherSpec TLSv12 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
SSLCipherSpec TLSv12 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
SSLCipherSpec ALL TLS_RSA_WITH_AES_128_GCM_SHA256
SSLCipherSpec ALL TLS_RSA_WITH_AES_256_GCM_SHA384
SSLCipherSpec ALL TLS_RSA_WITH_AES_128_CBC_SHA256
SSLCipherSpec ALL TLS_RSA_WITH_AES_256_CBC_SHA256

After making that change and restarting HTTP, I still saw the handshake errors.  Going back into the httpd.conf, I changed the settings from only supporting TLSv12 to all TLS versions:

SSLProtocolEnable TLS
SSLProtocolDisable SSLv3 SSLv2

Saving and restarting HTTP, this got Connections Files with iNotes working.  

Unfortunately, that didn't get the Connections Files with VOP working, so I'm back to looking at that.  More to come...


 Domino  Verse 30 December 2016

Initial impressions on IBM Verse On-Premises 1.0

NOTE:  This is a "first impression" post after working with VOP for a few hours.  I didn't participate in the betas, so this is a fresh experience.

So, as has been announced on the interwebs today, IBM Verse On-Premises 1.0 (VOP) was made available for download today.  Part number: CNDG8ML  

We had some time today, so Chris Whisonant and I installed it and setup the integration with Connections.  So Chris did the Domino side and I handled the Connections side.  Here are my brief comments on my couple of hours in.

INSTALL:  Went very smoothly on Windows, no issues.  Install the Hotfix that enables Verse, copy some JARs to the OSGI folder, set some notes.ini parameters, update the redirect db design, mail design and that's it. One note is that while the documentation only advises to make sure mail files are indexed, it looks like if you already have an indexed file, you'll want to rebuild the indexes.  We ran into that on my mail file on the server.  The server will initiate a rebuild, but it looks like it may cause some errors in the Inbox until the index is re-done.  At least that was my experience.

Also, there is one URL https://server.domain.com/verse for all users.  So if you want to make verse the default, you'll want to update your server configuration.

INTERFACE:  If you've seen any slidedeck from this year, you'll know what to expect for the most part.  It's an interface that you'll recognize. When you login, you'll be prompted to allow browse notifications in Chrome, Safari and Firefox.

You get links to Mail, Calendar, People and Apps (links to iNotes, Notebook and ToDo).  Interesting note - Calendar takes you to the iNotes calendar, so it has not been "versefied" yet.  

The next "row" is icons for Inbox/Unread, Needs Action, Waiting For and then your Important People.  The Needs Action and Waiting for look to have lots of potential, I'll be playing around with that more.  Our initial test of trying to send an action to another didn't result in the message getting flagged in the recipient's mail. We'll look at this further.

SEARCH:  The "big" thing is the faceted search.  So far - working great.  You can drill down based on important people or perform a search and then you can refine the search based on time or folders. It is really nice - a big reason to check it out.

CALENDAR BAR: At the bottom is the calendar bar that shows your day in "blocks" where you have something scheduled and click on the block and get the details.  I like it, you can scroll through the day or from day to day. We'll see how much "use" I'll get out of it, but I like it so far.

CONNECTIONS INTEGRATION:  Integration was easy and simple to setup. Nothing installed on the Connections side, just some changes to the httpd.conf on the HTTP Server and a notes.ini change on the servers. Integration gives you photos and business card data.  Nicely done. If you have iNotes files integration, it will be available when composing a message as well.

So - in summary, for a 1.0 release it's looking pretty good.  Deeper testing will be done as I use the browser to access my mail primarily.

UPDATE:  Here's the link to the VOP Knowledge Center - it has the details on confguring VOP and integrating with Connections and Box.

Happy New Year everyone!