Descripción
A lo largo del curso, se configurará el correo tradicional Lotus Notes así como la transferencia y reparto de correo SMTP. Se configurarán varios clientes de correo, incluyendo Lotus Notes, correo de Internet (POP/Outlook Express), Domino Access para Microsoft Outlook, y un navegador para correo Web y Domino Web Access.
Este curso presta especial atención al papel de los directorios, incluyendo el directorio de Domino, el catálogo de directorios, el catálogo de directorio móvil, y el catálogo de directorios extendido, y cómo hacerlos disponibles vía Asistencia de Directorios. Cubre también la configuración de Domino para soportar peticiones LDAP.
Durante el curso se hace hincapié en la seguridad en los clientes Notes e Internet, incluyendo cómo configurar SSL en Domino y emitir certificados de Internet para que los usuarios los utilicen en firma digital y encriptación.
Objetivos
En este curso, se aprende cómo:
Audiencia
Este curso está diseñado para administradores de redes/bases de datos que son responsables de dar soporte al correo electrónico en servidores Lotus Domino y clientes Lotus Notes que:
Duración
La duración del curso es de 4 jornadas
Esquema
Topic 1: Mail Overview
Mail terminology
NRPC message flow
SMTP message flow
Domino mail clients
License implications
Choosing a mail protocol
Network design
Topic 2: NRPC Message Transfer and Delivery
Protocol independence
Think Domino
Domino Domain
Domino Named Networks
Multiple Domino Named Networks
Multiprotocol servers
NRPC routing
Router task
Router task functions
Exercise: Test message delivery
Message document internals
Topic 3: Notes Configuration
Create message
Message format
Submit message to recipient
Deliver message to user
Read messages
User registration
Exercise: Test message delivery
Topic 4: Inter-Named Network NRPC Routing
When you need Connection documents
Two Connection documents are needed
Create Connection document
Replicate the Domino Directory
Explicit inter-domain addressing
Error messages
Exercise: Connection document and Cross Certification
Scheduling guidelines
Topic 5: Inter-Named Network Routing Topologies
Serial topology
Mesh topology
Hub-spoke topology
View the routing topology
Exercise: Message routing through a hub
Non-Adjacent Domain document
Exercise: Non-Adjacent Domain document
Combine schedules
On-demand routing
Cluster connection
Topic 6: NRPC Controls
Restricting message source domains or Organizations
Adjacent and Non-Adjacent Domain document restrictions (NRPC)
Control message size
Routing by message priority
Delivery Controls
Topic 7: Domino Directory and Message Addressing
Directory terminology
How directories are used for mail
Return address of Notes users
Recipient fields
Short names and nicknames
Router use of Domino Directory
Local Contacts
Local Recent Contacts
Finding users in the domain
Topic 8: Directory Assistance
Multi-domain companies
Directory Assistance
Configure Directory Assistance
Exercise: Directory Assistance
Authentication-only secondary directories
Topic 9: Directory Catalogs
Directory Catalog: Condense and optimize
Directory Assistance or Directory Catalog?
Two versions of the Directory Catalog
Create Directory Catalog
Exercise: Create Directory Catalog
Mobile Directory Catalog
Multiple Directory Catalogs
Extended Directory Catalog
Topic 10: Mail Database Design
Mail database master design template
Template association
Single Copy Template
Exercise: Configure Single Copy Template
Database compression
Limit message size
Shared Attachment database
Central Forms database
Alternative mail templates
Topic 11: User Mail Database Administration
Procedure 1: Access information about mail users databases
Procedure 2: Define Mail Settings policy
Procedure 3: Create full text index
Procedure 4: Create multiple replica Mail databases
Procedure 5: Move Mail database to another directory or server
Procedure 6: Delete users and their Mail databases
Procedure 7: Set Mail database quotas and warning thresholds
Procedure 8: Monitor Mail database size
Database white space
Procedure 9: Reduce the size of a Mail database using Compact
Procedure 10: Configure Out-of-Office notifier
Procedure 11: Enable Inbox Maintenance agent
Procedure 12: Configure Recall Sent Messages feature
Topic 12: Notes Mail Security
System-required security
User-option security
Just-in-time encryption
Topic 13: Calendar and Scheduling
Schedule a meeting
Supporting technology
BUSYTIME.NSF operation
Free time lookup
Resource Reservations database
Resource administrator
Exercise: Scheduling on a single Home/Mail server
Exercise: Test single-server setup scheduling
Multiple Home/Mail servers in same domain
Free time queries across domains
Exercise: Multi-domain scheduling
Server Console commands
Schedule statistics
Troubleshooting
Clustered servers and multiple Resource Reservations databases
Non-Notes schedule exchange
Schedule interoperability through iCalendar
Topic 14: Single Copy Message Store
Message components
Multiple copy message store
Single Copy Message Store
Object store process
Enabling shared mail
Display information about shared mail
Shared object store statistics
Shared mail view
Exercise: Shared mail
Linking existing Mail databases
Excluding Mail databases
Move/delete user Mail database file
Unlinking a shared mail database
Other shared mail features
Shared mail and other server technologies
Drawbacks
Topic 15: SMTP Mail Transfer
Before you switch to SMTP
Server document or SMTP Inbound Site document?
Turn on SMTP Listener
Scenario 1: SMTP to route mail inside your Domino Domain
Internet return address for Notes
DNS configuration for transferring beyond your Internet domain
Scenario 2: SMTP to route mail to/from to the Internet
Exercise: Transfer messages to/from the Internet via SMTP
Scenario 3: Internal SMTP with outbound SMTP to Relay Host
Example Relay Host transfer all SMTP
Authenticated connection to relay host
Scenario 4: Internal NRPC with outbound SMTP to conduit
Example NRPC transfer to SMTP conduit
Smart host
On-demand routing
Extended SMTP
Topic 16: SMTP Inbound Controls
When controls are applied
Stage 1: TCP/IP connection
Stage 2: Before MTA connection is allowed
Stage 3: Before message is accepted by receiving MTA
Stage 4: Before message is accepted by MTA (sender controls)
Stage 5: Before message is deposited to MQ (recipient controls)
Stage 6: Before message is deposited to MQ (message controls)
Stage 7: Before message is moved from MQ to recipients MS
UA connection to send message
Third-party products
Topic 17: Blacklists and Whitelists
Private and public blacklists/whitelists
Blacklist/whitelist processing order
Configure blacklists and whitelists
Blacklist desired actions
Whitelist desired actions
Custom SMTP error message
Rules integration
Statistics
Getting off of a blacklist
Topic 18: Rules
Limitations
Mail File Rules
QuickRules
Exercise: Create QuickRule
Block Sender Rule
Manually create a Rule
Exercise: Manually create a Rule
Multiple Rules
Blacklist and whitelist tag Rule conditions
System Mail Rules
Create a System Mail Rule
Topic 19: SMTP Outbound Controls
Configure SMTP outbound controls
Outbound Sender Controls
Outbound Recipient Controls
Topic 20: Internet Message Disclaimers
Message disclaimer basics
Two conditions for message disclaimers to be added
Define message disclaimer text and have Notes add it
Message disclaimers added by Router task
Domino Web Access message disclaimers
Topic 21: POP/IMAP Clients
License implications
POP
POP client configuration
Exercise: POP client configuration
MIME and message fidelity
Exercise: Send MIME-encoded message
IMAP
Notes and IMAP interoperability
IMAP configurationserver side
Modifying user Mail for IMAP
IMAP configurationclient side
Notes access to Internet mail
Topic 22: LDAP Directory Service
What is LDAP used for?
Configure LDAP on the server
Configure the LDAP client
What LDAP returns
Exercise: Configure and test LDAP
LDAP Server Console commands
ldapsearch utility
LDAP statistics
Tivoli Directory Integrator
Topic 23: Internet Certificate Authority
Compare Notes security to Internet security
Internet client security overview
Level 1 Security: Anonymous access
Level 2 Security: Name and password authentication
Level 3: Enable SSL
Obtain Internet Certificate
Procedure 3.1: Migrate the Organization Certifier ID to the CA Process
Procedure 3.2: Create the Internet Certificate
Procedure 3.3: Create Internet Certificate Requests database
Procedure 3.4: Create the server Key Ring file with Trusted Root Certificate
Procedure 3.5: Enable SSL on the server
Topic 24: Issue Internet Client Certificates
Level 4 Security: Internet client authentication
Request Internet Certificates for Internet mail client
Authentication using Client Certificates
Issue Certificates to Notes users
How Notes adds Trusted Root Certificates
Notes users request Client Certificate from third-party CA
Issued Certificate List (ICL) database
Certificate Revocation Lists (CRL)
CRLs and authentication by Client Certificate
Checking for CRLs
Revoking an Issued Certificate
Certificate revocation checking through OCSP
Topic 25: Sign and Encrypt Internet Mail
Import Certificate into Outlook Express
Outlook Express signs message to Notes user
Notes user signs message
Notes user accepts senders Certificate for encryption
Topic 26: WebMail and Domino Web Access
Server-side requirements for WebMail
Use WebMail
Downsides of WebMail
Exercise: Access Mail via browser
Domino Web Access
DWA Lite
Server configuration for DWA
Configure users to use DWA
Domino Web Access Redirection
Launch from DWA Redirection to DWA Lite
Make DWA the default mail client
Contact list synchronization
Send signed messages
Send signed message to Internet mail users
Validate signature from Internet mail sender
Encrypt message sent to other Notes/DWA users
Encrypt message to Internet mail users
Certificate for authentication versus Certificate for encryption
Quota enforcement
Use DWA offline
Topic 27: Security for Browser-Accessed Mail
Firewalls and proxies
Fight denial of service attacks
Fight invalid URLs and buffer overflows
Restrict access by IP address
Limit HTTP methods
Enforce Server Access Lists
Fewer user name variations
Protect Internet Passwords
Failed Internet password tracking/lockout
Security Settings policy document fields
Change Internet Password
Best Practice: Use Client Certificates and SSL for authentication
Topic 28: Domino Access for Microsoft Outlook
Task 1: Configure Domino
Task 2: Register user
Task 3: Prepare user computer
Task 4: Install DAMO software on user computer
Task 5: Start Outlook and select DAMO Profile
Topic 29: Mail Monitoring
Router status
Server Console commands
Hidden message fields
Mail logging
Supplemental logging
Logging level
Mail statistics
Mail trace
Mail Routing Event Generator
Domino Domain Monitoring
Topic 30: Mail Tracking and Reporting
MTC server task
User tracks mail
What the tracking request tells you
Tracking across Domino Domains
Track mail in Domino Administrator
Report on tracked mail
MTC console commands
Exercise: Mail tracking and reporting
Topic 31: Message Archiving and Journaling
Local message archiving
Server-based message archiving
Configure server-based Mail database archive from Notes
Run COMPACT to perform archive
Schedule Compact to run
User access to Archive database
Define an Archive Settings policy
Calendar Cleanup
Message journaling
Configure message journaling
Mail Journaling database security
Keep message recipients when journaling
Third-party solutions
Topic 32: Troubleshooting and Performance
Dead message
Check for dead messages
Held message
Message transfer retry interval
Message timeout value
Transfer and delivery delay notifications
Troubleshoot submission errors
Troubleshoot transfer errors
Transfer errors and route cost
Troubleshoot delivery errors
Reverse-path setting for forwarded messages
Convert TNEF file attachments
Create/restore a deleted Mail database
Exercise: Mail errors
Custom delivery failure messages
SMTP troubles
SMTP headers
Improve performance