Description
During this course you will configure traditional Notes Mail as well as standards-based SMTP mail transfer and delivery. You will set up several mail clients, including Notes, Internet mail (POP/Outlook Express), Domino Access for Microsoft Outlook, and a browser for WebMail and Domino Web Access.
This course stresses the role of directories, including the Domino Directory, Directory Catalogue, Mobile Directory Catalogue, and Extended Directory Catalogue, and how to make them available via Directory Assistance. It also covers the configuration of Domino to support LDAP requests.
This course also covers mail security for both Notes and Internet mail clients, including how to configure SSL on Domino and to issue Internet Certificates to users for digital signing and encryption.
Course Goals
In this course, you will learn how to:
- configure intranet and Internet mail routing using the NRPC and SMTP protocols
- set up Notes to send and receive mail, set up an Internet mail client to send mail via SMTP and retrieve mail via POP3 or IMAP4 protocols, use a browser to access mail via WebMail or Domino Web Access, and configure Domino Access for Microsoft Outlook
- utilize the various directory types for mail addressing as well as for mail transfer and delivery
- configure the Domino Server to support address lookups by Internet mail clients using LDAP
- configure the NRPC and SMTP Router controls and restrictions to improve routing performance and reduce unsolicited email
- utilize Notes Mail security features and serve as your own Internet Certificate Authority, create server and client Internet Certificates, enable SSL, and digitally sign and encrypt mail sent to Internet mail clients
- support Notes Calendar and scheduling, including inter-domain resource reservations
- configure Notes Mail to use a Shared Object Store
- reduce Mail database size by applying a Single Copy Template and/or use design note compression
- manage Notes Mail files using Domino Administrator with the assistance of the Administration Process
- utilize mail monitoring, tracking, and journaling features
- retain messages using archiving and journalling
- monitor and troubleshoot mail transfer and delivery.
Audience
This course is part of a series of Domino administration training courses. Follow these paths to master all aspects of administering the Domino Server, Lotus Notes, and other clients:
Courses later in the series assume that you have mastered the content of earlier courses.
This course is designed for LAN administrators who are responsible for supporting mail on Lotus Domino Servers, Notes, and Internet mail clients and who:
- are proficient Notes 8 Mail users
- have installed and configured a Domino 8 Server
- understand basic DNS and SMTP principles
- have taken the Lotus Domino 8 Administration Basics and Lotus Notes 8 Administration courses or have the equivalent knowledge and experience.
Duration
This course is sold as a 4-day course (but there is much more material in the course than you can cover in four days!)
Course design
This course combines concept presentations, demonstrations, and exercises to guide your learning.
Outline
Topic 1: Mail Overview
Mail terminology
NRPC message flow
SMTP message flow
Domino mail clients
License implications
Choosing a mail protocol
Network design
Topic 2: NRPC Message Transfer and Delivery
Protocol independence
Think Domino
Domino Domain
Domino Named Networks
Multiple Domino Named Networks
Multiprotocol servers
NRPC routing
Router task
Router task functions
Exercise: Test message delivery
Message document internals
Topic 3: Notes Configuration
Create message
Message format
Submit message to recipient
Deliver message to user
Read messages
User registration
Exercise: Test message delivery
Topic 4: Inter-Named Network NRPC Routing
When you need Connection documents
Two Connection documents are needed
Create Connection document
Replicate the Domino Directory
Explicit inter-domain addressing
Error messages
Exercise: Connection document and Cross Certification
Scheduling guidelines
Topic 5: Inter-Named Network Routing Topologies
Serial topology
Mesh topology
Hub-spoke topology
View the routing topology
Exercise: Message routing through a hub
Non-Adjacent Domain document
Exercise: Non-Adjacent Domain document
Combine schedules
On-demand routing
Cluster connection
Topic 6: NRPC Controls
Restricting message source domains or Organizations
Adjacent and Non-Adjacent Domain document restrictions (NRPC)
Control message size
Routing by message priority
Delivery Controls
Topic 7: Domino Directory and Message Addressing
Directory terminology
How directories are used for mail
Return address of Notes users
Recipient fields
Short names and nicknames
Router use of Domino Directory
Local Contacts
Local Recent Contacts
Finding users in the domain
Topic 8: Directory Assistance
Multi-domain companies
Directory Assistance
Configure Directory Assistance
Exercise: Directory Assistance
Authentication-only secondary directories
Topic 9: Directory Catalogs
Directory Catalogue: Condense and optimize
Directory Assistance or Directory Catalogue?
Two versions of the Directory Catalogue
Create Directory Catalogue
Exercise: Create Directory Catalogue
Mobile Directory Catalogue
Multiple Directory Catalogues
Extended Directory Catalogue
Topic 10: Mail Database Design
Mail database master design template
Template association
Single Copy Template
Exercise: Configure Single Copy Template
Database compression
Limit message size
Shared Attachment database
Central Forms database
Alternative mail templates
Topic 11: User Mail Database Administration
Procedure 1: Access information about mail users databases
Procedure 2: Define Mail Settings policy
Procedure 3: Create full text index
Procedure 4: Create multiple replica Mail databases
Procedure 5: Move Mail database to another directory or server
Procedure 6: Delete users and their Mail databases
Procedure 7: Set Mail database quotas and warning thresholds
Procedure 8: Monitor Mail database size
Database white space
Procedure 9: Reduce the size of a Mail database using Compact
Procedure 10: Configure Out-of-Office notifier
Procedure 11: Enable Inbox Maintenance agent
Procedure 12: Configure Recall Sent Messages feature
Topic 12: Notes Mail Security
System-required security
User-option security
Just-in-time encryption
Topic 13: Calendar and Scheduling
Schedule a meeting
Supporting technology
BUSYTIME.NSF operation
Free time lookup
Resource Reservations database
Resource administrator
Exercise: Scheduling on a single Home/Mail server
Exercise: Test single-server setup scheduling
Multiple Home/Mail servers in same domain
Free time queries across domains
Exercise: Multi-domain scheduling
Server Console commands
Schedule statistics
Troubleshooting
Clustered servers and multiple Resource Reservations databases
Non-Notes schedule exchange
Schedule interoperability through iCalendar
Topic 14: Single Copy Message Store
Message components
Multiple copy message store
Single Copy Message Store
Object store process
Enabling shared mail
Display information about shared mail
Shared object store statistics
Shared mail view
Exercise: Shared mail
Linking existing Mail databases
Excluding Mail databases
Move/delete user Mail database file
Unlinking a shared mail database
Other shared mail features
Shared mail and other server technologies
Drawbacks
Topic 15: SMTP Mail Transfer
Before you switch to SMTP
Server document or SMTP Inbound Site document?
Turn on SMTP Listener
Scenario 1: SMTP to route mail inside your Domino Domain
Internet return address for Notes
DNS configuration for transferring beyond your Internet domain
Scenario 2: SMTP to route mail to/from to the Internet
Exercise: Transfer messages to/from the Internet via SMTP
Scenario 3: Internal SMTP with outbound SMTP to Relay Host
Example Relay Host transfer all SMTP
Authenticated connection to relay host
Scenario 4: Internal NRPC with outbound SMTP to conduit
Example NRPC transfer to SMTP conduit
Smart host
On-demand routing
Extended SMTP
Topic 16: SMTP Inbound Controls
When controls are applied
Stage 1: TCP/IP connection
Stage 2: Before MTA connection is allowed
Stage 3: Before message is accepted by receiving MTA
Stage 4: Before message is accepted by MTA (sender controls)
Stage 5: Before message is deposited to MQ (recipient controls)
Stage 6: Before message is deposited to MQ (message controls)
Stage 7: Before message is moved from MQ to recipients MS
UA connection to send message
Third-party products
Topic 17: Blacklists and Whitelists
Private and public blacklists/whitelists
Blacklist/whitelist processing order
Configure blacklists and whitelists
Blacklist desired actions
Whitelist desired actions
Custom SMTP error message
Rules integration
Statistics
Getting off of a blacklist
Topic 18: Rules
Limitations
Mail File Rules
QuickRules
Exercise: Create QuickRule
Block Sender Rule
Manually create a Rule
Exercise: Manually create a Rule
Multiple Rules
Blacklist and whitelist tag Rule conditions
System Mail Rules
Create a System Mail Rule
Topic 19: SMTP Outbound Controls
Configure SMTP outbound controls
Outbound Sender Controls
Outbound Recipient Controls
Topic 20: Internet Message Disclaimers
Message disclaimer basics
Two conditions for message disclaimers to be added
Define message disclaimer text and have Notes add it
Message disclaimers added by Router task
Domino Web Access message disclaimers
Topic 21: POP/IMAP Clients
License implications
POP
POP client configuration
Exercise: POP client configuration
MIME and message fidelity
Exercise: Send MIME-encoded message
IMAP
Notes and IMAP interoperability
IMAP configurationserver side
Modifying user Mail for IMAP
IMAP configurationclient side
Notes access to Internet mail
Topic 22: LDAP Directory Service
What is LDAP used for?
Configure LDAP on the server
Configure the LDAP client
What LDAP returns
Exercise: Configure and test LDAP
LDAP Server Console commands
ldapsearch utility
LDAP statistics
Tivoli Directory Integrator
Topic 23: Internet Certificate Authority
Compare Notes security to Internet security
Internet client security overview
Level 1 Security: Anonymous access
Level 2 Security: Name and password authentication
Level 3: Enable SSL
Obtain Internet Certificate
Procedure 3.1: Migrate the Organization Certifier ID to the CA Process
Procedure 3.2: Create the Internet Certificate
Procedure 3.3: Create Internet Certificate Requests database
Procedure 3.4: Create the server Key Ring file with Trusted Root Certificate
Procedure 3.5: Enable SSL on the server
Topic 24: Issue Internet Client Certificates
Level 4 Security: Internet client authentication
Request Internet Certificates for Internet mail client
Authentication using Client Certificates
Issue Certificates to Notes users
How Notes adds Trusted Root Certificates
Notes users request Client Certificate from third-party CA
Issued Certificate List (ICL) database
Certificate Revocation Lists (CRL)
CRLs and authentication by Client Certificate
Checking for CRLs
Revoking an Issued Certificate
Certificate revocation checking through OCSP
Topic 25: Sign and Encrypt Internet Mail
Import Certificate into Outlook Express
Outlook Express signs message to Notes user
Notes user signs message
Notes user accepts senders Certificate for encryption
Topic 26: WebMail and Domino Web Access
Server-side requirements for WebMail
Use WebMail
Downsides of WebMail
Exercise: Access Mail via browser
Domino Web Access
DWA Lite
Server configuration for DWA
Configure users to use DWA
Domino Web Access Redirection
Launch from DWA Redirection to DWA Lite
Make DWA the default mail client
Contact list synchronization
Send signed messages
Send signed message to Internet mail users
Validate signature from Internet mail sender
Encrypt message sent to other Notes/DWA users
Encrypt message to Internet mail users
Certificate for authentication versus Certificate for encryption
Quota enforcement
Use DWA offline
Topic 27: Security for Browser-Accessed Mail
Firewalls and proxies
Fight denial of service attacks
Fight invalid URLs and buffer overflows
Restrict access by IP address
Limit HTTP methods
Enforce Server Access Lists
Fewer user name variations
Protect Internet Passwords
Failed Internet password tracking/lockout
Security Settings policy document fields
Change Internet Password
Best Practice: Use Client Certificates and SSL for authentication
Topic 28: Domino Access for Microsoft Outlook
Task 1: Configure Domino
Task 2: Register user
Task 3: Prepare user computer
Task 4: Install DAMO software on user computer
Task 5: Start Outlook and select DAMO Profile
Topic 29: Mail Monitoring
Router status
Server Console commands
Hidden message fields
Mail logging
Supplemental logging
Logging level
Mail statistics
Mail trace
Mail Routing Event Generator
Domino Domain Monitoring
Topic 30: Mail Tracking and Reporting
MTC server task
User tracks mail
What the tracking request tells you
Tracking across Domino Domains
Track mail in Domino Administrator
Report on tracked mail
MTC console commands
Exercise: Mail tracking and reporting
Topic 31: Message Archiving and Journaling
Local message archiving
Server-based message archiving
Configure server-based Mail database archive from Notes
Run COMPACT to perform archive
Schedule Compact to run
User access to Archive database
Define an Archive Settings policy
Calendar Cleanup
Message journaling
Configure message journaling
Mail Journaling database security
Keep message recipients when journaling
Third-party solutions
Topic 32: Troubleshooting and Performance
Dead message
Check for dead messages
Held message
Message transfer retry interval
Message timeout value
Transfer and delivery delay notifications
Troubleshoot submission errors
Troubleshoot transfer errors
Transfer errors and route cost
Troubleshoot delivery errors
Reverse-path setting for forwarded messages
Convert TNEF file attachments
Create/restore a deleted Mail database
Exercise: Mail errors
Custom delivery failure messages
SMTP troubles
SMTP headers
Improve performance