Deleting a user

You can delete a user name with the Administration Process by initiating a delete person command from the Domino® Administrator or by using the Microsoft Windows Active Directory. When you delete a user name, you might want to add that user to a "termination" group to prevent the user from accessing servers. When you create a termination group, assign the group type Deny Access to the group.

About this task

Note: You can also use this procedure to delete a roaming user name.

If the server is running Active Directory, you can delete the user's Active Directory account as well.

There may be times when you want to maintain a user's mail file even though you have deleted the user from the Domino® Directory. That option is available to you when you delete a user name.

Procedure

  1. To delete a user, you must have:
    • Author with delete documents access and the UserModifier role, or Editor access to the Domino® Directory
    • Author with Create documents access to the Certification Log
  2. From the Domino® Administrator, click the People & Groups tab.
  3. Click People and select the user names you are deleting.
  4. From the Tools pane, click People > Delete.
  5. Complete these fields:
    Table 1. User deletion fields
    Field Enter
    What should happen to the user's mail database(s)? Select the appropriate option(s):
    • Do not delete the mail database -- to delete the Person document but leave the user's mail files intact.
    • Delete the mail database on the user's home server -- to delete mail files on the user's home server only.
    • Delete mail replicas on all other servers -- this option is active only if Delete the mail database on the users home server was chosen. This option deletes all replicas of the mail database on other servers.
    What should happen to the user ID in the vault? This option is available only for user IDs stored in an ID vault. Select one:
    • Mark the ID as inactive and keep the ID in the vault.
    • Delete the ID from the vault.
    Add deleted user to Deny Access Group This option is active only if one or more groups of type Deny Access exists.
    To deny a user access to servers immediately:
    1. Click Groups.
    2. Select a Deny Access Group from the list.
    3. Click OK.
    Delete user's Windows account, if existing Select this option to delete the corresponding user account in Microsoft Windows Active Directory account.
    Delete user from this Domino® Directory immediately Select this option to remove the account from the Domino® Directory immediately, while initiating Administration Process requests to remove the user's name from ACLs, Names fields, and so on.
  6. Click OK.

To approve the mail file deletion

About this task

If you chose to delete any mail databases, including replicas, you must approve the requests in the Administration Requests (ADMIN4.NSF) database. If you delete a roaming user name, you must approve replica deletions.

To delete a user's mail file, you must have at least Editor with delete documents access to the Administration Requests database and delete documents access to the Domino® Directory.

Procedure

  1. From the Domino® Administrator, select Server > Analysis > Administration Requests.
  2. Select the Pending Administrator Approval view.
  3. Depending on your choices when you deleted the user name, do one of the following:
    • If you are certain that you want to approve one or more requests without looking at detail information for those requests, select the request, and click Approve Selected Requests and then click OK.
    • If you would like to see detail on one or more requests before approving the deletion, select and open the request, click Edit Request, review the detail information, then choose Approve Replica Deletion, or choose Reject Replica Deletion.
  4. Click Save and Close.