Home
IBM® Domino 10.0.1 Documentation
Welcome to the IBM® Domino 10.0.1 Administrator Help.
Configuring
Use this information to configure an IBM® Domino® network, users, servers (including Web servers), directory services, security, messaging, widgets and live text, and server clusters. Also use this information to set up IBM iNotes® on a server using Domino Off-Line Services (DOLS).
Configuring directory services
This section describes how to plan, set up, and use IBM® Domino® directory services.
The Domino® Directory
The Domino® Directory, which some previous releases referred to as the Public Address Book or Name and Address Book, is a database that Domino creates automatically on every server. The Domino Directory is a directory of information about users, servers, and groups, as well as custom entries you may add. Registering users and servers in a domain automatically creates corresponding Person documents and Server documents in the Domino Directory for the domain. These documents contain detailed information about each user and server.
Controlling access to the Domino® Directory
You control access to the IBM® Domino® Directory by setting it overall in the ACL, assigning administrators to roles that correspond to their administrative tasks, and, if you want, controlling access to individual documents or using the extended ACL to set access at the form and field level.
Setting overall access levels in the Domino® Directory ACL
The Domino® Directory, like all Notes® databases, has an access control list (ACL) that controls the overall access that users and servers have.

Setting overall access levels in the Domino Directory ACL

The Domino® Directory, like all Notes® databases, has an access control list (ACL) that controls the overall access that users and servers have.

About this task

The following table shows the default name entries in the Domino Directory ACL and the default access settings for each entry.

You might want to customize the database ACL. For example, to have stricter control over database access, you might change the access for the -Default- entry to No Access and explicitly add the names of groups of users to the ACL that you want to allow access.

Note: The default access for the -Default- entry allows users only to change some of the fields in their Person documents.

Table 1. Default name entries their associated access settings
Default name entry	Access level	User type
-Default-	Author access without the "Create documents" privilege or administration roles	Unspecified
Anonymous	No access	Unspecified
LocalDomainAdmins	Manager access with no administration roles	Person group
LocalDomainServers	Manager access with all administration roles except PolicyCreator and PolicyModifier	Server group
OtherDomainServers	Reader access	Server group
Server in the domain on which the directory was created.	Manager access with all administration roles	Server
Administrator specified during server setup	Manager access with all administration roles	Person