Welcome
Configuring
Use this information to configure your network, users, servers (including Web servers), directory services, security, messaging, widgets and live text, and server clusters.
Configuring users and servers
Topics in this section describe how to set up users and servers.
Domino IQ
Domino 14.5 adds support for running an AI inference engine in the Domino backend.
Configuring the Certstore database for TLS
Specify TLS communication settings in the Certstore database (certstore.nsf).

HCL Domino 14.5 Documentation
Welcome to the HCL Domino® 14.5 documentation.
What's new in Domino 14.5?
Learn about all of the new features for administrators in HCL Domino® 14.5.
Overview
Welcome to HCL Domino® Administrator Help.
Installing
Use this documentation to install the HCL Domino® server and subsequently deploy the HCL Notes®client.
Planning
Use this topic as an overview of planning task.
Configuring
Use this information to configure your network, users, servers (including Web servers), directory services, security, messaging, widgets and live text, and server clusters.
- Configuring a network
  This section presents the planning concepts and setup procedures necessary for a successful HCL Domino® deployment over a network. It provides information on network protocols from a Domino perspective but does not attempt to provide general network information.
- Configuring users and servers
  Topics in this section describe how to set up users and servers.
  - Understanding the Server document
    The Server document is set up when you register a server. It contains many of the settings that define how your server operates.
  - Policies
    Use Domino® policy settings to control how users work with Notes®. A policy is a document that identifies a collection of individual policy settings. Policy settings documents define a set of defaults that apply to the users and groups to which the policy is assigned. You can change policy settings and they will be automatically applied to the assigned users and groups.
  - Domino IQ
    Domino 14.5 adds support for running an AI inference engine in the Domino backend.
    - Installing Domino IQ
      The Domino IQ installation is separate from Domino. It involves downloading a .zip file and unzipping it to the Domino program directory. This feature is available only on Windows and Linux 64-bit Domino servers with hardware NVIDIA GPU cards installed. HCL recommends NVIDIA GPU hardware with compute capability of 8.0 or higher for faster AI inferencing response time.
    - Enabling Domino IQ servers
      Use the Domino Directory to set up one or more Domino IQ servers.
    - Configuring the Domino IQ database
      Specify settings in the Domino IQ database (dominoiq.nsf).
    - Downloading an LLM model manually
      Download pre-trained data models in GGUF format.
    - Configuring the Certstore database for TLS
      Specify TLS communication settings in the Certstore database (certstore.nsf).
    - DominoIQ task status and controls
      Use Domino IQ server task status, along with console/tell commands, to help monitor and Domino IQ.
    - Security considerations for Domino IQ
      When you use Domino IQ to integrate any AI solution, you must test that solution for performance, quality, and security (including for Domino's out of the box IQ features). For better security, your model should support paraphrasing capability, which Domino IQ leverages.
    - Troubleshooting tips
      Here is some helpful information if you encounter a problem with Domino IQ.
  - Defining default settings for Notes® user registration
    Before you register new Notes® users, you can specify default settings that apply to all users. Default settings simplify user registration and ensure user settings consistency. You can define many default settings, such as what mail server users have or what certifier ID to use for user registration. You can also specify a default workstation execution control list (ECL) to protect data from unauthorized workstation access.
  - Using groups
    Groups are lists of users, groups, and servers that have common traits. They are useful for mailing lists and access control lists. Using groups can simplify administration tasks.
  - Replicas
    You can make a database available to users in different locations, on different networks, or in different time zones, by creating replicas of the database.
  - Calendars and scheduling
    The calendar and scheduling features allow users to check the free time of other users, schedule meetings with them, and reserve resources, such as conference rooms and equipment.
  - Editing the notes.ini file
    The Domino and Notes notes.ini files contain the settings required for the server and client to operate correctly. If you modify or add settings in a notes.ini file, do so cautiously and never edit the file directly with a text editor.
  - Configuring directory services
    This section describes how to plan, set up, and use HCL Domino® directory services.
  - Configuring messaging
    This section provides an overview of messaging and describes how to set up mail routing, how to set up and customize mail servers, and how to track mail.
  - Configuring Verse
    HCL Verse provides HCL Notes® users with browser-based access to Notes mail and to Notes calendar and scheduling features. Administrators specify mail policy and security policy settings as well as notes.ini file settings to complete the full implementation of HCL Verse.
  - Configuring Web servers
    This section describes how to set up the HCL Domino® Web server, and the Domino Web Navigator.
  - Setting up a cluster
    Setting up a cluster includes the tasks of creating and verifying that it is working correctly, and then setting up user access, mail, replications, size quotas, directory assistance, roaming, web navigation, and use of a private LAN in the cluster.
  - Configuring Widgets and Live Text
    Widgets and Live Text enables end users to see and act on Live Text in supported documents, including HCL Notes® mail, using XML extensions (widgets) created specifically for their use.
  - Domain Search
    Notes® client and Web users can use Domain Search to search an entire Domino® domain for database documents, files, and attachments that match a search query.
Securing
This section describes security features, including execution control lists, IDs, and TLS.
Administering
This documentation provides information about the administration tools for HCL Domino.
Tuning
Use this information to improve HCL Domino® server, Domino Web server, and messaging performance through the use of resource balancing and activity trends, advanced database properties, cluster statistics, and the Server Health Monitor.
Troubleshooting
This section describes how to find and solve problems with HCL Domino® server and Administrator client.
Notices

Configuring the Certstore database for TLS

Specify TLS communication settings in the Certstore database (certstore.nsf).

Before you begin

You will need to perform the following steps on the Certmgr server and then replicate the Certstore database to Domino IQ servers.
The Certmgr server needs to run Domino 14.5 and the design of certstore.nsf must be upgraded to the latest template.

Procedure

From the Domino Administrator client, open certstore.nsf.
Go to the TLS Credentials By Hostname view, and click the Add TLS Credentials button.
In the Hostname field, enter localhost.
In the Servers with access field, select the Domino IQ servers that have the Use TLS option enabled.
In the Certificate Provider field, select MicroCA. In the Certificate Authority field, select DominoMicroCA.
Click on the Create Exportable keys button. Provide the password for the exportable keys.
Click the Submit Request button.
Refresh the view and ensure that the Certmgr server processes the localhost TLS Credentials document successfully.
Now, go to the Configurations\Certificate Authorities view in the Certstore database. Open the DominoMicroCA document and click the Create Trusted Root button.
The localhost certificate under the DominoMicroCA Trusted root certifier is ready for use on Domino IQ servers.
For faster access, replicate the Certstore database to the Domino IQ servers.