Welcome
Configuring
Use this information to configure your network, users, servers (including Web servers), directory services, security, messaging, widgets and live text, and server clusters.
Configuring users and servers
Topics in this section describe how to set up users and servers.
Configuring Web servers
This section describes how to set up the HCL Domino® Web server, and the Domino Web Navigator.
The Domino® Web server
Domino® provides an integrated Web application server that can host Web sites that both Internet and intranet clients can access, and that can serve up pages that are stored in the file system or in a Domino database.
Setting up a Domino® server as a Web server
You can specify that you want to run the HTTP task on the Domino® server. Domino can then function as a Web server and allow browser clients to access databases on the server.
Configuring cross-origin resource sharing (CORS)
Configure cross-origin resource sharing (CORS) to allow a web application from another origin to access resources on a Domino web server.
CORS JSON configuration
Configure CORS by editing the cors-rules.json file that you created.

HCL Domino 14.5 Documentation
Welcome to the HCL Domino® 14.5 documentation.
What's new in Domino 14.5?
Learn about all of the new features for administrators in HCL Domino® 14.5.
Overview
Welcome to HCL Domino® Administrator Help.
Installing
Use this documentation to install the HCL Domino® server and subsequently deploy the HCL Notes®client.
Planning
Use this topic as an overview of planning task.
Configuring
Use this information to configure your network, users, servers (including Web servers), directory services, security, messaging, widgets and live text, and server clusters.
- Configuring a network
  This section presents the planning concepts and setup procedures necessary for a successful HCL Domino® deployment over a network. It provides information on network protocols from a Domino perspective but does not attempt to provide general network information.
- Configuring users and servers
  Topics in this section describe how to set up users and servers.
  - Understanding the Server document
    The Server document is set up when you register a server. It contains many of the settings that define how your server operates.
  - Policies
    Use Domino® policy settings to control how users work with Notes®. A policy is a document that identifies a collection of individual policy settings. Policy settings documents define a set of defaults that apply to the users and groups to which the policy is assigned. You can change policy settings and they will be automatically applied to the assigned users and groups.
  - Domino IQ
    Domino 14.5 adds support for running an AI inference engine in the Domino backend.
  - Defining default settings for Notes® user registration
    Before you register new Notes® users, you can specify default settings that apply to all users. Default settings simplify user registration and ensure user settings consistency. You can define many default settings, such as what mail server users have or what certifier ID to use for user registration. You can also specify a default workstation execution control list (ECL) to protect data from unauthorized workstation access.
  - Using groups
    Groups are lists of users, groups, and servers that have common traits. They are useful for mailing lists and access control lists. Using groups can simplify administration tasks.
  - Replicas
    You can make a database available to users in different locations, on different networks, or in different time zones, by creating replicas of the database.
  - Calendars and scheduling
    The calendar and scheduling features allow users to check the free time of other users, schedule meetings with them, and reserve resources, such as conference rooms and equipment.
  - Editing the notes.ini file
    The Domino and Notes notes.ini files contain the settings required for the server and client to operate correctly. If you modify or add settings in a notes.ini file, do so cautiously and never edit the file directly with a text editor.
  - Configuring directory services
    This section describes how to plan, set up, and use HCL Domino® directory services.
  - Configuring messaging
    This section provides an overview of messaging and describes how to set up mail routing, how to set up and customize mail servers, and how to track mail.
  - Configuring Verse
    HCL Verse provides HCL Notes® users with browser-based access to Notes mail and to Notes calendar and scheduling features. Administrators specify mail policy and security policy settings as well as notes.ini file settings to complete the full implementation of HCL Verse.
  - Configuring Web servers
    This section describes how to set up the HCL Domino® Web server, and the Domino Web Navigator.
    - The Domino® Web server
      Domino® provides an integrated Web application server that can host Web sites that both Internet and intranet clients can access, and that can serve up pages that are stored in the file system or in a Domino database.
      - Setting up a Domino® server as a Web server
        You can specify that you want to run the HTTP task on the Domino® server. Domino can then function as a Web server and allow browser clients to access databases on the server.
        Starting and stopping the Domino® Web server
        There are several different ways you can start and stop the Domino® Web server.
        Modifying Web server Internet port and protocol settings
        You can change default Internet port and protocol settings for the Web server.
        Configuring cross-origin resource sharing (CORS)
        Configure cross-origin resource sharing (CORS) to allow a web application from another origin to access resources on a Domino web server.
        CORS JSON configuration
        Configure CORS by editing the cors-rules.json file that you created.
        Example CORS JSON configuration
        Here is example content for cors-rules.json.
        Enabling CORS debug logging
        To debug incoming CORS requests, use the CORS_FILTER_TRACE setting to enable trace logging.
        Setting up protocol security for the Web server
        If you set up protocol security, you can filter out requests that may be potential attacks, such as probing for buffer overflows or request parsing errors. If you host third-party applications, set the limits to the most stringent values that still allow the applications to work normally. If the request exceeds the limit, the Web server discards the request and returns an error to the browser.
        Restricting access by IP address on the Web server
        You can determine the client machines that are allowed to access the HTTP and HTTPS ports of the Web server by specifying a list of IP addresses that have access, and a list of addresses that are denied access. You can also specify which list takes priority if an address matches both lists.
        Hosting Java™ applets
        Using the Java™ Notes® classes, application developers can create applets that perform server tasks, such as opening a session and retrieving information from a database access control list. The server can host the applet and when a client requests it, download the applet to the browser.
        Generating references to the Web server
        You can specify how other servers generate URL references to this Web server. This feature works only for servers that are in the same Domino® domain (share the same Domino Directory).
        Managing Java™ servlets on a Web server
        A servlet is a Java™ program that runs on a Web server in response to a browser request. Servlets for Domino® must conform to the Java Servlet API Specification, an open standard published by Oracle.
        Setting up and enabling WebDAV
        WebDAV (Web-based Distributed Authoring and Versioning) is a set of extensions to the HTTP/1.1 protocol which allow users to collaborate in the editing and management of files on remote Web servers.
        The browser.cnf file
        The browser.cnf file is installed automatically in the server data directory when you install Domino®. It contains configuration settings for browsers used to render Domino Web applications. Specifically, this file is used by @BrowserInfo to determine browser properties.
      - Hosting Web sites
        You can use Web Site documents to host Web sites on Domino®. The Web Site document is one type of Internet Site. Web Site documents contain Web site configuration information and are managed through the Servers\Internet Sites view along with other types of Internet site documents.
      - Customizing Web server messages and login
        Use the Domino Web Server Configuration database to create a modern-looking web user login form or to create custom Web server messages.
      - Using gzip compression
        The Domino® Web server can serve files compressed by gzip (GNU zip). You must add the compressed file to the appropriate server directory. This feature is on by default.
      - HTML generation options
        The HTMLOptions capability was developed for the Web server as a general, extensible way for Web application developers to specify form and field specific options to control the Web engine's HTML generation. It allows users to select alternate behavior for the web server HTML generator, without requiring dedicated Domino® Designer events or info box controls.
    - The Web Navigator
      The Web Navigator lets Notes® workstations access the Web, without having a direct connection to the Internet. The Web Navigator server, which has a direct connection to the Internet, retrieves pages for users. The Web Navigator retrieves pages on Internet servers -- for example, servers that use Internet services such as HTTP, FTP, or Gopher.
  - Setting up a cluster
    Setting up a cluster includes the tasks of creating and verifying that it is working correctly, and then setting up user access, mail, replications, size quotas, directory assistance, roaming, web navigation, and use of a private LAN in the cluster.
  - Configuring Widgets and Live Text
    Widgets and Live Text enables end users to see and act on Live Text in supported documents, including HCL Notes® mail, using XML extensions (widgets) created specifically for their use.
  - Domain Search
    Notes® client and Web users can use Domain Search to search an entire Domino® domain for database documents, files, and attachments that match a search query.
Securing
This section describes security features, including execution control lists, IDs, and TLS.
Administering
This documentation provides information about the administration tools for HCL Domino.
Tuning
Use this information to improve HCL Domino® server, Domino Web server, and messaging performance through the use of resource balancing and activity trends, advanced database properties, cluster statistics, and the Server Health Monitor.
Troubleshooting
This section describes how to find and solve problems with HCL Domino® server and Administrator client.
Notices

CORS JSON configuration

Configure CORS by editing the cors-rules.json file that you created.

The JSON file must contain a single JSON object with two properties:

version {string}
Must be equal to "1.0".

rules {array<object>}
Must be an array of valid CORS rules.

The syntax of a rule object is defined as follows:

resource {object} (Required)

Describes how to match this rule with a request URL. Supports the following properties:

path {string} (Required) The resource path. Without startsWith or exact values, the CORS filter matches any request with a path that contains this value.
startsWith {boolean} (Optional) When true, the CORS filter matches only requests with a path that starts with the value of path.
exact {boolean} (Optional) When true, the CORS filter matches only requests with a path that is the exact value of path. The startsWith and exact properties are mutually exclusive.

allowOrigins {string | array<string>} (Required)

Specifies the list of allowed origins for this resource. Specify an array of strings where each element is an allowed origin host name, for example, "http://this.example.com". Only an origin that exactly matches one of these elements is allowed. For example, specify"http://this.example.com", "https://this.example.com", and "http://this.example.com:8080" to allow access through all of these URLs.

A value of "*" allows any origin. Its use is not recommended.

allowMethods {array<string>} (Required)

Specifies the list of allowed methods for this resource and origin. See Access-Control-Allow-Methods in the W3C Recommendation on Cross-Original Resource Sharing recommendation.

allowCredentials {boolean} (Optional)

When true, the CORS filter allows credentials for this resource and origin. See Access-Control-Allow-Credentials in the W3C Recommendation on Cross-Original Resource Sharing.

exposeHeaders {array<string>} (Optional)

Specifies the list of response headers to expose to XHR clients. This property causes the CORS filter to add an Access-Control-Expose-Headers header to responses to actual (not pre-flight) requests. Ultimately, the browser is responsible for exposing the headers to the XHR client. See Access-Control-Expose-Headers in the W3C Recommendation on Cross-Original Resource Sharing.