Extracting Private Key from PFX file and generating a KYR file

Today I had to create a new certificate at customer site because of a Shitrix attack and had to extract the private key from the PFX file.

It´s quite easy running the following command:

openssl pkcs12 -in path:/myfile.pfx -nocerts -out path:/private-key.pem -nodes

Enter Import Password: password

With this command you extract the private key AND the certificate which you can use for creating the KYR file needed for your Domino environment. You can find your private key and the certificate in the file “path:/private-key.pem” and can copy the text between and encluding —BEGIN PRIVATE KEY— and —END CERTIFICATE—.

 

Upcoming events for Domino V11

HCL is offering a lot of upcoming events – give it a chance and register for one of the following free events !!

Domino V11 Query Language

  • With the release of v11, Domino Query Language (DQL) completed its consolidation of all means of searching Domino data, using full-text indices. We will discuss and demonstrate this and other vital enhancements. We will also workshop problems solved in a CollabSphere 2019 session that will show as LotusScript agent code, so DQL can be seen in action. Lastly, the expansive future of DQL will be detailed in the context of programming models and the business problems it can be used to address.
  • Register here: https://bit.ly/30Kxmb8

Domino Deployment and Monitoring

  • Join this session to learn how to create a controlled, efficient Domino deployment (regardless of where you want your servers) powered by Panopta, our new partner. You’ll learn how to get complete visibility of your Domino servers’ key health metrics in easy to use dashboards, ensure the right person is notified in case of any health or performance issues, and solve problems with automated remediation instead of manual intervention. And, with much of the configuration done out of the box, you’ll learn how to get this all up and running quickly.
  • Register here: https://bit.ly/2tIeCgp

Trends in Digital Experience Transformation from IDC

  • As IDC’s research has shown, organizations that use HCL Digital Experience have realized significant business benefits, including increased revenue and quicker time to market, reduced costs and improved staff productivity, and increased customer and employee engagement. Join this webinar to learn about the latest trends in digital experience transformation from IDC, and learn more about the business benefits HCL DX customers have achieved.
  • Register here: https://bit.ly/38DJsFX

 

You can also have a look at the V11 Key Features and Benefits in the following one-pager: https://bit.ly/2RnhgBr

And of course you still can register for engage ( the “New Lotusphere” ) held in Arnhem and organized by HCL Grandmaster Theo Heselmans and his great team !!

Webinar: Domino Query Language for Domino v11 in Action

HCL is offering a Webinar about DQL in Domino V11 with the following content:

With v11, Domino Query Language (DQL) completed its consolidation of all means of searching Domino data, using full-text indices. We will discuss and demonstrate this and other vital enhancements in this session. We will also workshop problems solved in a Collabsphere 2019 session that will show as Lotusscript agent code, so DQL can be seen in action. Lastly, the expansive future of DQL will be presented in some detail in the context of programming models and business problems it can be used to address.

Feel free and register for this great Webinar to see the options you have with DQL V11:

https://register.gotowebinar.com/register/2449005324386987021

Verse app 10.0.13.0 on Android is not syncing calendar entries after upgrade to Traveler 11

A question was asked on the HCL support forum ( https://bit.ly/3a2hiWt ) because after upgrading Traveler to V11 just calendar entries have not been synced to Android devices.

The cause has been located and will be fixed like mentioned as answer:

We have determined the cause of this issue and have a fix for it in the HCL Verse Android Google Play Store beta slot. We are beginning the production deployment of the fix via the Google PlayStore at this time which should complete by Wed Jan 15th. This issue can affect Verse Android client apps with versions from 10.0.11->10.0.13 and is fixed in the 11.0.0 version (202001092238) of the app.

If a single user is experiencing this issue, the simplest solution is to have them open the Verse App on their device and click the overflow menu in the upper right hand corner of the UI and select Tools->Replace Data and select “Mail and Calendar”. Once the Replace Data is complete, the issue will be resolved. For larger sets of users the suggestion above using “traveler reset” can be used.

If you want to reset all Android devices you can download an agent here:

https://www.dropbox.com/s/cmwy4uk57b0fjm2/Traveler_ResetAllDevices.txt?dl=0

Domino V11 Compact Options

Today I saw a program document from a customer environment with different compact options and to be honest >> I haven’t seen some of them for a while ( -W, -X, -x ). Those options are not mentioned in the official documentation ( https://bit.ly/39LzSC1 ) but you can get a complete list of the options when using the following command in your Server Console ( the following is from our Domino V11 server ):

lo compact -?

Please note the additional information after this listing !!!

-A Archive and delete documents without compacting.
-a Archive and delete documents, then compact database.
-B Recover space and reduce file size (inplace-style).
-b Recover space without reducing file size (inplace-style).
-C Copy-style compaction.
-D Discard view indexes (copy-style).
-daos on Enable ‘Use Domino Attachment and Object Service’ database
property. (Use with -C to move current objects into DAOS)
-daos off Disable ‘Use Domino Attachment and Object Service’ database
property. (Use with -C to move current objects out of DAOS)
-e No-execute: Show effective arguments only, since some arguments
affect others.
-F Enable ‘Document table bitmap optimization’ database property
(copy-style).
-f Disable ‘Document table bitmap optimization’ database property
(copy-style).
-g Copy-style compact the DB2 group associated with this database
or databases (for directories).  Recovers disk space in DB2.
-G Copy-style compact the DB2 group name passed in as a parameter.
Recovers disk space in DB2.
-H Enable ‘Don’t support specialized response hierarchy’ database
property (copy-style).
-h Disable ‘Don’t support specialized response hierarchy’ database
property (copy-style).
-i Ignore errors (for copy-style only).
-j Just Delete (must specify -a or -A to be valid).
-K Enable large UNK table (>64 KB).
-k Disable large UNK table (>64 KB).
-L Don’t lock users out during compaction (for copy-style only).
-M Set maximum database size to 4 GB.
-N Disable ‘Compress database design’ database property.
(Use -C with -N to uncompress current database design documents)
-n Enable ‘Compress database design’ database property.
(Use -C with -n to compress current database design documents)
-nifnsf on Enable ‘Move views out of database’ database
property. (Use with -C to move current views out of database)
-nifnsf off  Disable ‘Move views out of database’ database
property. (Use with -C to move current views into database)
-o Check for overlapping objects.
-p Convert to an NSFDB2 database.
-pirc on Enable ‘Purge Interval Replication Control’ on database.
-pirc off Disable ‘Purge Interval Replication Control’ on database.
-r Revert to previous ODS format (e.g. on an R8 system,
keep/convert back to R7 format).
-R Revert one ODS based on the current ODS of the database.
(e.g. Converts an R8 (ODS48) database to R7 (ODS43) format)
-S nnnK Compact database if unused space estimate >= nnn KB.
-S nnnM Compact database if unused space estimate >= nnn MB.
-S nn Compact database if unused space estimate >= nn percent.
-T Enable transaction logging.
-t Disable transaction logging.
-U Enable ‘Don’t maintain unread marks’ database property.
-u Disable ‘Don’t maintain unread marks’ database property.
-upgrade Upgrade databases created with older DB classes to the
most recent class.
-V Disable ‘Compress document data’ database property.
(Use -C with -V to uncompress current document data)
-v Enable ‘Compress document data’ database property.
(Use -C with -v to compress current document data)
-W nn Only compact databases which haven’t been compacted successfully
in last nn days. Ordered by last compact time.
-w Exclude system databases (e.g. log.nsf, names.nsf).
-X nn Limit each database compaction to no more than nn minutes.
(applies to in-place compaction only)
-x nn Limit total compaction time to no more than nn minutes.
-Y Recurse through subdirectories (default).
-y Do not recurse through subdirectories.
-ZU Enable ‘Use LZ1 compression for attachments’ database property.
(Use -C with -ZU to compress existing attachments using LZ1.)
-0 Process NSFDB2 databases only.  This will ignore NSF databases
and is to be used with other switches.
-* Include *.ntf and *.box when processing a directory
-# nn Execute up to nn compactions in parallel using different threads.
Up to a maximum of 20 Threads with a default of 1.
-ODS Perform a copy-style compact only if the current ODS is less than
desired default ODS.
-IDS_FULL What percentage full of IDs to create a new replica (optional).
-REN_WAIT Number of minutes to wait for rename (optional).
-RESTART Restart server if rename does not succeed and complete rename
on startup (optional).

I received an information from the HCL Grandmaster Daniel Nashed that

  • there are troubles with the option “-REPLICA” in Domino V10 and also in Domino V11. When using the option “lo compact db.nsf -REPLICA” some profile documents are removed and this bug is reproducable !! Therefore >> DON´T USE THIS OPTION !!!
  • Also don´t use the option “-ZU” at already DAOS enabled databases !!! > In earlier releases -ZU was ignored for DAOS enabled databases. Now it works but gets attachments out of DAOS into the NSF to recompress, which is increasing the physical database size and duplicates data. You should only use -ZU before you enable DAOS. And this needs to be a two step process.

Verse on Premises 1.0.9 – Feature

Today I upgraded our Domino environment to the latest versions ( Domino V11, Traveler V11 and also VoP 1.0.9 ). OK, it´s late, but I was sick last week – hopefully this is a legitimate excuse 😉

A nice feature in VoP 1.0.9 is this one:

VoP109

With this option you are able to change the password of your uploaded Notes ID inside the mail file and you can also see the installed version of VoP without having to use some “recalculation tables”:

VoP109_about

Thanks a lot to the Dev Team !!

Proud to be HCL Master in 2020

HCL Masters Class of 2020

Today I received the notification that I was selected to be HCL Master also in 2020. This is a great honor for me !!

You can find the complete list of all HCL Masters and HCL Grandmasters on this official listing: https://www.cwpcollaboration.com/class_of_2020.html

I thank all of you for voting me !!!

With the new versions of Collaboration solutions delivered by the great teams of HCL the year 2020 will be extremely exciting. I believe that with this development team in the back WE can enter the fray !!