Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Status No Plans to Implement
Workspace Domino
Categories Security
Created by Guest
Created on Nov 11, 2018

Use Directory Assistance (LDAP for example) in SMTP recipient check

would like to be able to dedicate a server that is out of the domain and (for security reasons) not cross certified with inside production domain, to receive smtp mail. Recipient checking is not possible now (unless a replica of the directory is present. SMTP server should check recipient in local directory and those configured in Directory Assistance.

  • Attach files
  • Guest
    Reply
    |
    Apr 13, 2020

    Thomas,

    as you can see here:

    https://domino-ideas.hcltechsw.com/ideas/IDEA-I-41

    Lotus protector is doing what I mean (LDAP check of receipient). How can it be possible there and not possible in Domino itself ?

    Syncing person docs is not nice (that's exactly what we are trying to avoid).

  • Guest
    Reply
    |
    Jan 31, 2020

    Thomas,

     

    Your solution involves doing a duplication/replica/sync of users to the server in dmz doing smtp which is exactly what we need to avoid. I still thinks this feature is needed.

    Let us chose if the performance hit acceptable.

  • Admin
    Thomas Hampel
    Reply
    |
    Jan 11, 2020

    This would seriously slow down the mail relay process as every single recipient name would have to be looked up on a remote LDAP. The performance impact would be huge. Instead you can use the DirSync task that was provided as part of Domino V11 to sync person / group objects from the LDAP into the Domino Direcotry.

  • Guest
    Reply
    |
    Nov 12, 2018

    I had a similar request at a previous job. The request was to secure the server in the DMZ as much as possible by its not having the Domino Directory referenced for lookups physically on the server in the DMZ. At that time, we had no solution.