Message Archiving Lotus Domino Journaling Configuration Guide For Domino Server 6.5.4 - 8.
Google, Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043 www.google.com Part number: AMLDJCG_620_05 February 3, 2012 © Copyright 2009 Google, Inc. All rights reserved. Google, the Google logo, Google Message Filtering, Google Message Security, Google Message Discovery, Postini, the Postini logo, Postini Perimeter Manager, Postini Threat Identification Network (PTIN), Postini Industry Heuristics, and PREEMPT are trademarks, registered trademarks, or service marks of Google, Inc.
This software is provided “AS IS.” The copyright holders disclaim all warranties, either express or implied, including but not limited to implied warranties of merchantability and fitness for a particular purpose, with respect to this code and accompanying documentation. Although their code does not appear in gd 1.8.4, the authors wish to thank David Koblas, David Rowley, and Hutchison Avenue Software Corporation for their prior contributions.
Contents About This Guide................................................................................................. 7 What This Guide Contains..................................................................................... 7 Related Documentation ......................................................................................... 8 How to Get Support ............................................................................................... 8 How to Send Comments About This Guide .....
About This Guide What This Guide Contains The Lotus Domino Journaling Configuration Guide provides information about: • How Domino journaling works • Setting up Domino Server to send copies of email messages to your archive in Message Archiving. The information in this guide is intended for: • Administrators of the Message Archiving service • Administrators of Domino Server This guide is a supplement to the Message Archiving Administration Guide.
Related Documentation For additional information about Message Archiving and your Message Security service, refer to the following related documents, which are available on the Postini Support Portal. For details, see “How to Get Support” on page 8.
https://support.postini.com Note: Postini Customer Care does not provide technical support for configuring mail servers or third-party products. Please contact Postini Professional Services Services (professionalservices@postini.com) for consulting services. How to Send Comments About This Guide We value your feedback. If you have comments about this guide, please send an email message to: postini-doc_comments@google.com In your email message, please specify the section to which your comment applies.
Chapter 1 Introduction to Lotus Domino Journaling Chapter 1 What Is Domino Server Journaling? Domino Server journaling lets you record copies of email communications in your organization and store, or journal, them in a Mail Journaling database. The process of journaling is different from archiving. Journaling is simply a means of retaining copies of your users’ messages.
How Does Domino Server Journaling Work? Before you enable journaling, you create a Mail Journaling database, which uses a Postini database template. The Postini template contains the code that implements the Postini Journaling Agent. The Mail Journaling database can be local to a server, or you can create a remote database used by one or more servers. When journaling is enabled, email that passes through the MAIL.
What Should I Do Before Setting Up Journaling? Before you set up journaling on your Domino Server, we recommend that you first do the following: • Ensure that you have Configuration Settings documents for the servers • Outline the server mail rules you want to implement for journaling • Adjust quotas on the mail databases • Create an additional email account for each user who can search the Postini archive • Set up TLS (Transport Layer Security) Configuration Settings Documents A Configuration Set
http://www-128.ibm.com/developerworks http://www-128.ibm.com/developerworks/lotus/library/domino-mail-quotas/ For more information about the Personal Archive, refer to the Message Archiving Administration Guide. Create Email Accounts for Users with the Archive Search Privilege A user who has permission to search your corporate archive can export archived messages by sending them to the Domino email address registered with your Postini Message Security service.
You can find detailed information about setting up TLS (SSL) for Domino Server on the IBM Web site (www.ibm.com).
Chapter 2 Setting Up Lotus Domino Journaling Chapter 2 Overview of Journaling Setup The following are the basic steps for setting up Domino Server journaling: 1. Install the Postini templates for the Mail Journaling database and the optional Postini Log database. 2. Create the Mail Journaling Database, which will contain your journaled email messages and forward them to your archive. 3. Configure access control for the new Mail Journaling database.
Legal Disclaimer This guide describes how Postini products work with Lotus Domino Server and the configurations that Postini recommends. These instructions are designed to work with the most common Lotus Domino Server scenarios. Any changes to Lotus Domino Server configuration should be made at the discretion of your Lotus Domino Server administrator.
The templates are available from the following links: • 6.5.4 Mail Journaling template • 6.5.4 Log template • 7.0 Mail Journaling template • 7.0 Log template • 7.0.2 Mail Journaling template • 7.0.2 Log template • 7.0.3 Mail Journaling template • 7.0.3 Log template • 8.0.2 Mail Journaling template • 8.0.2 Log template • 8.5 Mail Journaling template • 8.
The New Database dialog box appears. 3. Under Specify New Database Name and Location: • In the Server field, select the server on which you want to create the database. • In the Title field, enter the following title (name) for the database: Domino Mail Journal. • In the File name field, enter the following file name: mailjrn.nsf. By default, the file is created in the local Data directory.
Step 3: Configure Access Control for the Mail Journaling Database The Access Control List (ACL) for a database controls which users can perform which tasks in the database, and which servers can replicate which data in the database. To configure the ACL for the Domino Mail Journal Database: 1. Open the Lotus Notes client. 2. Open the Domino Mail Journal database: • Click File > Database > Open. • From the Server list, select the server on which you created the database.
User/Server Role, Access, and Privileges Anonymous Role: None Access: No Access Privileges: Create documents: No Delete documents: No Create private agents: No Create personal folders/views: No Create shared folders/views: No Create Lotus Script/Java agents: No Read public documents: No Write public documents: No Replicate or copy documents: No LocalDomainAdministrators Role: Admin Access: Manager Privileges: Create documents: Yes Delete documents: Yes Create private agents: Yes Create personal folders
User/Server Role, Access, and Privileges LocalDomain-Servers Role: Admin Access: Manager Privileges: Create documents: Yes Delete documents: Yes Create private agents: Yes Create personal folders/views: Yes Create shared folders/views: Yes Create Lotus Script/Java agents: Yes Read public documents: Yes Write public documents: Yes Replicate or copy documents: Yes OtherDomain-Servers Role: None Access: No Access Privileges: Create documents: No Delete documents: No Create private agents: No Create person
User/Server Role, Access, and Privileges Administration Server Role: Admin Access: Manager Privileges: Create documents: Yes Delete documents: Yes Create private agents: Yes Create personal folders/views: Yes Create shared folders/views: Yes Create Lotus Script/Java agents: Yes Read public documents: Yes Write public documents: Yes Replicate or copy documents: Yes 5. Click OK. Step 4: Set Properties for the Mail Journaling Database To set the database properties: 1. Open the Lotus Notes client. 2.
3. Click File > Database > Properties to open the Database properties dialog box. 4.
Tab Settings Launch When opened in Notes client: Open designated Frameset Name: MailFS Restore as last viewed by user: Select check box Full Text Clear check boxes for all options. Advanced Don’t maintain unread marks: Select check box Allow soft deletions: Clear check box 5. Close the Database properties dialog box.
5. Set the following properties for the new Mail-In Database: Tab Settings Basics Mail-In Name: ..DominoMailJournal (use the ..
3. Open the Server Configurations view: • In the navigation pane, expand Configuration. • Expand Servers. • Under Servers, select Configurations. 4. Create or open for edit the All Servers Configuration Settings document. • If the document does not exist: Click Add Configuration. On the Basics tab, select the check box for Use these settings as the default settings for all servers. Save the Configuration Settings document.
10. Create the condition to journal all email messages: • In the This rule is field, select On. • From the first drop-down list, select all documents, then click Add. 11. Create an exception to the condition so that messages sent to your Postini Archive email address are not journaled again: • In the Create field, select Exception. • From the first drop-down list, select To. • From the second drop-down list, select is.
To crate the Postini Log database: 1. Open the Lotus Notes client. 2. Click File > Database > New. The New Database dialog box appears. 3. Under Specify New Database Name and Location: • In the Server field, select the server on which you created the Mail Journaling database (Domino Mail Journal). • In the Title field, enter the following title (name) for the database: Postini Archiving Log. • In the File name field, enter the following file name: postiniLog.nsf.
3. Set the following properties: Property Value Archive Email Address Your Postini Archive email address (archive@your_ID.archive.psmtp.com) Archive Log DB postiniLog.nsf Logging Level Select one of the following: • 0 (disabled) • 1 (Warning) • 2 (Debug) 4. Click Save. Setting Agent Properties To set the agent properties: 1. Open the Mail Journaling database (Domino Mail Journal). 2. Click View > Agents. 3. Double-click postiniArchive. The agent properties dialog box opens. 4.
3. Click Basics, then click Add. 4. Enter the server on which the agent resides. 5. Click OK. 6. From the People, Server, Groups list, select the server name. 7. From the User type list, select Server. 8. From the Access list, select the access level you want to assign to the server. 9. Click OK. Setting the Heap Size for the JVM The Postini Journaling Agent is a java program, and so relies on the java heap size settings in notes.ini.
Verify Domino Server Journaling Setup After you finish setting up Domino Server journaling, you can verify that messages are being journaled and archived as expected. Verify Journaling 1. Using your Notes client, send a message to yourself or any user who falls within the scope of your journaling configuration. In the CC field of the message, add the address of a mailing list. In the BCC field, add the address of one recipient. 2.
Troubleshoot Domino Server Journaling Setup If you cannot verify that Message Archiving is archiving journaled messages, do the following: Verify that you configured the Postini Journaling Agent with the correct Archive Email Address. If you entered this address incorrectly, the agent cannot send the journaled messages to your archive. Refer to the instructions for setting the agent properties in “Setting Profile Document Properties” on page 30.
Chapter 3 Monitoring Journaling Performance Chapter 3 Once you have successfully deployed Domino Server journaling, there are three easy ways to monitor journaling activity and spot potential problems: • Use the Storage Overview report in Message Archiving • Use the Inbound Archiving by Domain report in the Administration Console • Turn on journaling alerts Monitoring Journaling Performance 35
Use the Storage Overview report in Message Archiving Message Archiving administrators who have the Archive Search and Archive Reports privileges can view the Storage Overview report, which includes an up-tothe-minute view of your journaling traffic. To view the Storage Overview report, log in to Message Archiving, click the Reports tab, then click Storage Overview in the Navigation panel.
Use the Inbound Archiving by Domain report in the Administration Console You can use the Inbound Archiving by Domain report in the Message Security Administration Console to get a summary of the following data related to journaling: • Account Messages: Messages journaled for active archiving users. • Non-Account Messages: Valid journals for users who do not have archiving enabled. These journals are archived if Non-account Archiving is enabled.
Appendix A Journaling Setup Checklist Appendix A Use the following checklist to verify that you have successfully completed all the steps necessary to set up journaling on your Exchange Server. Install the Postini templates Postini provides two database templates that allow the Domino server to work with Postini Message Archiving: • Postini Mail Journaling template (postinimailjrn.ntf) • Postini Log template (postinilog.ntf) For more information, see “Step 1.
Set Properties for the Mail Journaling Database You need to open the Database properties dialog box, and set properties on the Basics, Design, Launch, Full Text, and Advanced tabs. For more information, see “Step 4: Set Properties for the Mail Journaling Database” on page 24. Create the Mail-in Database Document After you create and configure the Mail Journaling database (Domino Mail Journal), you then have to create the corresponding Mail-In Database document so that the database can receive mail.
Verify Domino Server Journaling Setup After you finish setting up Domino Server journaling, you can verify that messages are being journaled and archived as expected: • Verify journaling • Verify archiving For more information, see “Verify Domino Server Journaling Setup” on page 33.
