MySphere Posts

I found a lot of documentation and this is my setup

install the necessary packages

#yum install gcc rpm-build autoconf.noarch zlib-devel pam-devel lzo lzo-devel openssl-devel automake imake pkgconfig gcc-c++ libcrypto.so.6

install openvpn

#yum install openvpn

Copy the files

#cp -r /usr/share/doc/openvpn-2.1.3/easy-rsa/ /etc/openvpn/

Create the certificate.
You’ll be asked to fill the field data, you can empty that with click enter repeatedly, but the one
you have to fill is the “Common Name� field.

#cd /etc/openvpn/easy-rsa/2.0
#source ./vars
#./vars
#./clean-all

Build Key Server

#./build-key-server server

Build Diffie Hellman

#./build-dh

Create the server.conf on the directory /etc/openvpn

This is a sample:

local 123.123.123.123 #- change it with your server ip address
port 1234 #- change the port you want
proto tcp #- protocol can be tcp or udp
dev tun
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/server.crt
key /etc/openvpn/easy-rsa/2.0/keys/server.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem
plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
client-cert-not-required
username-as-common-name
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push “redirect-gateway def1”
push “dhcp-option DNS 208.67.222.222”
push “dhcp-option DNS 4.2.2.1”
keepalive 5 30
comp-lzo
persist-key
persist-tun
status server-tcp.log
verb 3

Start OpenVPN

#service openvpn start

Generate certificates for the users

./build-key client1 (Ex: ./build-key MyUserName)

Download and setup the OpenVPNClient

Create the myclient.openvpn file

# OpenVPN(v2.0) configuration script

client
proto udp
resolv-retry 20
keepalive 10 120
nobind
mute-replay-warnings
ns-cert-type server
comp-lzo
verb 2
persist-key
persist-tun
verb 1
tls-exit
dev tun0
cert /MyUserName.crt  # this file and the .key file must be copied from the server when you generate the User.
key MyUserName.key
ca ca.crt
remote x.y.z.w 1194 #ip address of the server

Routing all client traffic through the VPN

iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth2 -j MASQUERADE
iptables -I INPUT -i tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -j ACCEPT
echo 1 > /proc/sys/net/ipv4/ip_forward

Saving iptables configuration

#/etc/init.d/iptables save

Start the VPNServer  

#service openvpn start

Reference

http://www.zoobey.com/index.php/resources/all-articles-list/619-installing-openvpn-on-centos-5-and-centos-6

After upgrading an Apple device, the Lotus Traveler account may no longer connect to the server with the error “Cannot Get Mail: the connection to the server failed”. The user may also see a prompt immediately after the upgrade with the error “Password Incorrect: Enter the password for the Exchange account”.

On the Apple device, the Exchange account password (used by Traveler) is not always retained after the iOS upgrade.

Currently there is no resolution to prevent the user from having to reenter their password (as detailed in the solution listed below). However, the following IBM Feature Request has been opened for further investigation: RSSN-8K2GWU

In most of these cases, the problem can be fixed by simply reentering the password for the Lotus Notes Traveler account (Exchange Profile) on the device.

Here are the steps for entering the password on the device:
1) Select Settings
2) Select Mail, Contacts, Calendars
3) Select the correct Domino mail account
4) Select Account
5) Enter the correct Password and select Done

Information above from this TN

Some people may find the wording of this field’s title to be confusing.  In fact, Notes is functioning as designed.    

The purpose of ‘Use the Operating System’s Timezone Settings’ field is as follows.

–  If set to “Yes”,  you can make time zone setting changes only through the OS.  Notes will adhere to whatever time zone the OS is set to, and you will not have the option to make changes through Notes.

–  If set to “No”, you can make time zone changes through either Notes or the OS;  fields become available in the Location document so that you have the option to change the settings through Notes.

The time zone settings will remain synchronized between Notes and the OS regardless of whether “Yes” or “No” is selected for the “Use the Operating System’s Timezone Settings:” field.

TN 1091291

IBM made a fix to solve the problem

This article shows the main features and give some samples of how to use the new WCM Query API, available since Web Content Manager 7 API.

Return receipt generation control

You can set a server notes.ini file parameter to show or suppress a prompt for iNotes client users that appears by default. The prompt lets the user choose
whether to acknowledge a request for a return receipt on an incoming message. If you do not set the notes.ini file parameter, the prompt always
appears when the user receives such a request.

•  iNotes_WA_SendReturnReceipt=2 Displays a prompt giving the iNotes user the choice whether to acknowledge a request for a return receipt.
•  iNotes_WA_SendReturnReceipt=1 Always sends a return receipt; does not notify the user.
•  iNotes_WA_SendReturnReceipt=0 Never sends a return receipt; does not notify the user.

iNotes_WA_SendReturnReceipt (0: Never; 1: Always [default]; 2: Prompt)

My favorite browser is Firefox, but something was really bothering me: The constant crashes of flash.

Searching for a solution i found the addon Memory Fox.  I installed it and my Firefox  and Flash are living in peace

Today a costumer call me and told that the inotes redirec was redirecting some users to wrong mail file.  

I discovered that some users click on personalization options and write a name on the field “Alternative Mail File Display Name”.

I remove the name and everything works fine again

IBM Notes and Domino 9 Social Edition demonstration

http://youtu.be/blOs46wkP9o

Last month we complete a WCM migration from version 6.0.1.7 to 7.0.0.2.   The final step was the setup of the inheritance of security settings from the library to the content. with the task

/ConfigEngine.sh run-wcm-admin-task-update-security -DWasPassword=password -DallLibraries=true  -DremoveExistingPerms=true -DinheritPerms=apply -DrestrictOn=Content -DpreserveDates=true -libSecurity=true.

But with this command you will update only de Content type. If you have images referenced as components the security will not be updated.

To update all content types run the command without -DrestricticOn key.