我在问题1和3密切相关:

首先在您的域中设置一个ID-Vault.如今，这确实是多米诺骨牌必须拥有的东西.当遵循管理员帮助时，这是一个简单的1-2-3步骤.设置文件库后，一旦您为通过分层策略分配了文件库的验证者注册用户，该ID就会自动上传到该文件.

First of all set up an ID- Vault in your domain. It really is a MUST HAVE nowadays in domino. And it is a easy 1-2-3 step when following the administrator help. After setting up the vault the ID will automatically be uploaded to it as soon as you register users for a certifier that has the vault assigned via hierarchical policy.

那是说:我永远不会将用户ID存储在地址簿中，因为EVERYBODY可以从那里访问它并假装为该用户(假设他可以询问您的默认密码/给定的密码).

That said: I would NEVER store user ids in the address book as EVERYBODY can access it from there and pretend to be that user (given he can quess your default password / the given password).

要强制用户在首次登录后更改Notes-密码，我也使用id保险库:每当您使用保险库更改用户密码时，它将在下次登录后自动强制用户更改密码:

To force a user to change the Notes- password after first login I also use the id vault: Whenever you change a users' password using the vault it will automatically force the user to change it after the next login:

这是一个简单的单行代码:

And it is a simple one-line- code:

Call s.Resetuserpassword( mailsvr, "CN=User/O=dev", userpasswd )

这里最难的事情是在您的保管库中正确设置权限(将选项设置为允许以编程方式将保管库用于代码的签名者及其运行的代理)

The hardest thing here is to get the rights correct in your vault (set the option to be allowed to use the vault programmatically for the signer of your code and the agent it runs on)