I want to deploy an LN application over the entire organization (about 1000 users), and I want them to receive an e-mail with a database link. Once they click on the link, the database icon gets installed in their workspace and they get access to it. I don't want them to receive the typical "You don't have a certification for this... Do you want to add a key certification..." message thread because some users think this is an error and they click the "Execute Once" or the "Cancel" option instead of the correct "Trust Signer."
QUESTION POSED ON: 23 FEB 2005
QUESTION ANSWERED BY: Andre Guirard
It sounds like you're talking about the Execution Control List (ECL) notification, though you don't have the wording of the dialog quite right.
The ECL is a security measure intended to -- among other things -- make it harder for someone who does have an ID in your company to write malicious code and get other users in your company to execute it. Writing code that will execute on a user's workstation without warning is probably something you don't want to allow all your users access to do. Otherwise they can send each other e-mails with stored forms that contain PostOpen code, for instance, and pretty much do whatever they want on the recipient's workstation.
To avoid users seeing this message, you should sign all "official" applications of your company with one special Notes ID (or one of a very few). You decide which ID, but it should be a generic one such as "Application Development/Philips," not some person's, since that person might leave the company and then you have to re-sign everything.
The next step is to make sure this ID is recognized in the ECL list of all users. The Domino Administrator client contains functions to let you set an ECL "policy" for all users, so you can make sure that when code signed by one of these special IDs is encountered, the user is not prompted for permission to execute the code.
|
|
|
