Configuring business card photos for a Domino LDAP directory

You can store user photos in the Domino® LDAP directory and enable UserInfo to retrieve them. A third-party LDAP management tool is required for adding a JPEG Photo field to Domino LDAP. Most LDAP V3-compliant tools will work.

Before you begin

Configuring Business Card with an authenticated LDAP bind account is highly recommended. Allowing Anonymous LDAP Schema write access is a security risk and additional security changes to Domino Directory Access Control List may be required to allow anonymous write access to the Domino LDAP directory.

Procedure

  1. Use Domino Administrator to enable Domino LDAP directory write access. Within default Configuration Setting Document LDAP, click Yes to Allow LDAP users write access.
  2. Using the third party LDAP tool, connect to the Domino LDAP server and bind as a Domino Administrator. Once a successful connection is made, select a user and add an Attribute. The Attribute name for the Domino LDAP directory should be specified as: jpegphoto;binary and the type should be selected as binary. Note the name being used for the attribute. If you use just jpegPhoto or Photo as the name, depending on the LDAP tool, you might not be able to store images in the field. The -;binary is required for the Domino LDAP directory to understand the binary data.
  3. Use the third-party LDAP tool to import the JPEG or GIF photo into the new field.
    Note: The size of the image should be smaller than 45 KB (recommended: 10 KB).
  4. Use ldapsearch or the LDAP tool to check that the photo has uploaded successfully
  5. Log in to the Integrated Solutions Console.
    1. Click Sametime System Console > Sametime Servers > Sametime Community Servers.
    2. In the Sametime Community Servers list, click the deployment name of the server with the connectivity information that you want to change.
    3. Click the Business Card tab.
    4. In the Business Card Contents section, select the Photo attribute, and then click Add to include it in the business card.
    5. In the Attribute Definition section, choose User Defined as the attribute value for Photo.
    6. In the User Defined column following Photo, type jpegphoto;binary.
    7. Click OK.
  6. Open the LDAP server's Domino Directory (names.nsf) in a Notes® client.
    1. Expand the Configurations > Servers, and select the Configurations view. Open this document in Edit mode and click the Basic tab. Enable the Use these settings as the default settings for all servers option. The LDAP tab appears.
    2. Click the LDAP tab. Click Choose Fields that Anonymous Users Can Query via LDAP.
    3. Click New in the window that displays.
    4. Type jpegphoto in the field and click OK to save the value. Click OK again to close the window.
    5. Save and close the document.
  7. Restart the LDAP server. From the server console, type tell ldap quit and then load ldap.
  8. Using LDAP tool or ldapsearch, check if you can anonymously retrieve jpegPhoto. See "ldapsearch utility" in the Domino Administrator Help at https://www.ibm.com/developerworks/lotus/documentation/domino/
  9. Browse to UserInfoConfig.xml file within the Domino Install folder. In the "Details" section, check to make sure Photo field is set to jpegPhoto;binary. 
    <Detail Id="Photo" FieldName="jpegPhoto;binary" Type="image/jpeg" />
  10. Restart the Sametime® Community Server.