Setting up directory synchronization servers

In the on-premises hub domain, set up at least one Domino® server to be a hub server for directory synchronization with the service.

About this task

To provide failover, you can set up two directory synchronization servers in the on-premises hub domain. When you configure the service, you configure one as the primary directory server and the other as the optional secondary directory server. After the service replicates successfully with the primary directory server, it continues to use that server as long as it is available. If the server becomes unavailable, the service attempts to replicate with the optional secondary directory server. When the primary directory server becomes available, the service switches back to it.

Perform this procedure for each directory synchronization server you plan to use.

Procedure

  1. Install and set up a Domino server in the on-premises hub domain, or use an existing server. The server must comply with the following requirements:
    • If the server is the administration server for the domain, the server must be Domino 8.5.1 Fix Pack 2 or a later version with the corresponding Domino Directory template. If the server is not the administration server, any supported version of Domino is allowed.
    • The server must be certified under the same organization Notes® certifier as the mail hub servers in the on-premises hub domain, the passthru servers, and the mail servers in the service.
  2. Perform the following steps to disable public key checking on the server and to give the server access to the LLNServers group:
    1. Open the Server document in the Domino Directory in edit mode.
    2. Click the Security tab.
    3. In the Compare public keys field in the Security Settings section, select Do not enforce key checking and click OK.
    4. Perform one of the following steps to give the server access to the LLNServers group:
      • Add LLNServers to the Access server field.
      • Clear the users listed in all trusted directories check box and make sure that the Not access server does not prevent access to LLNServers.

      When you configure the service, the LLNServers group is created in the Domino Directory of the on-premises hub domain when you run the Domain Configuration tool.

    5. Click Save & Close.