Synchronising Contacts Coming in 8.5.1

Gabriella Davis  June 29 2009 11:34:35 AM

I know i'm late to the party but, thanks to Mary Beth for her posting on an updated Desktop Policy setting coming in 8.5.1.  'Synchronise Contacts' (yes I know I should spell it the American way I just can't make my typing fingers do that).  This gives an Admin the ability to ensure the user's contacts are successfully synchronised to their mail file, iNotes, BB, iPhone etc  without direct user interaction.  Very nice.



MBR's original post here

• Comments [0]

Stupid Amounts of Multitasks

Gabriella Davis  June 25 2009 01:55:41 PM

Recently I've taken to ranting over my Macbook which I've always been thrilled with, specifically ranting over how it slows down when VMWare Fusion starts or stops.  I've been considering upgrading to a model with more memory because even though I carefully store applications in 1 of 4 spaces to try and keep my working 'desktop' as clear as possible, that's been getting more and more difficult recently.

Someone in the office just walked by whilst I was doing an Expose of all my Spaces and applications and pointed out that maybe I need to rationalise how many things I try and do at once.

• Comments [1]

A Mixed Bag Of BES 5.0 - Lessons From An Install

Gabriella Davis  June 18 2009 05:52:33 PM

So i'm late to the party on BES 5.0 but I'm afraid I have a rule to not install anything until I've read the documentation.  In the case of BES 5.0 that was 12 - count them - separate multi hundred page PDFs.  Eventually they wore me down and I felt that I had 'enough' of a handle on BES to go ahead and upgrade our small test server which only has 7 users on it.   Today I upgraded that install with 2 security patches (7th April and the replacement from 20th April) and the MR1 fixpack.

So far a lot of not good and not a lot of good.  Firstly the hardware requirement for BES 5.0 is probably above what many companies are running their existing servers on.  The install alone requires 2.5GB of free space and the requirements for the servers are obviously heavier than for Domino standalone (although credit to RIM it's nice they have documented the hardware specs for different kinds of load in their admin guide).

BlackBerry Enterprise Server that supports up to 200 users • Two processors, 2.0 GHz Intel® Xeon® • 3 GB of memory • 2 drives, RAID 1

BlackBerry Enterprise Server that supports up to 500 users • Two processors, 2.8 GHz Intel Xeon • 3 GB of memory • 2 drives, RAID 1 or 4 drives, RAID 1+0

BlackBerry Enterprise Server that supports up to 1000 users • One processors, 3.0 GHz Intel Xeon 5100 Series (Dual Core) or two processors, 1.6 GHz Intel Xeon 5100 Series (Dual Core) • 4 GB of memory • 4 drives, RAID 1+0

BlackBerry Enterprise Server that supports up to 2000 users • 64-bit operating system recommended • Single processor, 2.83 GHz Intel Xeon 5400 Series (Quad Core) or two processors, 3.0 GHz Intel Xeon 5100 Series (Dual Core) • 4 GB of memory • 6 or 8 drives, RAID 1+0

Now let's look at a few things that AREN'T supported

DMZ The BlackBerry® Enterprise Server and BlackBerry Enterprise Server components, with the exception of the BlackBerry Router, do not support installation in a DMZ.
This was always true for Exchange due to the port mappings required but now it's documented as unsupported for Domino explicitly

Email application The BlackBerry Enterprise Server and BlackBerry Enterprise Server components do not support the installation of email applications on the same computer.  
So for all those SMBs who were using their Domino server for both mail and BES, you're out of luck.

IBM® DB2® UDB The BlackBerry Enterprise Server version 5.0 and BlackBerry Enterprise Server components do not support IBM DB2 UDB. Support for IBM DB2 UDB is planned for a future release.

BlackBerry database notification system The BlackBerry database notification system does not support installation on a computer that runs Windows Server® 2008.
Since you can now install each of the Blackberry server components on different boxes you can install the majority of the Blackberry services on Windows 2008, just not the notification system.

Onto the install which was reasonably painless however once installed you'll find there is longer a Blackberry Manager tool instead they have replaced it with a particularly ugly and clunky browser tool. No I misspeak.  They have replaced it with 4 ugly and clunky browser tools (see screenshot below)

 

Now I understand wanting to move to a browser management interface, easier to use from more client platforms in theory.  Sadly this one is only supported by IE6 with Javascript enabled.  Fantastic for those of us on a Mac. I can only hope they are going to extend the supported browser clients to Firefox at least in the near future.   So I upgrade to BES 5.0 and all looks fine.  No errors.  All services started.  I can login via my IE6 web browser through my Windows VM (I'm going to keep finding that annoying) - but no mail.  I can see the mail attempting to route but it doesn't send to RIM.  Usually that's the fault of the Blackberry Dispatcher service not running but that looks fine.  So I check the connectivity to RIM although nothing has changed on the server since 4.1.6 and sure enough bbsrptest to both srp.eu.blackberry.net and srp.uk.blackberry.net work fine.  

Now I'm stuck

So I start looking around at the event log and in the Admin client.  In the event log I can see failures from the dispatcher saying "cannot connect to localhost on 127.0.0.1".  Weird.  So I start looking for anywhere that references localhost because in my installs I never use that as a setting anywhere.  Eventually I find this buried menu item (clear as a bell)



and under that a page that said "localhost" under srp address. Where it got that from I have no idea and why it decided to use that as a srp address I can't imagine but I corrected it as shown below and the Dispatcher was happy again.  Mail was now flowing and I could breathe once more.



So I now had a BES server upgraded to 5.0 that appeared to work.  Onto the clients!

Client Desktop Manager
RIM have replaced the Desktop Manager install with a new - you guessed it - web based desktop manager.  Now I quite like this as installing DM on client machines is a pain.  The new client interface allows the admin to let the user do their own backups, set their own activation passwords and even resend themselves service books as well as control their filters, multiple address books for syncing and email redirection settings.  It's a very nice interface to be honest, my only issue is that to login to it you have 3 options

1. Create each user a BB account (name and login) in the BES Admin interface under their name
2. Use LDAP to authenticate against Active Directory although this seems more appropriate for an Exchange environment since in most Domino environments the name mapping from AD to Domino name doesn't exist
3. Turn on DIIOP on the BES or another Domino server and use that to authenticate each user into their BB account using their Domino name and HTTP password

For some reason on 2 of the accounts which worked beautifully on the same server for pure Domino login, the DIIOP login refused to work and I had to create Blackberry login accounts in the web administration client for each of them.  That needs some testing.

So it's a start.  I"m not impressed with the admin interface or the fact that it's IE6 only.  I'm concerned on the reliability of DIIOP for the logins and I'd like the AD option to not even be there in a Domino environment so user's aren't 'tempted to click it.  BUT I'm very excited by the screenshot below which brings us DR on the Blackberry for the first time.  More reading and experimentation to come but I"m keeping customers well away for the time being.

• Comments [8]

Tricking SSO With Mixed Domino Servers

Gabriella Davis  June 11 2009 12:28:20 PM

My biggest problem with configuring SSO on Domino is the requirement that all Domino servers involved use the same method for web configuration.  That means that they all need to be set to use Internet Site documents, or all set not to (to use pre v6 web configuration).  This is exacerbated by the fact that Sametime and Quickr servers often can't use Internet Site documents and those are precisely the servers you want to include in your SSO setup.  However last night I was talking to Paul Mooney on Skype and we were both complaining about it for the umpteenth time when I suggested we test a hack I had been mulling over and hadn't got round to trying yet.  

The key is the SSO document which specifies the "Configuration Name" you use in the Server document or for your Internet Site.  The same document is used by both types of server configuration, but depending upon which type you chose, the server appears to look in either the Web Configuration view or the Internet Sites view for the list of SSO configurations it can use.  The only thing that makes an SSO document appear in one view vs the other is the presence or absence of an 'organization'.  If there's no organization listed the SSO document appears in the Web Configuration view and is used by Domino server set to use pre v6 Web Configuration.  If there's an organization then the SSO document appears in the Internet Sites view for use by servers set to use Internet Site documents (see below for what I mean)



So if you have 10 servers and 2 of them don't use Internet Site documents do the following

1. Create your SSO document for your internet site and domain and enter your Organization.  Add all 10 servers to the document and save it
2. Now copy and paste that document in names.nsf and edit the new copy to remove the Organization name and save it again with all 10 servers still there
   

That's it. Now essentially the same document appears in both views and can be used by both types of servers.  Paul tested it last night and confirmed it worked for him.  I'm sure there's an unexpected side effect somewhere but as of right now i'm classifying it as 'hack that does the job' :-)

• Comments [4]

Nasty Nasty BES MP5 Bug

Gabriella Davis  June 5 2009 01:45:45 PM

Thanks to Phil Dawson in Perth who put me onto this unpleasant bug from RIM for 4.1.6 Maintenance Release 5 which was new out at the end of April.  Basically if you attempt to move users from one BES to another with MR5 installed it may or may not work (with 10 people tested, 5 worked, 5 stopped working until they were moved back).  The servers in this case were 4.1.6 servers but the same applies to 5.0 servers.

RIM have acknowledged the problem which is Domino only and is planned for fix in MR6 later this year! (but there's a private hotfix you should be able to get hold of now)

"SDR 314322 In BlackBerry Enterprise Server version 4.1 SP5, if you upgrade some BlackBerry Enterprise Server instances to BlackBerry Enterprise Server version 5.0, you cannot move user accounts from BlackBerry Enterprise Server version 5.0 to BlackBerry Enterprise Server version 4.1 SP6 MR5"

• Comments [0]

Server Load Pains

Gabriella Davis  June 1 2009 04:21:18 PM

This a long long post but I think if you're working with Server Load or planning to you might get something from it...

I was doing some work recently assessing server load on new hardware.  This was actually the first time I've worked with the 8.5 Server.Load tools although I had worked with earlier ones.  For those of you that haven't worked with it, the Server Load utility runs on a client machine and uses scripts to simulate various user activity against a server, allowing you to gauge if the servers you are intending to use are fit for purpose.  The technology is pretty cool and inherits much from previous NotesBench tools.

For this exercise I had 2 brand new servers which were going to be clustered together to handle Notes mail load for 2000 users, evenly balanced across both servers.  Since the Server Load documentation states that a single client can only handle up to 1500 separate threads (each one emulating a user activity) I configured 3 separate client machines and a 4th machine for rolling up the data as it was generated by the other three.

The first step, running the agent to create person documents for each user in the empty directory, went fine.  I now had a directory with 2000 person documents in it.  What I didn't have was any mail files or configuration in the person documents for them.  That should be easy. The Server Load comes with 'initialisation scripts' that create mail files for each user and modify the person documents accordingly.  There is both an initialisation script for Notes 8 and one for a Cluster environment, that will create the mail file and its cluster mate on the secondary server.  Since we are testing a cluster that's what I decided to use.  

Client 1 was set up for 650 threads on Server 1
Client 2 for 650 on Server 1
Client 3 for 700 on Server 2

What I should have ended up with was 1300 person documents pointing to mail files on Server 1 and 700 person documents pointing to mail files on Server 2.  In addition I should have had 1300 mail files on Server 1 and 700 stubs replicating from Server 2 and vice versa on Server 2.  

The first thing I did was run a small test for 10 users on each Client and that's when I discovered that although the Cluster Initialisation script does create a mail file replica on the secondary server, it sets the ACL of the mail file it creates to just the primary server and the user name (regardless of the ACL in the template) so the cluster replicas can't replicate, they have no access at all to the source databases!.  At this point yes I could use Full Access Administration to modify the ACLs of the original databases as they are created but that defeated the purpose of what I was trying to do so instead I reverted to using the N8 Initialisation scripts to create the mail files on the primary server only and planned to replicate those to the secondary server when the scripts were finished.  After all I wasn't testing the effective of the scripts, they were just a means to an end.

Now we get to the 2nd reason for not using the cluster script, the options for configuring the N8 Initialisation scripts are much more extensive than those for the Cluster Initialisation scripts.  The Cluster scripts only allow you to choose the number of messages you want and their size, the N8 scripts allow you to configure % of Calendar appointments, % with attachments etc.  Much more useful for building mail files we are going to test against.

So off I go to start the 3 clients running the N8 scripts and all appears fine.  For an hour or so.  Then Server Load just disappears.  Poof. Gone.  No error.  No NSD.  Nothing.  Poof!  On all 3 clients at about the same time.    I try again and again and again.  Each time the same result.  Eventually I find a paper published in Feb 2009 by IBM and written by Maureen P Gerlofs and Jim Powers that says on Page 21  "NOTE: You should not issue this test for more than 300 users at a time;"   - Good to know, although not so much of a 'note in italics' as a 'requirement' and not one that appears in the Domino Admin help.  So the lesson here is that despite the documentation saying 1500 threads by client, if you're running initialisation scripts that's actually 300.  I then tried running the scripts multiple times in batches of 300 threads each time and hey presto! it worked.  

After all of that the actual user emulation scripts (N8 mail in this case) worked like a charm, running 650 threads each on all 3 clients and together with the nmon tool (which is documented in the white paper but not in the Domino Admin help) gave same great data.  In short I recommend Server Load highly, I just recommend you give the Domino Admin help a miss and use this white paper instead :-)

Now to open some PMRs......

• Comments [2]

Apple want you to change your clothes and stop dragging your feet!

Gabriella Davis  May 20 2009 01:29:29 PM

In a support technote on Apple's website they report on the problem of users getting static shocks from their earbuds.  Apparently if a static charge builds up on your iPod or iPhone and you then plug in the earbuds you can get shocked.  The technote contains great advice for minimising that risk including:

• Try wearing different clothes. Try clothes with natural fibers since synthetic fibers are more likely to hold a static charge.
• Try raising the moisture level in the air of the local environment by using a portable humidifier or adjusting the humidity control on your air conditioner.
• Avoid removing your device from your pockets frequently as rubbing the device on certain materials can cause a static build up.

So that's no wearing cheap clothes and absolutely no needlessly rubbing your iPod on 'certain materials'.  OK they don't mention dragging your feet but you know who you are and what you're doing!

A full list of preventative measures here

• Comments [2]

Turtle and Bluewave Partnering - Bigger and Better!

Gabriella Davis  April 28 2009 12:52:35 PM

I'm delighted to announce that, after working together informally on various projects, Turtle and Bluewave / BE Systems are now partnering together to bring you more people and a wider range of skills and services.

Not least, this means that I can look forward to working more with Paul, Warren and their entire team of tiny technical wizards and we can now bring you over 40 people with skills in support, administration and development on Lotus, Rational, DB2, Tivoli, Commonstore (yes Warren I said it) and Websphere products .  

News on our website here: (extract below)

Bluewave Group and Turtle Partnership Ltd partner to bring extended services, size and skills to a wider range of customers.

The Turtle Partnership (www.turtlepartnership.com) and the Bluewave Group (www.bluewave.ie, www.besystems.eu) have been cooperating in the marketplace for many years, offering services in the high-skill infrastructure and solution development range across the IBM, BlackBerry and Microsoft product brands. Following on from these successful joint endeavours, and in order to formalize this relationship, we are very pleased to announce that The Turtle Partnership has become a member of the Bluewave group partnering programme.

This new organisation has an unique depth of skills in Development, Support and Administration; "The addition of the Turtle Partnership to the Bluewave programme was a natural fit, and will have a very positive impact on our customer offerings" said Harry Dunne of Bluewave Group. Mike Smith of the Turtle Partnership added that "The combination of services, help desk operations, technical skill and personalities between the two companies allows both entities to seamlessly enhance their range and depth".

The Turtle Partnership has been in operation for 13 years offering Strategy, Support, Administration and Development skills around Lotus Collaborative software, focusing on the Domino, Sametime and Quickr product ranges. Turtle's customers range from small organisations to major corporates.  Turtle currently provide support for hundreds of servers in companies worldwide, with 40% of their customers in the US and 60% in Europe.  As administrators, Turtle provide hosting, design and management services for Lotus products as well as coexistence and integration expertise for Exchange, Groupwise and Sharepoint.  As Developers they provide high-end Notes, Web 2.0, Blackberry and iPhone development skills.

The Bluewave group has been in operation for 10 years offering a complete range of Domino and Websphere related services.  Bluewave's traditional market has mainly been the UK & Ireland, but increasingly clients are availing of Bluewave skills from the far east and mainland Europe.  In December 2007, Bluewave acquired UK based IBM Business Partner BE Systems further strengthening the group as a leading IBM Collaborative software partner.  Consultants from the Bluewave group regularly are invited to speak at industry events covering topics ranging from advanced Domino infrastructure topics to mobile development and best practice.

• Comments [8]

Where’s Gab?

Gabriella Davis  April 27 2009 03:13:56 PM

I've been quiet here for a while (I'm sure no-one other than my mother noticed!) but that's been due to the amount of travel I've been doing, it seems that it's only when I'm in the office I can gather my thoughts and decide what to blog about.  Need to work on that more.

Last week I was invited to present at Dannotes the Danish Lotus User group in Denmark.  It was a great conference with a bigger turnout than I was expecting from a user group and I did presentations on ID Vault, DCT and Websphere.  Unfortunately my presentation was in English and although everyone there had extremely good English, I felt the usual shame of a person with only one language talking to a multi lingual audience.   It did make me decide that next time I present in country where the first language isn't English, I will arrange to get my slides at least translated into the local language and present with those.  Do you think that would be valuable ?

This week I'm again on a tour of England ! Tomorrow I'm manning the UKLUG stand at LCTY in Manchester, and on Thursday in London.  Feel free to stop by and ask me questions about UKLUG (to which the answer may well be "we haven't decided yet!") and anything else.  On Wednesday I'm in Lewes and Friday in London again.  Next week though is shaping up to have some time in the office so expect to see more blogging from me then.

• Comments [1]

Ada Lovelace Day

Gabriella Davis  March 24 2009 08:20:36 PM

Today is Ada Lovelace day and in celebration of one of the world's first computer programmer I had signed a pledge to blog today about a woman in the field of technology who inspired me.  So I'd like to celebrate the work and commitment of the amazing women who were stationed at Bletchley Park during WWII and worked on the codebreaking machines as operators, morse code readers and transcribers working in isolation from each other with technology they hadn't been educated to use, didn't understand and couldn't talk about.

Extracted from the website of the British Computing Society and their research into Women at Bletchley Park including audio and video recordings
Read more about their incredible work here:  http://www.bcs.org/server.php?show=nav.9960

Civilians, WRNS, WAAFS and ATS provided the skills, expertise and person power to intercept, decode, translate and understand the meaning of messages being sent between German field officers and command. The contribution of several thousand women was central to this effort.   The atmosphere of secrecy was maintained through several measures. Women were recruited after observation in basic training for 'jobs they wouldn't be allowed to speak about'. New recruits were sent a long way from home for training.   When they were sent to Bletchley they might be collected from the station in a Black Maria. They signed the official secrets act and were reminded daily never ever to speak of who they were or what they did. Security was tight, at the gate, in the huts and access was controlled across the park.

Oliver Lawn says that '... the compartmentalisation of knowledge was particular to Bletchley Park and they [the workers] knew nothing about what anyone else did'.

WRNS were the first operators, with nearly 2000 being employed by the end of the war. At the end of the war the WRNS worked with the engineers to dismantle and discard every last piece of the machines to protect the secret. Stories circulate of the last set of blue prints being hidden inside a machine and being bricked up... somewhere. But it has never been found.

• Comments [0]