Chapter 17. Customer care using Sametime 675
17.4.2 Registering a user at Customer Care
To create a new user from the WebSphere Commerce Administration Console.
do the following.
1. Click
Start -> Programs -> IBM WebSphere Commerce -> Adminstrative
Console.
2. Log on as a Site Administrator (for example, wcsadmin).
3. Click
Site.
4. Choose Access Management -> Users.
Creating a new user
To create a new user, do the following:
1. Click
New.
2. Enter all required information on the next three pages and click
Finish.
Assigning the role customer service representative to a user
To assign the role of customer service representative to a user, do the following:
1. Select the new user.
2. Click
Roles.
3. In the role drop-down box, select the customer service representative role.
4. Click
Add.
5. Click OK.
Register a user for Customer Care
To register a user for Customer Care, do the following:
1. Select the user.
2. Click
Register Customer Care.
3. Wait for the confirmation page.
4. Click
OK.
17.5 Security considerations
Since Lotus Sametime is a new component in the WebSphere Commerce
architecture, we strongly recommend that you consider this new component’s
possible security risks for your environment.
676 WebSphere Commerce V5.4 Handbook, Architecture and Integration Guide
Please see Chapter 5, “Security design guidelines” on page 107 for an overview
of this issue.
17.5.1 Change the home page of Lotus Sametime server
Since Lotus Sametime has its own HTTP server and it has to be accessible
through port 80, we suggest that you change the home page of Web server to
redirect the store Web page.
1. Create an HTML page that redirects the browser to the store page as shown
in Example 17-1, and save it in the <sametimehome>/data/domino/html
directory as index.html.
Example 17-1 Redirect example from the Lotus Sametime start page
<head>
<meta http-equiv="refresh" content="0;
URL=http://store.ibm.com/webapp/wcs/stores/mystore/index.jsp">
</head>
2. To change the Lotus Sametime home page do the following:
a. Open the names.nsf database (
http://sametime.ibm.com/names.nsf).
b. Double-click your server.
c. Click
Edit Servers.
d. Click
Internet Protocols.
e. Change Home Url to /index.html.
f. Click
Save changes.
g. Restart Lotus Sametime server.
3. The next time you enter the Lotus Sametime home page, you are redirected
to your store. If you want to access the old home page, type
http://<sametimeserver>/stcenter.nsf.
17.5.2 Restrict access to Lotus Sametime databases
By default most of the databases that come with Lotus Sametime allow
anonymous users to access it. Since Lotus Sametime is open to the Internet,
some of the databases should be restricted.
The following databases should not grant any rights to an anonymous user:
names.nsf (Sametime Directory)
stconf.nsf (Meeting and Conference)
Chapter 17. Customer care using Sametime 677
stconfig.nsf (Configuration of the server)
stcenter.nsf (Homepage of the server)
log.nsf (Sametime log file.)
domlog.nsf (Domino Web Log)
Restrict rights to database
To restrict the rights to a database, do the following:
1. Open a Web browser and enter the following URL:
http://<sametimehostname>/servlet/auth/admin
2. Open Domino Directory > Access Control.
3. This will open an applet. Choose one of the databases listed above.
4. Click
Access.
5. This will open another applet (see Figure 17-7 on page 678). Select
Anonymous.
6. Choose
No Access from the Access box.
7. Deselect all rights.
8. Click
Submit.
9. Repeat steps 3 through 8 for all databases listed above.
Grant no access to default directory
In addition you should also grant no access to the default entry of the Sametime
directory (names.nsf), as follows:
1. Open a Web browser and enter the following URL:
http://<sametimehostname>/servlet/auth/admin
2. Open Domino Directory > Access Control.
3. This will open an applet. Choose
names.nsf database.
4. Click
Access.
5. This will open another applet. Select
-Default-.
6. Choose
No Access from the Access box.
7. Deselect all rights.
8. Click
Submit.
Note: We have seen a problem with Internet Explorer and the access control
applet. If you do not see any databases in the applet, use a different browser.
Get WebSphere Commerce V5.4 Handbook: Architecture and Integration Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
