What determines whether application access is authenticated?
A. For authentication to take place, the user needs to be uniquely identified to Lotus Domino server software. Typically a user has a person document in the Lotus Domino Directory, but not always. If the server receives and accepts information tied to a unique individual, that is authentication. The authentication mechanism that defines the user’s identity can be the Lotus Notes ID, the Lotus Domino HTTP password, a SmartCard, or any other third party authentication source. For example, using DIIOP technology, an application can retrieve data from Lotus Domino without any Lotus Notes or browser client; but if the information is specific to a user, a CAL is still required. If, in any way, the user is distinguished from anonymous access, the user requires a CAL to use the Lotus Domino application – except for Web browser access to Lotus Domino Utility Server or Lotus Domino Utility Server Express.
