Parameter:
Admin_AccessShort description: List of Full Access Administrators – people or groups allowed to bypass ACL restrictions during operation.
Profile
Parameter | Admin_Access |
Category | Security / TLS |
Component | Server |
Available since | 9.0.1 |
Supported versions | 9.0.1, 10.0, 11.0, 12.0, 14.0, 14.5, 14.5.1 |
GUI equivalent | Server document (Security → Full Access Administrators) |
Possible values | Comma-separated name list (users, groups, servers) |
Description
Full Access Administrators (FAA) is the strongest permission level in Domino: the identities listed here may open every database without an ACL entry as if they were a Manager, issue console commands, and view hidden design elements – regardless of the database ACL.
By default, FAA is managed via the Server document;
Admin_Access is the underlying notes.ini representation.Example configuration
Admin_Access=DominoAdmins,CN=Manfred Dillmann/O=acme
Notes & pitfalls
- Whoever ends up here sees everything – keep the group as small as possible (ideally only an emergency group).
- Per-session activation is additionally done via
set config FullAdmin=1or the Admin client.
- Enable auditing/logging with
Log_AdminP=1,Console_Log_Enabled=1.
- Complements
Adminand theAllow_Passthru_*family.
- The change takes effect after a server restart.