KeyFileName_Pwd – stores encrypted server ID password for unattended start

🛠️

Parameter: KeyFileName_Pwd

Short description: Stores the password of the server ID file encrypted in notes.ini – enables an unattended server start.

Profile

Parameter	`KeyFileName_Pwd`
Category	Security / TLS
Component	Server
Available since	9.0.1
Supported versions	9.0.1, 10.0, 11.0, 12.0, 14.0, 14.5, 14.5.1
GUI equivalent	notes.ini only (no GUI)
Possible values	Encrypted string (generated by the Server Password Tool / `nserverpw`)

Description

So that a Domino server can start after a reboot without console input, the server ID password can be stored. KeyFileName_Pwd contains the server ID password encrypted by the Domino Server Password Tool (nserverpw / serverpasswordtool). At startup, the server decrypts this value internally and unlocks the ID file with it – a classic trade-off between availability (restart without an operator) and security (the password is on the host).

Example configuration


KeyFileName_Pwd=01A2B3C4D5...

Notes & pitfalls

Never edit manually – generate the value exclusively via the Server Password Tool.

Restrict the notes.ini file strictly to the Domino service account (read / write permissions).

Anyone with file access to notes.ini and the ID file can take over the server identity – additionally protect with OS-level encryption if needed.

If the ID password changes, the value must be regenerated.