Parameter:
NSF_VerifyNoteSignaturesSummary: Forces signature verification of design elements when an NSF is opened, protecting against tampered databases.
Profile
Parameter | NSF_VerifyNoteSignatures |
Category | Security / TLS |
Component | Server |
Available since | 9.0.1 |
Supported versions | 9.0.1, 10.0, 11.0, 12.0, 14.0, 14.5, 14.5.1 |
GUI equivalent | notes.ini only (no GUI) |
Possible values | 0 = off (default), 1 = on |
Description
NSF_VerifyNoteSignatures enables an additional signature check whenever an NSF is opened. With it, Domino verifies that design elements (agents, forms, views, script libraries) were actually signed by a trusted ID before they are loaded or executed. The parameter is an important defence against tampered designs or designs injected via Replace Design.Example configuration
NSF_VerifyNoteSignatures=1
Notes & pitfalls
- Maintain together with the server sections “Sign or run unrestricted methods and operations” and “Run restricted LotusScript/Java agents”.
- Before enabling, re-sign all relevant NSFs – unsigned designs or designs signed with lost IDs will stop working.
- Adds CPU overhead per database open; in practice negligible compared to the security gain.
- Takes effect after a server restart.
- Recommended for compliance/audit environments and any server hosting third-party databases (Hosted Domino).