fighting for truth, justice, and a kick-butt lotus notes experience.

Traveler 11 and ActiveSync 16.1 - What to expect after upgrade with iOS devices using Apple native apps

 12 Februar 2020 09:21:33
After some discussions with the HCL Traveler team regarding seen issues after upgrading to Traveler 11 with iOS devices using the Apple native mail app, HCL published an detailed article.

The article describes, what happens in the background on the device, when the Traveler 11 Server is started after the update and from then on uses version 16.1 for iOS devices instead of the previous ActiveSync 14 version.


This article applies to devices syncing with the iOS Mail, Calendar, and Contacts apps only. The HCL Verse app on iOS is not affected by this change.

Sync changes in Traveler 11

Traveler 11.0.0 enables support for Microsoft Exchange ActiveSync (EAS) 16.1, the latest version of the protocol used to sync data to the Apple iOS Mail, Calendar, and Contacts apps. All supported versions of iOS already support EAS 16.1, so iOS devices will automatically use it after sending an HTTP Options request to get the protocol versions from the server. In order for an existing profile to switch to EAS 16.1, the device must then send an EAS Settings request to the server. Devices send these requests periodically already, but there is no way to know when exactly it will happen - sometimes only minutes after the server is upgraded, but it can be days later. We found that restarting the device usually causes the app to send the needed requests, making that a more reliable path of trying to get an existing account to upgrade to the new protocol version.

Known upgrade scenarios

1. Immediate or eventual upgrade of Mail, Calendar, and Contacts:

The device will continue to use the previous version of the protocol (14.1) until eventually sending Options and Settings requests. Once the device receives the server response, it removes calendar and contacts data from the device storage and performs a folder sync, followed by resyncing of calendar and contacts to repopulate the data. In this scenario, mail does not get resynced to the device but begins syncing with EAS 16.1 at the same time as the other data types.

We have identified an issue affecting Traveler environments using Derby with users that have many folders (>500). These users may not be able to complete a folder sync due to the device restarting the sync before the sync is finished. If this problem occurs during upgrade to EAS 16.1, the user will be missing calendar and contacts data on the device, as well as any new mail changes since the folder sync started. This problem is not specific to Traveler
11 or EAS 16.1, but is noticeable due to the upgrade to 16.1 triggering the folder sync. This issue will be fixed in Traveler 11.0.1 and a hotfix can be requested by opening a support ticket and referencing issue TRAV-4307.

2. Immediate or eventual upgrade of Mail only, resulting in a partial upgrade scenario:

We have seen cases where the device sends the Options request but only uses the new protocol level for mail. No data types resync in this case, and the device will later upgrade to 16.1 after sending a Settings request (see
scenario 1).

3. Restarting the device to trigger an upgrade of Mail, Calendar, and Contacts:

Instead of waiting for the device to send the Options and Settings requests, a restart usually triggers them instead. This scenario is the same result as scenario 1, but the timing is immediately after the device is restarted.

4. Immediate or eventual upgrade causing Mail to resync:

In some cases, we have had reports of a user's mail resyncing to their device upon upgrade to EAS 16.1. It is not known yet what causes the device to request a resync of mail (in addition to calendar and contacts).

Once a device begins using the new protocol version, the user cannot sync with a Traveler server that does not support EAS 16.1 (such as Traveler 10.0.1).

Support of the new protocol level can be disabled on the server by adding NTS_AS_PROTOCOL_VERSIONS=2.5,12.0,12.1,14.0,14.1 to each Traveler server's notes.ini file. Devices which have already upgraded to using the new protocol may be left unable to sync until they are reconfigured or reset by an administrator. Disabling support of EAS 16.1 is not recommended for the following reasons:

        •        Some device-side problems have been fixed by Apple for EAS 16.1 only.
        •        Apple may not provide support for problems experienced using a device syncing with EAS 14.1.
        •        Current features such as drafts sync and viewing attachments on calendar entries are only available for devices syncing with EAS 16.1.
        •        Other features planned for future Traveler releases will only be available for devices syncing with EAS 16.1.


If you receive a report of one or more devices that are not upgrading as expected, avoid downgrading Traveler to a previous version or issuing a reset for all devices. Problems occurring during this upgrade scenario are not usually resolved by resyncing the data, and the reset adds unnecessary transactions to both the server load and the logs that support may need to review.

 Troubleshooting steps:

        1        Ask the user to turn the affected device off and back on again.
        2        If step 1 does not resolve the issue, ask the user to soft reset the device (see
        3        If step 2 still does not resolve the issue, ask the user to toggle Calendar and Contacts off and back on from their Traveler account under Passwords & Accounts in the Settings app.
        4        If the issue is still occurring, add the user to the finest level logging list by issuing the tell traveler log adduser finest <User Name> command to the Traveler server.
        5        Open a case with our support teams.
        6        Remove the user from finest logging after the issue is resolved with the tell traveler log removeuser <User Name> command.



Traveler 11 HTTP-2 Push changes in detail - Review before updating

 5 Februar 2020 10:06:24
During the first HCL Traveler 11 updates, Daniel Nashed and I stumbled upon a possible problem, that Apple APNS notifications no longer work after the Traveler 11 update.

To cut a long story short: BEFORE updating, check your firewall rules / forward proxy configurations for OUTGOING connections.

Daniel and I have both posted a joint blog post here - both on his and mine blog:

Beginning with Traveler 11 the new push API is used -- >
This is the new recommended push service from Apple which every service should use.
The older API will be available until November 2020!

There is no change needed to change to the new API and Traveler uses the new push API by default.

But your infrastructure also needs to be ready for this change!

If you want to disable the new API and have to go back to the "legacy API", because you can't change your infrastructure right now, there is just one notes.ini parameter that you need to set:


But you should only use this as a very temporary solution and switch to the new push API as soon as you can.

The statement in release documentation is quite short and doesn't go into the details of what this might mean for your environment. Let me explain the changes in detail:

New Protocol HTTP/2

If you are behind a proxy, you have to check if your proxy supports the  HTTP/2 protocol!  You might run into connectivity issues.

Port change from 2197 to 443

The new port used is the standard HTTPS port 443 instead of  the APNS "legacy" port 2197.

You have to check your firewall if the port is open! Usually network admins are more happy with the standard port 443 but it might not be open in your environment by default!

The new HTTP/2 Push services is also available on port 2197 on the new servers to allow a more smooth migration.

There are NTS parameters you could use to change the default port 443 to the old legacy port if you really need to.

There are specific settings for each different push service and they look like this:


If you don't set the parameter explicitly the NTS_PUSH_APNS_HTTP2 will take care of changing the port to 443 for all push Apple services.

So this is more a work-around which you should only use for example if it takes time to change your firewall.

Change from to

Also the target servers have changed. Before Apple used and switched to
Usually there isn't any change needed in your infrastructure. I checked which servers are currently behind the DNS entries and they are coming from the same netblock at Apple (see references below).


You really have to check your environment to see if you are prepared for new APNS HTTP/2 API.

Not having the right prerequisites isn't a reason to not update to Traveler 11. You could use the legacy API for a couple of weeks or some of the settings above might help you to get it working for your environment.

If your environment uses APNS Push, you have to migrate your environment to Traveler 11
before November 2020!


Developer Information for APNS

Current DNS Settings



Whois Extract for Apple Net-Block

NetRange: -
NetName:        APPLE-WWNET
Organization:   Apple Inc. (APPLEC-1-Z)

Bye-Bye IBM iKeyman - welcome Java keytool

 16 Januar 2020 13:14:04
It seems that HCL has removed the old IBM iKeyman tool from the Notes Domino 11 installation packages.

iKeyman can be used to make changes in Java Keystore files. For example to add a trusted root certificate to the cacerts.

For HCL it makes sense to remove the IBM legacy files and tools. With the installed JVM, the standard Java keytool is installed, which can also be used to edit the keystore files.

The keytool is located in the Domino program directory in the subfolder JVM/BIN. It is available for Linux and Windows.

Here is an example to add another Trusted Root CA - here a DigiCertGlobalRoot - to the cacerts file with the keytool:

/opt/ibm/domino/notes/latest/linux/jvm/bin/keytool -import -trustcacerts -keystore /opt/ibm/domino/notes/latest/linux/jvm/lib/security/cacerts -storepass changeit -alias DigiCertGlobalRootG2 -import -file /tmp/DigiCertGlobalRootG2.pem

For the keytool syntax and more examples, check out:

Issue with HCL Verse for Android and Traveler 11

 14 Januar 2020 09:43:10
If you are planing to upgrade to HCL Traveler 11 and you are using Android devices:

Please wait until an updated app of HCL Verse for Android will be available via Google Play Store. It's planned to be released tomorrow Wed Jan 15th.

A question was asked on the HCL support forum ( ) because after upgrading Traveler to V11 just calendar entries have not been synced to Android devices.
The cause has been located and will be fixed like mentioned as answer:

We have determined the cause of this issue and have a fix for it in the HCL Verse Android Google Play Store beta slot. We are beginning the production deployment of the fix via the Google PlayStore at this time which should complete by Wed Jan 15th. This issue can affect Verse Android client apps with versions from 10.0.11->10.0.13 and is fixed in the 11.0.0 version (202001092238) of the app.

If a single user is experiencing this issue, the simplest solution is to have them open the Verse App on their device and click the overflow menu in the upper right hand corner of the UI and select Tools->Replace Data and select “Mail and Calendar”. Once the Replace Data is complete, the issue will be resolved. For larger sets of users the suggestion above using “traveler reset” can be used.

via Rainer Brandl

HCL Traveler 11 available incl. New Features

 30 Dezember 2019 11:56:37
Just before christmas HCL released Traveler 11.0.0 (Build 201912061918_30).

Traveler is a feature release that includes new features and bug fixes for the Traveler server.

Traveler can be used to install a new Traveler environment or update an existing Traveler environment running Domino 9.0.1.x, Domino 10.0.x, or Domino 11.0.x without requiring a Domino upgrade

(Although it is always recommended to keep Domino at the latest level.)

Database Schema

Traveler does include a database schema update.

New Features

Support for Microsoft Exchange ActiveSync 16.x

Traveler now supports Microsoft™ Exchange ActiveSync versions 16.0 and 16.1 on Apple iOS and iPadOS devices.

This change allows for the development of features that require this version, such as the ability to sync calendar attachments.

The device controls when the devices ask the Traveler server for the supported versions and which version the device uses.
The device periodically checks and upgrades to the latest version that the device supports without user intervention.

Draft mail messages synchronized with server

Apple iOS devices now support the syncing of draft messages.

As part of Exchange ActiveSync 16.X, which Traveler now supports, the draft messages sync from the server to the device and from the device to the server.

Support for non-repeating Calendar events greater than 24 hours in duration

Traveler supported mobile clients can now create and modify non-repeating meetings and appointments that are longer than 24 hours and shorter than 6 months.

View attachments in Calendar events

When your calendar has an event that includes attachments in the event description, you can now download and open the attachments on your mobile device if your device's calendar app supports the capability.  Note that attaching or removing attachments using the device's calendar app is not supported.

Support for APNS HTTP/2

Traveler now supports HTTP/2 for communication with Apple's Apple Push Notification Service (APNS) servers.
No configuration changes are required and there is no change in behavior.  HTTP/2 support requires a minimum of Domino 9.0.1, FP8.

Fix List

Encoded addresses modified by the device causes delivery failure reports

Address encoding for Microsoft Exchange ActiveSync devices was using a format that was case sensitive, so any devices that lower case the internet address were corrupting the encoded address making it decode to incorrect addresses and cause a delivery failure report.
Traveler now utilizes a format that is not case sensitive so that it does not matter if the device changes the case because they will decode correctly when used to send mails.

Verse for iOS on Apple iOS 13 and iPadOS 13 background push messages are not causing syncs

Apple changed the push message requirements for background notifications in iOS 13 and iPadOS13. Those requirements cannot be satisfied using the legacy APNS interface that Traveler was utilizing. Traveler now uses the latest, HTTP/2 APNS interface which allows these push message requirements to be satisfied for the Verse for iOS application to receive the push messages to drive the background syncs.  Requires a minimum of Domino 9.0.1 fp8 to utilize the new HTTP/2 support.

Local replicas on the Traveler server not found

Traveler searches for local replicas on the Traveler servers for the user's mail database using the replica ID. In some cases, Traveler was not configured or able to find the replica ID on the user's primary mail server preventing Traveler from finding the local replica. Depending on whether or not a local replica was required, this could prevent syncing.

HA status shows server unreachable when servers have multiple IP addresses

If a Traveler server has multiple IP addresses, it reports its NTS_HOST_IP_ADDR as the one to which its HA peers should connect. However, connect requests coming from that Traveler server will originate from its lowest-numbered IP address, and the HA peers will reject those connect requests if they originate from the wrong IP address. So, if NTS_HOST_IP_ADDR is not set to the lowest-numbered IP address, HA status shows server unreachable. The fix causes Traveler to bind to its NTS_HOST_IP_ADDR before attempting to connect to its HA peers, so its connect requests originate from the expected IP address.  

An email has two attachments with the same name, but only one syncs to the dev

An email attachment was treated as a duplicate of another attachment on the same email because their names were the same, even though their sizes were different.


When upgrading Domino major versions, for example from 9.0.1 to 10.0.x or 10.0.1.x to 11.0.0.x, it is always required to run the Traveler installer after the Domino upgrade even if not changing Traveler versions to ensure the Traveler binaries match the Domino level.

Upgrades in an HA pool

Traveler 11.0 enables support for Exchange ActiveSync 16.1 by default upon install/upgrade.  When upgrading a high availability pool of servers, the upgrade should be performed on all servers in quick succession.  Running in a mixed environment (different server levels, different Exchange ActiveSync levels) for long periods of time should be avoided.

For Linux Users: Silent install when upgrading Traveler on a pre-11.0 Domino server

The used with the silent install process defaults the install location to the new default location for Domino 11.0 (ex:  /opt/hcl/ on Linux and AIX).  If Domino is installed in a different location, the will need to be updated to point to that location.


Optimized Notes App Design for the iPhone

 16 Dezember 2019 11:33:51
Since version 1.0.5 of HCL Nomad (formerly IBM Domino Mobile Apps) existing classic Notes applications can now be used on the iPhone. The previous version only supported the iPad.

Due to the form factor of the iPad, Notes applications were generally usable without major design adjustments and looked and operated exactly the same as on a Windows or Mac Notes Basic clients.

For the iPhone, due to the smaller display, classic Notes applications can also be used without design adjustments, but in practice these will be difficult to use.  Therefore, it makes sense to take a look at your existing applications to see to what extent they can be used out-of-the-box or which can be adapted with little effort especially for use on the iPad and especially the iPhone.

The first demos, ideas or approaches for how Notes apps for the iPhone can be adapted especially for the iPhone using HCL Nomad are now appearing on the various channels.

For example:

Image:Optimized Notes App Design for the iPhone

Image:Optimized Notes App Design for the iPhone

I have looked at these examples for a long time and have thought and experimented for a longer time, how to build an optimized iPhone navigation and interface for the iPhone with the existing Domino Designer tools.

Here I followed the design recommendations of Apple. Apple has excellent material for this:

Apple WWDC 2014: Design Intuitive User Interfaces

2014 I had the pleasure of following this session live in San Francisco at WWDC  and of talking to the Apple Design Engineers afterwards. Before you start customizing your applications, just watch the video above and think about it.

So what's important?

1. The navigation must be simple.

2. In particular, the navigation must be easy to reach. Ideally for an iPhone app with one hand using your  thumb.

3. Less is more. So focus on the essential, the important. Which function is needed mobile with the iPhone? Do I really need all 30 views or are two or three views enough? The 80 : 20 paradigm helps here.

Now how can this look like?

I took the old Notebook / Journal template and adapted it for the iPhone.

Image:Optimized Notes App Design for the iPhone

The time it takes are only 1 to 2 hours and as a result you get a basic framework, which is also transferable to other applications.

I decided to put the navigation in the footer and insert the three most used views there.
This way the app on the iPhone can be operated easily and uncomplicated with one hand.

Image:Optimized Notes App Design for the iPhone Image:Optimized Notes App Design for the iPhone

The ... button offers more views. With the + button a new journal entry can be created.
Actions for a view entry (delete, copy, ...) can be selected via a swipe gesture to the left.

I will explain how I did this in a few separate blog posts over the next few weeks. Here is just the idea and how it can look like.
It is not magic - only a custom frame, a page, page actions and four images ressources. So stay tuned and I would be pleased about feedback in any case.

By the way DNUG will host a webcast regarding this topic on January 21st:

Using the Apple Mail App on iOS -you should upgrade to iOS 13.3

 11 Dezember 2019 09:13:46
Yesterday Apple released another update for iOS.

Image:Using the Apple Mail App on iOS -you should upgrade to iOS 13.3

This new version 13.3 finally fixes a problem with the display of mails in the Sent folder of the integrated Apple Mail App. The bug was introduced with 13.0.

HCL had already published a technote for this:

1) Duplicate Sent folder entries
As of iOS/iPadOS 13.0, Apple devices add an entry to the Sent folder for any emails sent from the Mail app. When the Sent folder is synced, the server entry is added and the device does not remove the original, resulting in a duplicate. HCL development has opened an Apple bug for this issue (FB7337231).

Based on the Apple Release Notes this should now be fixed:

This update also includes bug fixes and other improvements. This update:

        •        Fixes issues in Mail that may prevent downloading new messages
        •        Resolves issues that could cause incorrect characters to display in messages and duplication of sent messages in Exchange accounts

Therefore it would be useful to update the existing devices from 13.x to 13.3.

Note: On 20.12. a new Traveler Release v11.0 is expected. Traveler 11 supports Domino 9.0.1 / 10.0.1 / 11.0, so you don't have to update directly to Domino 11.  This brings with it an upgrade to ActvieSync 16, whereby attachments in calendar entries can now also be transferred.

Einfach mal Danke sagen -HCL Master Nominations are open until End of October

 28 Oktober 2019 09:23:37
Diese Auszeichnung ist ein wichtiges und schönes Danke-Schön von HCL, um verdiente Mitglieder der Community auszuzeichnen.

Wir alle profitieren von Blog Posts, Tweets oder Vorträgen. Hierbei muss man bedenken, dass ein Teil der Blogger und auch mancher Referent auf den diversen Veranstaltungen dies freiwillig (meistens in der Freizeit) tut und ihr Wissen so gerne mit Anderen teilt.

Image:Einfach mal Danke sagen -HCL Master Nominations are open until End of October

Nimm dir einfach zwei Minuten Zeit und fülle das Nominierungsformular aus, um sich hierdurch einfach bei einem Mitglied der Community für den Tip oder Blogpost, der im Alltag geholfen hat, zu bedanken.
Jeder durch dich Nominierte wird sich darüber riesig freuen.

Also hier geht es zum Nominierungsformular:

Eine Nominierung ist noch bis zum 31. Oktober 2019 möglich.

Ich habe mich letzte Woche selbst bei drei - vier Personen auf diese Weise bedankt und diese als HCL Master nominiert.

An dieser Stelle nochmals:  Vielen, vielen Dank an diejenigen, die mich die letzten Jahre nominiert haben!

PS: Parallel laufen auch noch IBM Champions Nominierungen. Mit dem Wechsel der Collaboration Produktfamilie zu HCL lege ich persönlichen keinen Wert mehr auf den IBM Champion Status. Von daher - falls mich jemand nominieren möchte, dann würde ich mich über eine HCL Master Nominierung freuen :-)

    New HCL Nomad a.k.a IBM Domino Mobile Apps version 1.0.4 released

     5 Oktober 2019 11:34:57
    With the current update relase v1.0.4 IBM Domino Mobile Apps are know called HCL Nomad.
    Beside the name the logo will change too.

    Image:New HCL Nomad a.k.a IBM Domino Mobile Apps version 1.0.4 released

    There are some cool new features included:

    - Open your personal mail file in Nomad

    - GPS geo location support via LotusScript

    - Preconfiguration of the Nomad app via Mobile Device Management solutions.

    - Integration of panaganda MarvelClient for iOS for FREE!

    Andrew Mandy and Andrew Davis did a great blog post regarding the new features and what's coming next. Hint: HCL Nomad for iPhone and Android tablets

    A detailed description of the new MDM AppConfig settings can be found here:

    FAQ regarding MarvelClient for iOS:

    Christoph Adler from panagenda and myself did together a DNUG hosted webcast this week regarding "What's New in HCL Nomad"

    DNUG-Webcast-WhatsNew-IBMDominoMobileApps_HCL Nomad_2019-10-02

    (Sorry guys the slides are in German)

    Combining the new MDM preconfiguration settings pushed to the app via your existing Mobile Device Management solution  and the power of MarvelClient, you will have an unintended zerro touch rollout and full control of your existing Nomad clients.

    Thank you so much HCL and panagenda for the integration of MarvelClient into Nomad! Well done!

    Known issues regarding Traveler and iOS 13

     3 Oktober 2019 16:24:35
    Today HCL published a Knowledge Base articel, regarding known Traveler and iOS 13 issues.

    The following issues have been identified when running the Apple built-in apps for mail and calendar with a Traveler Server:

    1) Duplicate Sent folder entries


    As of iOS/iPadOS 13.0, Apple devices add an entry to the Sent folder for any emails sent from the Mail app. When the Sent folder is synced, the server entry is added and the device does not remove the original, resulting in a duplicate. HCL development has opened an Apple bug for this issue (FB7337231).


    No workaround is available

    2) Accepting a meeting invitation from the iOS device does not send the response to the server


    If ghosting is disabled on the Traveler server, responding to a calendar notice from an iOS 13 device does not send the response. The meeting accept is reflected on the app but not in the user's notes calendar.   iOS 13.0 and 13.1 do not send MeetingResponse requests to the Traveler server unless the event is ghosted to the calendar. HCL Development has opened an Apple bug for this issue (FB7328175).


    Ghosting is enabled at the Traveler server by default.  

    Check the Traveler server notes.ini parameters for NTS_CALENDAR_GHOSTING_SYNCML and NTS_IOS_CALENDAR_INITIAL_GHOST.  

    If found, make sure that they are set to true.


    Known bugs with the iOS Mail, Calendar, and Contacts app working with the Traveler server are documented here:

    This information is updated once a fix has been verified in a particular Apple iOS release.


    I hope that will Apple together with HCL will fix it soon.