Before we get SecurityInsider configured, here is what SecurityInsider needs from a technical perspective:

  1. For using the SecurityInsider Database:
    An IBM Lotus Notes Standard (Eclipse) client Release 8.5.2 or higher
  2. For performing a SecurityInsider Scan:
    An IBM Lotus Notes client Release 8.5 or higher
    IBM Lotus Domino servers Release 8.5 or higher
    Servers that are scanned remotely can be of any Notes/Domino Release from 4.x and up

  3. Wherever a SecurityInsider scan is being carried out from (client or server), you may have to adjust this parameter in notes.ini: 

The JavaMaxHeapSize defaults to 64 MB on Notes clients and 32-bit Domino servers if not set differently in notes.ini. 64-bit Domino servers often default to 1,024 MB. To see how much Java memory is available on your server, create a Java scheduled agent with the following code:

System.out.println("Java memory (in bytes): " + Runtime.getRuntime().maxMemory());

This will print the current JavaMaxHeapSize to the server console.

Whether you require a higher JavaMaxHeapSize setting depends on the following factors:

Two examples:

A customer with 12,000 users and 3,000 groups may require 128 MB or more

A customer with 150,000 users and 12,000 groups may require 1,024 MB or more


Domino under OS400 only recognizes JAVAMAXHEAPSIZE values expressed as bytes.

Domino under all other platforms can have JAVAMAXHEAPSIZE expressed as bytes or megabytes. Use the suffix MB to indicate megabytes. For example, specifying "64MB" is the same as "67108864".

In order for changes to this setting to take effect, the JVM must be restarted. In many cases, this means that the Notes client /  Domino server needs to be restarted.