Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page Closed / Locked Accounts with using Zimbra LDAP to authenticate other things

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 02-13-2008, 02:42 AM
Active Member
  
Posts: 32
Default Closed / Locked Accounts with using Zimbra LDAP to authenticate other things
Hi,

We've been using the Zimbra LDAP directory as a central authentication service within our company, to provide authentication to Unix shell accounts, Windows via Samba and Web access.

One problem is that when an account is marked as locked or closed in Zimbra is is still possible for it to bind to the LDAP directory and therefore access everything except Zimbra. We therefore have to change a user's password when they leave, which means more work for me and that it's harder to temporarily suspend an account.

I think one way round this would be to put an acl in the slapd.conf.in to prevent entries with zimbraAccountStatus set to closed or locked from binding - but this doesn't seem to be possible (although the acl syntax is quite complex!).

Has anybody else found a way round this?

Thanks,
Rob
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.