ZIMBRA SMTP AUTH problem

[c1nco]

The below --

Quote:

Originally Posted by oranggil

I actually followed siomon's previous steps, basically by adding these line in
/opt/zimbra/postfix-2.6.5.2z/conf/main.cf
proxy_read_maps = [all_maps], proxy:ldap:/opt/zimbra/conf/ldap-slm.cf
smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch
smtpd_sender_login_maps = proxy:ldap:/opt/zimbra/conf/ldap-slm.cf

In combination with the below --

Quote:

Originally Posted by sh444man

First you need to check what you have in proxy_read_maps ( for example postconf | grep proxy_read_maps ) then mod it like this:

proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps proxy:ldap:/opt/zimbra/conf/ldap-slm.cf

I also change ldap-slm.cf to :

server_host = ldap://[your_ldap_host]:389
server_port = 389
search_base =
query_filter = (&(|(zimbraMailDeliveryAddress=%s)(zimbraMailAlias =%s)(zimbraMailCatchAllAddress=%s)(mail=%s))(zimbr aMailStatus=enabled))
result_attribute = zimbraMailDeliveryAddress,zimbraMailForwardingAddr ess,zimbraPrefMailForwardingAddress,zimbraMailCatc hAllForwardingAddress,uid
version = 3
start_tls = yes
tls_ca_cert_dir = /opt/zimbra/conf/ca
bind = yes
bind_dn = uid=zmpostfix,cn=appaccts,cn=zimbra
bind_pw = zimbra
timeout = 30

I can confirm WORKS!

I have been trying different solutions for a couple days to try and limit users from sending from any domain/persona/identity using external client (in my case thunderbird 10) -- this solution is working great!

Only minor change I made was to comment out the following line in /opt/zimbra/conf/zmmta.cf --

#POSTCONF smtpd_sender_restrictions LOCAL postfix_smtpd_sender_restrictions

(it was overwriting smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch in main.cf)


Thank you!

First post woo!

[thiagocpv]

Quote:

Originally Posted by c1nco

The below --



In combination with the below --



I can confirm WORKS!

I have been trying different solutions for a couple days to try and limit users from sending from any domain/persona/identity using external client (in my case thunderbird 10) -- this solution is working great!

Only minor change I made was to comment out the following line in /opt/zimbra/conf/zmmta.cf --

#POSTCONF smtpd_sender_restrictions LOCAL postfix_smtpd_sender_restrictions

(it was overwriting smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch in main.cf)


Thank you!

First post woo!

Hi c1nco,

I will try again with your tips and I will report here.

Thanks Man!

[k_k]

Hi,

sorry for hacking this post but I felt instead of initiating new post, I can continue the same. I have implemented suggestions mentioned in post # 71 and it worked without any issue for zimbra webmail but users who are using outlook they started getting below error while sending the mails :

"Temporary lookup failure"

Note : I have mentioned "reject_authenticated_sender_login_mismatch" in main.cf


Any idea why outlook user's got impacted ?

[k_k]

One more thing..I have mentioned below thing in main.cf :

smtpd_sender_restrictions = permit_mynetworks, reject_authenticated_sender_login_mismatch



Do I need to mention permit_mynetworks ???