Hello!
I work at a university, and we're exploring moving to Zimbra for our student email system.
We have sort of a weird LDAP authentication requirement, that I don't think got across to our sales representatives during the demo, so I'm going to ask the other administrators here if they know whether Zimbra can handle this or not.
OK, here's the scenario:
We assign users email addresses like
auser001@domain.edu
However, when a user logs into our email system, they may use any of several "usernames," which may or may
not match their email address. For example,
auser001@domain.edu may log in with their student ID number, their Library card number or some pre-defined alias (such as "auseratschool").
So, when a user logs in, the LDAP filter will search for any of those attributes, find a DN, and do a successful bind, thus authenticating the user.
Once the user is authenticated, the mail server does a translation and says, "OK, the person who authenticated uses the mailbox
auser001@domain.edu"..
From what I can tell, based on Zimbra's default LDAP authentication mechanism, that whatever the LDAP filter searches on has to match a given mailbox name. There doesn't seem to be a way to tell Zimbra, "Authenticate against this attribute, but the user's ID is this attribute."
Has anyone here done anything like this?
Thanks,
Matt