Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: Remove view mail option

  1. #1
    rajeshkodali is offline Loyal Member
    Join Date
    Aug 2007
    Location
    Hyderabad, India
    Posts
    96
    Rep Power
    7

    Default Remove view mail option

    Hi,

    I am using Release 6.0.1_GA_1816.RHEL4_20090911162108 CentOS4 FOSS edition and I want no administrators have the option of view mail. Please help me how to remove this option. I feel the option of delegated administration being left out from FOSS edition is very sad.

  2. #2
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

  3. #3
    rajeshkodali is offline Loyal Member
    Join Date
    Aug 2007
    Location
    Hyderabad, India
    Posts
    96
    Rep Power
    7

    Default Any help to remove view mail using zmprov rvr

    Hi,

    I am looking at finding which right invokes view mail using zmprov rvr .. If i need to revoke an admin named admin1@domain.com the permission to view mail what should be the command

  4. #4
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

    Default

    Code:
    su - zimbra
    zmprov rvr account user@domain.com adminLoginAs
    as per the thread I posted.

  5. #5
    rajeshkodali is offline Loyal Member
    Join Date
    Aug 2007
    Location
    Hyderabad, India
    Posts
    96
    Rep Power
    7

    Default It did not work

    [zimbra@mymail ~]$ zmprov rvr account user@domain adminLoginAs
    usage: revokeRight(rvr) {target-type} [{target-id|target-name}] {grantee-type} {grantee-id|grantee-name} {[-]right}

    zmprov [args] [cmd] [cmd-args ...]

    -h/--help display usage
    -f/--file use file as input stream
    -s/--server {host}[:{port}] server hostname and optional port
    -l/--ldap provision via LDAP instead of SOAP
    -L/--logpropertyfile log4j property file, valid only with -l
    -a/--account {name} account name to auth as
    -p/--password {pass} password for account
    -P/--passfile {file} read password from file
    -z/--zadmin use zimbra admin name/password from localconfig for admin/password
    -y/--authtoken {authtoken} use auth token string(has to be in JSON format) from command line
    -Y/--authtokenfile {authtoken file} use auth token string(has to be in JSON format) from command line
    -v/--verbose verbose mode (dumps full exception stack trace)
    -d/--debug debug mode (dumps SOAP messages)
    -m/--master use LDAP master (only valid with -l)

    zmprov is used for provisioning. Try:

    zmprov help account help on account-related commands
    zmprov help calendar help on calendar resource-related commands
    zmprov help commands help on all commands
    zmprov help config help on config-related commands
    zmprov help cos help on COS-related commands
    zmprov help domain help on domain-related commands
    zmprov help freebusy help on free/busy-related commands
    zmprov help list help on distribution list-related commands
    zmprov help log help on logging commands
    zmprov help misc help on misc commands
    zmprov help mailbox help on mailbox-related commands
    zmprov help notebook help on notebook-related commands
    zmprov help right help on right-related commands
    zmprov help search help on search-related commands
    zmprov help server help on server-related commands
    zmprov help share help on share related commands

    [zimbra@mymail ~]$

  6. #6
    y@w's Avatar
    y@w
    y@w is offline Moderator
    Join Date
    Jan 2008
    Posts
    658
    Rep Power
    8

    Default

    Indeed, it doesn't work.

    After looking at this for a few minutes, I'm pretty sure that what you want to do is add a negative right for adminLoginAs to forbid it, rather than passively not allow it.

    I couldn't apply the deny directly to a global administrator:

    Code:
    ERROR: service.INVALID_REQUEST (invalid request: grantee must be a delegated admin account or admin group, it cannot be a global admin account.)
    Denying access to global administrators seems to be a bit tricky. I was able to get a deny right in by creating a distro list with only a test account that was a global admin and setting the list as an admin group. Then I did:
    Code:
    zmprov grr dl testing@domain.com grp testing@domain.com -adminLoginAs
    However, my test user still had the view mail button and could still login..

  7. #7
    rajeshkodali is offline Loyal Member
    Join Date
    Aug 2007
    Location
    Hyderabad, India
    Posts
    96
    Rep Power
    7

    Default Global Admin rights

    So .. Is there no other option to disable ViewMail option completely from Admin UI ?

  8. #8
    markhard is offline Junior Member
    Join Date
    Feb 2010
    Posts
    9
    Rep Power
    5

    Default

    any solution for this?

  9. #9
    madjik is offline Starter Member
    Join Date
    Sep 2009
    Posts
    1
    Rep Power
    5

    Default

    Just bumping the topic. Has a solution been found to completly disable the view mail (even for global admin) feature in version 6 ?

    I tried to play with Admin_all.js but can't find a way to do it...

  10. #10
    markhard is offline Junior Member
    Join Date
    Feb 2010
    Posts
    9
    Rep Power
    5

    Default

    i found solution for version 5 by searching this forum, but there is no solution for version 6.

    version 6 have completely different coding from version 5

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Problems with port 25
    By yogiman in forum Installation
    Replies: 57
    Last Post: 06-13-2011, 01:55 PM
  2. Large volume of spam messages; see the log
    By snake_eyes in forum Administrators
    Replies: 1
    Last Post: 12-31-2008, 06:54 AM
  3. Issues...
    By timothyalangorman in forum Administrators
    Replies: 3
    Last Post: 11-19-2007, 10:43 AM
  4. fresh install down may be due to tomcat
    By gon in forum Installation
    Replies: 10
    Last Post: 07-25-2007, 08:09 AM
  5. Seeming variety of problems on suse-9.1
    By Crexis in forum Installation
    Replies: 52
    Last Post: 03-04-2006, 12:19 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •