LDAP autentification for user mailbox

[rayg00n]

Good day dear forum.
We have the ZCS 7.1 and active directory on Windows Server 2003.
Zimbra autentification is changed to External Active Directory. Everything is fine: domain users can logon to zimbra web.
But how can i do next - some users must logon to the mailbox with other AD account. Did anyone help me to make correct settings for this window?

[phoenix]

Quote:

Originally Posted by rayg00n

But how can i do next - some users must logon to the mailbox with other AD account. Did anyone help me to make correct settings for this window

I don't understand what you mean by that question, what exactly are you trying to do? If you're trying to use multiple login credentials with one mail account then that's not possible.

[rayg00n]

Quote:

Originally Posted by phoenix

I don't understand what you mean by that question, what exactly are you trying to do? If you're trying to use multiple login credentials with one mail account then that's not possible.

Sorry for my bad english.
I have account "user@domain" in AD 2003.
And i have zimbra account "zimbrauser@domain.ru" in Zimbra.
Can i login into the "zimbrauser@domain.ru" with credentials from "user@domain" ?
User from AD and user from Zimbra have different name(uid).
Field on the screen - What is it? How it is working?

[rayg00n]

For example:
win2003AD - an02@domain.local
zimbra - tds@domain.ru
Look up first post.
How can i compare these accounts? I want to use user/pass from an02@domain.local to login to zimbra tds@domain.ru usermailbox. It is possible?

PS: premoderation is too slooooow

[rayg00n]

up.anybody know?

[PhD]

we had a similar situation... we have a user (user01) who went on leave, and a temp user (user02) is filling in the role, and needs to log into to user01's mailbox with user02's credentials.

We use external ldap as our backend.. so we went around the problem by doing the following:

on user01's zimbra account, it maps to user01 ldap... so we added user02's password as a 2nd userPassword to user01's ldap account, and then also created a user02 ldap account as normal. (so they can log into their pc as themselves)

Then on the zimbra side, we added user02@domain.com as an alias to user01's account. Because we worked out that, you can log in to an account with either the username of the account, or any alias of the account, and it will match authenticate against the user01's ldap account, and with the 2nd password in there, the temp is now able to log into user01's account using her "username" (user02) and her password (and it auth's against user01's ldap account)

So, because you use active directory, i would say the only way this would be possible if you use adsiedit and edit the properties of the user account and add a second password field to the user..

@phoenix, you can have multiple login credentials for the one account (by using the method above) and it works - im not sure if this will work in AD, or using zimbra's own ldap auth.. but definately using an external ldap system this works.. both the "temp" and the original user, can log into the one account at the same time and with personas, they can sent emails as their own username..

[rayg00n]

PhD
It is great! But, i can not use the alias, because we allready have a mailbox with this name.
PS: I still do not understand why we have in the Zimbra 7 field on the screen above if that not working correctly.

I find other solve for this problem, but its not fully satisfied me:
In a field on the screen type the name of account (example an02) from Active Directory. In the Active Directory we must fiill field "Display Name" for some user (example: an02). Know, we can login to the zimbra using the name of mailbox zimbra (example tds@zimbra.com) and password from Active directory our user (example: <an02password>)