if you have an authentication source (ldap / imapserver / active directory / ..) you can create a dynamic website which has a webform (or username and password) and authenticates against your auth source. if authentication s successful, then use preauth for zimbra.

-andy