As Kevin mentioned, we currently don't support that configuration, but we definitely plan to.
Early on we received feedback from people who didn't want to modify their LDAP/AD servers/schemas/etc, so we've tried to enable co-existence by allowing for external GAL/auth.
We'd definitely be interested in understsanding your existing deployment:
1. directory layout. is it arranged by org or domain. Given an email address, how do I local the user entry in your a directory.
2. which object classes do your user objects belong to
3. if you are using LDAP for authorization, how are you using it? some sort of group schema, org-based, attr-value on account objects, etc.
4. would you want to use our admin console to create/delete accounts in your directory, or just add/remove zimbra-related attrs
5. do you have a GAL (global address list) full of contact information? If so, which attributes do you use, are their privacy constraints on what information you want published in there, etc.
6. If you'd rather run our ldap in parallel (as some people have indicated they would), would you use web services and/or command line utils to provision in our directory, or some sort of dir-sync program that can automatically track changes in your directory and map them into ours?
thanks, roland
Last edited by schemers; 10-05-2005 at 05:27 PM..
Reason: fix typo
| 
Bugzilla
Wiki
Source
Linear Mode
