Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Installing ZCS 5 with external OpenLdap Database

  1. #1
    Grejao is offline Active Member
    Join Date
    Apr 2007
    Location
    Uberlandia - MG - Brazil
    Posts
    45
    Rep Power
    8

    Default Installing ZCS 5 with external OpenLdap Database

    Hi, I'm trying to install ZCS 5 with an external LDAP Database, it's because my company already have an LDAP database for users. How do i can set it on install? its because at first configuration i have only ldap hostname, ldap admin user and password. Where i can specify my DN ?

    My LDAP are structured to be an Domain controller with SAMBA. Today i have the following structure at my ldap database and users:

    Directory Structure:

    Code:
    dn: dc=my-company,dc=com,dc=br
    objectClass: dcObject
    objectClass: organization
    o: mycompany
    dc: mycompany
    Users and Groups OU:

    Code:
    dn: ou=Usuarios,dc=my-company,dc=com,dc=br
    objectClass: top
    objectClass: organizationalUnit
    ou: Usuarios
    
    dn: ou=Grupos,dc=my-company,dc=com,dc=br
    objectClass: top
    objectClass: organizationalUnit
    ou: Grupos
    Users Objects:

    Code:
    dn: uid=username,ou=Usuarios,dc=my-company,dc=com,dc=br
    uid: username
    objectClass: top
    objectClass: posixAccount
    objectClass: shadowAccount
    objectClass: inetOrgPerson
    objectClass: person
    loginShell: /bin/bash
    uidNumber: 1504
    gidNumber: 513
    homeDirectory: /home/username
    mail: username@mycompany.com.br
    title: Estagiaria
    o: mycompany
    ou: Financeiro
    sn: username complete name
    cn: username complete name
    l: Matriz

    How do i use this users, that already exists at my LDAP database to be Zimbra users?

    Can i create an Posix group and zimbra allow only group users to have zimbra account?

  2. #2
    brian is offline Project Contributor
    Join Date
    Jul 2006
    Posts
    623
    Rep Power
    10

    Default

    ZCS isn't designed to be used with the primary ldap being external to ZCS. You'll need to install the zimbra ldap, and then setup external authentication.
    Bugzilla - Wiki - Downloads - Before posting... Search!

  3. #3
    mmorse's Avatar
    mmorse is offline Moderator
    Join Date
    May 2006
    Location
    USA
    Posts
    6,242
    Rep Power
    21

    Default

    Don't change anything on install, after you get it setup in the admin console go to domains > external authentication & GAL buttons.

  4. #4
    Grejao is offline Active Member
    Join Date
    Apr 2007
    Location
    Uberlandia - MG - Brazil
    Posts
    45
    Rep Power
    8

    Default

    OK, i understand how do i can authenticate with an external Openldap Database . Thanks.

    and if i have an existent Zimbra (with internal authentication) with some users, can i put it to authenticate at external openldap database without lost existents users? i need to have the same users at ldap database, right? only this?

  5. #5
    Klug's Avatar
    Klug is offline Moderator
    Join Date
    Mar 2006
    Location
    Beaucaire, France
    Posts
    2,316
    Rep Power
    13

    Default

    AFAIK, you can only choose the auth type (internal or external) on a domain base.

  6. #6
    Grejao is offline Active Member
    Join Date
    Apr 2007
    Location
    Uberlandia - MG - Brazil
    Posts
    45
    Rep Power
    8

    Default

    Ok Ok, but i already have an existent domain and users at this domain. This zimbra server was running at least 7 months and now i want to put then to authenticate at an external LDAP database. Can i do thi chage for an existent domain?

  7. #7
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,480
    Rep Power
    56

    Default

    Quote Originally Posted by Grejao View Post
    Can i do thi chage for an existent domain?
    Yes, you can.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  8. #8
    Grejao is offline Active Member
    Join Date
    Apr 2007
    Location
    Uberlandia - MG - Brazil
    Posts
    45
    Rep Power
    8

    Default

    Ok.
    to do this i need to have the same user object at external ldap database, right?

    what attribute zimbra will go get at user object at external ldap database to authenticate user?
    "UID" and "userPassword" ?

    can zimbra authenticate users by "mail" and "userPassword" attributes?

  9. #9
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,480
    Rep Power
    56

    Default

    Details for External Authentication are here in the wiki.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  10. #10
    Grejao is offline Active Member
    Join Date
    Apr 2007
    Location
    Uberlandia - MG - Brazil
    Posts
    45
    Rep Power
    8

    Default

    Ok, i do all steps and now my ZCS can authenticate at my external ldap database .

    The problem now are that all users can login with 2 passwords, from zimbra internal database and password from external database.

    its normal? how do i correct this???

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Trouble Sending mail - All Messages deferred!
    By SiteDiscovery in forum Administrators
    Replies: 7
    Last Post: 09-03-2009, 04:52 AM
  2. Replies: 41
    Last Post: 10-29-2007, 02:36 PM
  3. Replies: 5
    Last Post: 08-03-2006, 01:21 PM
  4. ZCS 3.2 Beta Available
    By KevinH in forum Announcements
    Replies: 31
    Last Post: 07-07-2006, 03:46 PM
  5. external Address book database
    By rony in forum Administrators
    Replies: 1
    Last Post: 11-25-2005, 09:49 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •