Results 1 to 8 of 8

Thread: best/secure way to access webclient from web?

  1. #1
    glenndm is offline Loyal Member
    Join Date
    May 2007
    Posts
    98
    Rep Power
    7

    Default best/secure way to access webclient from web?

    Hi,
    My boss just asked me to provide a laptop from which he can access his email remotely. As I already pushed him to the zimbra webclient instead of outlook (still chafes occasionally), I gather his demand translates into providing a secure access to the zimbra server's webpage.
    Could SSH tunneling to the server on some high port a solution?
    the ssh keys will be preloaded on the laptop (of course he hates typing/remembering passwords)
    A guide or stepbystep description would also help me enormously

    regards
    glenn

  2. #2
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,016
    Rep Power
    24

    Default

    What is wrong with HTTPS to the web client ? Alternatively you could always setup a VPN link into your LAN.

  3. #3
    veronica is offline Outstanding Member
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    7

    Default

    HTTPS works in secure way. Why not use it

  4. #4
    glenndm is offline Loyal Member
    Join Date
    May 2007
    Posts
    98
    Rep Power
    7

    Default

    thank to the both of you.
    I'll need to refresh my https knowledge then.
    For user authentication, do I need a 3rd party certificate per user or will self-signed ones do?

  5. #5
    y@w's Avatar
    y@w
    y@w is offline Moderator
    Join Date
    Jan 2008
    Posts
    658
    Rep Power
    8

    Default

    That really depends upon your users' requirements. If you don't mind that they have to click a few buttons to accept a self-signed certificate warning in their browser then there's really no reason that you need to purchase a certificate and the self-signed one will do.

  6. #6
    glenndm is offline Loyal Member
    Join Date
    May 2007
    Posts
    98
    Rep Power
    7

    Default

    You immediately hit the weak point! I don't mind, but THEY will!
    thanks

  7. #7
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,016
    Rep Power
    24

    Default

    Then get them to purchase a commercial certificate

  8. #8
    glenndm is offline Loyal Member
    Join Date
    May 2007
    Posts
    98
    Rep Power
    7

    Default

    thanks to your replies (and gentle chiding) here, the mail can now be consulted remotely.
    It was surprisingly easy, albeit with extra twist courtesy of our ISP
    1. ask the domain hosting co to add a cname record to the dyndns ext. name
    2. add router rule forwarding a external high port to the server 443 port
    (1,2 because ISP will only sell static IP and open 443 port at exorbitant high prices)
    3. restart zimbra in https only mode (zmtlsctl)
    4. add exceptions for selfsigned cert in firefox
    5. open https://cname:highport

    and presto, zimbra is here (and way over there )

    Just one follow-up question:
    Can I disable the automatic sending of the certificate by the server?

    I'd like install the certificate manually on the laptops.
    Incoming requests to the server would not get even to the login screen if the certificate is not already present on the caller's machine.

    best regards
    glenn

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 42
    Last Post: 01-29-2010, 12:03 AM
  2. Unable to access Web client after 1482 install
    By mrschi03 in forum General Questions
    Replies: 3
    Last Post: 02-04-2009, 09:38 AM
  3. [SOLVED] Access web mail using https protocol
    By dewaltjdy in forum Administrators
    Replies: 2
    Last Post: 07-22-2008, 12:25 AM
  4. How to access Mobile Web Client?
    By ms2k in forum Zimbra Mobile
    Replies: 4
    Last Post: 01-09-2008, 12:58 AM
  5. Unable to access web client
    By scervera in forum Installation
    Replies: 10
    Last Post: 02-23-2007, 05:32 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •