| Welcome to the Zimbra :: Forums! | |
Welcome, if you would like to post a comment please register.
We also encourage you to explore all things Zimbra with our team and members of the community.
|
 | 
12-16-2009, 03:20 AM
| | |  migration plan
I'm preparing a migration to Zimbra. Currently I have Exim+Dovecot with local users on host domain1.com. The goal is to make it Zimbra with ldap authentication on mail.domain2.com (and domain1.com as an alias, so that users will be able to log in using both old and new urls).
The plan is:
1) install Zimbra on host mail.domain2.com
2) add virtual host domain1.com
3) import users from ldap, give them all a standard password
4) sync mail using imapsync (dovecot master user is a nice feature, wish Zimbra had that one)
5) shutdown host domain1.com
6) reset all paswords in Zimbra to blank
7) configure ldap authentication in Zimbra
8) point domain1.com dns A record to mail.domain2.com
Does it look good? Anything I missed? |
12-16-2009, 07:15 PM
| | |
seems fine, but i'm a bit confused with what you're doing for passwords. why don't you just setup zimbra authentication to ldap before step 3. also i'm not sure you want to set the zimbra passwords to blank. zimbra uses fallback authentication. This means if your ldap server is down, or a user is not found in ldap but is found in zimbra, then it will let the people login using the local zimbra password. if you set these to blank then in either of those instances people could login with a blank password. |
12-16-2009, 08:09 PM
| | |
Quote:
Originally Posted by bdial  seems fine, but i'm a bit confused with what you're doing for passwords. | because I don't know the passwords, obviously. How am I supposed to use imapsync without them? Quote:
Originally Posted by bdial also i'm not sure you want to set the zimbra passwords to blank. zimbra uses fallback authentication. This means if your ldap server is down, or a user is not found in ldap but is found in zimbra, then it will let the people login using the local zimbra password. if you set these to blank then in either of those instances people could login with a blank password. | I specifically asked and was told users with empty password can't log in. |
12-17-2009, 06:44 AM
| | |
oh cool sounds good then |
12-17-2009, 04:23 PM
| | |
Just a note... if "dovecot master user" is referring to what I think it is, then this is in the Zimbra server as well. You can tell imapsync to auth using the zimbra admin account. Quote: |
You may authenticate as one user (typically an admin user), but be authorized as someone else, which means you don't need to know every user's personal password. Specify --authuser1 "adminuser" to enable this on host1. In this case, --authmech1 PLAIN will be used by default since it is the only way to go for now. So don't use --authmech1 SOMETHING with --authuser1 "adminuser", it will not work. Same behavior with the --authuser2 option.
| |
12-18-2009, 02:10 AM
| | |
Quote:
Originally Posted by ArcaneMagus Just a note... if "dovecot master user" is referring to what I think it is, then this is in the Zimbra server as well. You can tell imapsync to auth using the zimbra admin account. | indeed, thanks |
01-06-2010, 10:57 PM
| | Advanced Member | |
Posts: 186
| |
Hi all,
will u import the users from EXIM? I have no idea about EXIM.
Secondly, if EXIM uses LDAP, then u can have the passwords of all users in hash form and can restored after migration of data on the new server. | | Thread Tools | Search this Thread | | | | | Display Modes |  Linear Mode | | Why Join? Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.   |
Bugzilla
Wiki
Source
