[Samba] Please share your mail setup with me if you are running samba4

Lorenzo Faleschini lorenzo.faleschini at nordestsystems.com
Fri Feb 21 02:41:20 MST 2014 

I suggest using Zimbra Community Edition if you want,

SOGo connector works for contacts (and maybe calendar too. didn't test 
myself)

I use ZCS 8.0.6 and sucessfully set LDAP auth over Samba 4.1.4, and set 
up autoprovision too


I paste here my notes on Auto provision of email accounts from domain 
users (tested on a 100-200 user AD samba 4 setup)
there's a bug workaround for provision.. maybe will be fixed in later 
ZCS release. Maybe an isse just for large domains.


$ su zimbra

$ zmprov

md your.domain.com zimbraAutoProvAccountNameMap samAccountName

md your.domain.com zimbraAutoProvBatchSize 250

md your.domain.com zimbraAutoProvLdapAdminBindDn 
"cn=administrator,cn=users,dc=dv,dc=domusvestra,dc=it"

md your.domain.com zimbraAutoProvLdapAdminBindPassword 
"lapasswordiadministrator"

md your.domain.com zimbraAutoProvLdapBindDn "%u@%d"

md your.domain.com zimbraAutoProvLdapSearchBase "dc=dv,dc=domusvestra,dc=it"

md your.domain.com zimbraAutoProvLdapSearchFilter "(&(objectClass=user))"

md your.domain.com zimbraAutoProvLdapURL "ldap://10.0.0.180:389"

md your.domain.com zimbraAutoProvMode EAGER

ms zimbra.your.domain.com zimbraAutoProvScheduledDomains your.domain.com

ms zimbra.your.domain.com zimbraAutoProvPollingInterval: 15m



$ zmprov gd your.domain.com | grep AutoProv

zimbraAutoProvAccountNameMap: samAccountName
zimbraAutoProvBatchSize: 250
zimbraAutoProvLastPolledTimestamp: 20130717173313Z
zimbraAutoProvLdapAdminBindDn: 
cn=administrator,cn=users,dc=your,dc=domain,dc=com
zimbraAutoProvLdapAdminBindPassword: YourAdministratorPassword
zimbraAutoProvLdapBindDn: %u@%d
zimbraAutoProvLdapSearchBase: dc=your,dc=domain,dc=com
zimbraAutoProvLdapSearchFilter: (&(objectClass=user))
zimbraAutoProvLdapURL: ldap://yoursambaserver.your.domain.com:389
zimbraAutoProvMode: EAGER
zimbraAutoProvNotificationBody: Your account has been auto provisioned. 
Your email address is ${ACCOUNT_ADDRESS}.
zimbraAutoProvNotificationSubject: New account auto provisioned



$ zmprov gs zimbra.your.domain.com | grep AutoProv

zimbraAutoProvPollingInterval: 15m
zimbraAutoProvScheduledDomains: your.domain.com



$ cat /opt/zimbra/log/mailbox.log | grep AutoProv



add to crontab after #ZIMBRAEND

# BUG 82789 WORKAROUND
*/15 * * * * /opt/zimbra/bin/zmprov md your.domain.com 
zimbraAutoProvLastPolledTimestamp "" > /dev/null 2>&1


FIELD MAPPING
zimbraAutoProvAttrMap {external attribute}={zimbra attribute}
IMPORTANT: Invalid mapping configuration will cause the account creating 
to fail.
To map the “sn” value on the external entry to “displayName” on the 
Zimbra account and map description value on the external entry to 
description on the ZCS account, type
zmprov md <domain.com> zimbraAutoProvAttrMap sn=displayName
http://wiki.zimbra.com/wiki/Zimbra_Attributes_ZCS8

http://www.computerperformance.co.uk/Logon/LDAP_attributes_active_directory.htm

zmprov md your.domain.com zimbraAutoProvAttrMap givenName=givenName 
+zimbraAutoProvAttrMap sn=sn +zimbraAutoProvAttrMap displayName=displayName



LDAP GAL SYNC

http://wiki.zimbra.com/wiki/GAL_Sync_Account

DYNAMIC DISTRIBUTION LISTS

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2038098



Lorenzo Faleschini
__Responsabile IT_______________________
                __       __
|\ | _  _ _|  |_  _|_  (_    _|_ _ _  _  skype: falegalizeit
| \|(_)| (_|  |___)|_  __)\/_)|_(-|||_)  mobile: +39 335 6055225
__________________________/_____________


Il 21/02/2014 10:10, Raymond ha scritto:>
 >
 > Hi Guys, I had no luck so far getting openchange installed onto samba 
4.1.4
 > and wondered if I am on the right track here regarding emails for 
users. I
 > will appriciate it if anyone can share their setups with me so I can
 > estimate what will be the best way forward.
 >
 >
 >
 > The plan so far.
 >
 >
 >
 > Run Samba4 as a file server.
 > (this is working in a test enviroment)
 >
 > Run Samba4 as a DC with Active Directory
 > (this is working in a test enviroment)
 >
 > Run (OpenChange) as an alternative for Microsoft Exchange 
(this is
 > so far not working out for us as we cannot get openchanged installed 
on an
 > already working samba4 setup)
 >
 >
 >
 > So here is the question.
 >
 >
 >
 > Do we just use a linux IMAP server instead? In our company we use POP
 > accounts on our email clients and would like to use IMAP to help 
users who
 > travel to pickup mail. This was the main reason why we wanter to use SOGO
 > and OPENCHANGE.
 >
 > Can we connect the IMAP users to Samba4 or do we need to create a 
linux user
 > for IMAP? Just thinking here if the users change their passwords with 
samba4
 > if that password will carry on into the IMAP config and change the email
 > passwords or will we need to manually change the email passwords if 
the two
 > cannot be linked together.
 >
 >
 >
 > Please share your setup with me if you do not mind. You don't need to
 > provide detailed config's etc just a general overview of what you have in
 > place at the moment that works for you.
 >
 >
 >
 > Thank you
 >
 > Ray
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 >
 > <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 > <html xmlns="http://www.w3.org/1999/xhtml">
 > <head>
 > <title>email-banner</title>
 > <meta http-equiv="Content-Type" content="text/html; 
charset=iso-8859-1" />
 > </head>
 > <body bgcolor="#FFFFFF" leftmargin="0" topmargin="0" marginwidth="0" 
marginheight="0">
 > </br>
 > <a href="http://www.joburgtheatre.com"><img 
src="http://www.showbusiness.co.za/emailbanner/banner14.jpg" width="660" 
height="165" />
 > <!-- ImageReady Slices (banner4web.jpg) --><!-- End ImageReady Slices 
--></a></br>
 >
 >
 > </body>
 >
 > </html>
 >

More information about the samba mailing list