Re: [SOGo] SOGo with Zentyal ADDC
Il 29/01/2018 23:08, Jay Lepore" (j...@compumatter.com) ha scritto: I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP From a command line sudo pdbedit -L -v should give you a list of existing LDAP users maintained by Zentyal It does, so it seems Samba is working. That's actually no news, because domain logons do work correctly. Once when LDAP was not working I had to run * /usr/share/zentyal/unconfigure-module samba I'm not sure about what that command is supposed to do, other than disabling the Samba module, however I've run it, then enabled the Samba module again from the Zentyal web interface, but nothing changed: SOGo keeps refusing correct credentials. To fix samba problems. It's been a while but it seems that 'reconfigured' everything and *things worked after that*. You'll have to Google it. Have you got any other details by any chance? Googling "reconfigure samba" or "reconfigure everything" yelds quite a lot of pages about general configuration procedures and I suspect most of them aren't the solution. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP
From a command line sudo pdbedit -L -v should give you a list of
existing LDAP users maintained by Zentyal
Once when LDAP was not working I had to run
* /usr/share/zentyal/unconfigure-module samba
To fix samba problems. It's been a while but it seems that
'reconfigured' everything and *things worked after that*. You'll have to
Google it.
CompuMatter
Jay
On 1/29/2018 1:24 PM, "Dennis Lloyd" (dll...@sgvfr.com) wrote:
This is not a SoGo issue... Zentyal removed LDAP support in version 5.
-Original Message-
From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of
Lucio Crusca
Sent: Friday, January 26, 2018 15:43
To: users@sogo.nu
Subject: [SOGo] SOGo with Zentyal ADDC
Hello all. I'm new here.
I've just upgraded a Zentyal instance from 4.1 to 5.0.1.
After upgrade, SOGo doesn't let users log in anymore.
Users can access other Zentyal services like shares and domain logon, but
SOGo refuses the same credentials.
I've tried copying over the `/etc/sogo/sogo.conf` from the old installation
to the new one, purging the new `sogo` and `zentyal-sogo` packages, then
installing them again and finally activating SOGo in the Zentyal control
panel.
In the /var/log/sogo/sogo.log file I get:
Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253'
for user 'direzione' might not have worked - password
policy: 65535 grace: -1 expire: -1 bound: 0
Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect
HTTP/1.1" 403 34/64 0.018 - - 0
Here is what I believe is the relevant part of my current sogo.conf (the one
that worked in the old version):
/* LDAP authentication */
SOGoUserSources = (
{
type = ldap;
id = sambaLogin;
displayName = "SambaLogin";
canAuthenticate = YES;
CNFieldName = cn;
IDFieldName = cn;
UIDFieldName = sAMAccountName;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
bindFields = (sAMAccountName, mail);
filter = "(mail='*')";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaShared;
displayName = "Shared Addressbook";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
filter = "((NOT isCriticalSystemObject='TRUE') AND
(mail=\'*\') AND (NOT objectClass=contact))";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaContacts;
displayName = "Shared Contacts";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi09SfgLAWZQ49GS";
filter = "objectClass=person) AND
(objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND
(NOT isCriticalSystemObject='TRUE') AND (NOT
showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR
(((objectClass=group) AND (gidNumber>=2000)) AND (NOT
isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))";
mapping = {
displayname = ("cn");
};
MailFieldNames = (mail, otherMailbox);
}
);
/* Web Interface */
SOGoPageTitle = "Zentyal Webmail";
SOGoVacationEnabled = NO;
SOGoForwardEnabled = YES;
SOGoSieveScriptsEnabled = YES;
Can you help me spot the problem?
--
users@sogo.nu
https://inverse.ca/sogo/lists
--
Sincerely,
Jay Lepore
Owner
CompuMatter
Ofc: 360 299 2428
Email: j...@compumatter.com
--
users@sogo.nu
https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
Il 29/01/2018 22:24, "Dennis Lloyd"" (dll...@sgvfr.com) ha scritto: This is not a SoGo issue... Zentyal removed LDAP support in version 5. Could you please elaborate on that? Assuming you are right, what's the point of bundling SOGo with Zentyal 5 if they can't work together? Anyway, Zentyal 5 documentation seems to imply that it supports LDAP: https://wiki.zentyal.org/wiki/En/5.0/Users,_Computers_and_File_Sharing#LDAP_configuration_options -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP
From a command line sudo pdbedit -L -v should give you a list of
existing LDAP users maintained by Zentyal
Once when LDAP was not working I had to run
* /usr/share/zentyal/unconfigure-module samba
To fix samba problems. It's been a while but it seems that
'reconfigured' everything and *things worked after that*. You'll have to
Google it.
CompuMatter
Jay
On 1/29/2018 1:24 PM, "Dennis Lloyd" (dll...@sgvfr.com) wrote:
This is not a SoGo issue... Zentyal removed LDAP support in version 5.
-Original Message-
From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of
Lucio Crusca
Sent: Friday, January 26, 2018 15:43
To: users@sogo.nu
Subject: [SOGo] SOGo with Zentyal ADDC
Hello all. I'm new here.
I've just upgraded a Zentyal instance from 4.1 to 5.0.1.
After upgrade, SOGo doesn't let users log in anymore.
Users can access other Zentyal services like shares and domain logon, but
SOGo refuses the same credentials.
I've tried copying over the `/etc/sogo/sogo.conf` from the old installation
to the new one, purging the new `sogo` and `zentyal-sogo` packages, then
installing them again and finally activating SOGo in the Zentyal control
panel.
In the /var/log/sogo/sogo.log file I get:
Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253'
for user 'direzione' might not have worked - password
policy: 65535 grace: -1 expire: -1 bound: 0
Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect
HTTP/1.1" 403 34/64 0.018 - - 0
Here is what I believe is the relevant part of my current sogo.conf (the one
that worked in the old version):
/* LDAP authentication */
SOGoUserSources = (
{
type = ldap;
id = sambaLogin;
displayName = "SambaLogin";
canAuthenticate = YES;
CNFieldName = cn;
IDFieldName = cn;
UIDFieldName = sAMAccountName;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
bindFields = (sAMAccountName, mail);
filter = "(mail='*')";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaShared;
displayName = "Shared Addressbook";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
filter = "((NOT isCriticalSystemObject='TRUE') AND
(mail=\'*\') AND (NOT objectClass=contact))";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaContacts;
displayName = "Shared Contacts";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi09SfgLAWZQ49GS";
filter = "objectClass=person) AND
(objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND
(NOT isCriticalSystemObject='TRUE') AND (NOT
showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR
(((objectClass=group) AND (gidNumber>=2000)) AND (NOT
isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))";
mapping = {
displayname = ("cn");
};
MailFieldNames = (mail, otherMailbox);
}
);
/* Web Interface */
SOGoPageTitle = "Zentyal Webmail";
SOGoVacationEnabled = NO;
SOGoForwardEnabled = YES;
SOGoSieveScriptsEnabled = YES;
Can you help me spot the problem?
--
users@sogo.nu
https://inverse.ca/sogo/lists
--
Sincerely,
Jay Lepore
Owner
CompuMatter
Ofc: 360 299 2428
Email: j...@compumatter.com
--
users@sogo.nu
https://inverse.ca/sogo/lists
RE: [SOGo] SOGo with Zentyal ADDC
This is not a SoGo issue... Zentyal removed LDAP support in version 5.
-Original Message-
From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of
Lucio Crusca
Sent: Friday, January 26, 2018 15:43
To: users@sogo.nu
Subject: [SOGo] SOGo with Zentyal ADDC
Hello all. I'm new here.
I've just upgraded a Zentyal instance from 4.1 to 5.0.1.
After upgrade, SOGo doesn't let users log in anymore.
Users can access other Zentyal services like shares and domain logon, but
SOGo refuses the same credentials.
I've tried copying over the `/etc/sogo/sogo.conf` from the old installation
to the new one, purging the new `sogo` and `zentyal-sogo` packages, then
installing them again and finally activating SOGo in the Zentyal control
panel.
In the /var/log/sogo/sogo.log file I get:
Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253'
for user 'direzione' might not have worked - password
policy: 65535 grace: -1 expire: -1 bound: 0
Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect
HTTP/1.1" 403 34/64 0.018 - - 0
Here is what I believe is the relevant part of my current sogo.conf (the one
that worked in the old version):
/* LDAP authentication */
SOGoUserSources = (
{
type = ldap;
id = sambaLogin;
displayName = "SambaLogin";
canAuthenticate = YES;
CNFieldName = cn;
IDFieldName = cn;
UIDFieldName = sAMAccountName;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
bindFields = (sAMAccountName, mail);
filter = "(mail='*')";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaShared;
displayName = "Shared Addressbook";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi97SfgLAWZQ49GS";
filter = "((NOT isCriticalSystemObject='TRUE') AND
(mail=\'*\') AND (NOT objectClass=contact))";
MailFieldNames = (mail, otherMailbox);
},
{
type = ldap;
id = sambaContacts;
displayName = "Shared Contacts";
canAuthenticate = NO;
isAddressBook = YES;
CNFieldName = cn;
IDFieldName = mail;
UIDFieldName = mail;
hostname = "ldap://127.0.0.1;;
baseDN = "DC=ufficio,DC=lan";
bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan";
bindPassword = "mWaByi09SfgLAWZQ49GS";
filter = "objectClass=person) AND
(objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND
(NOT isCriticalSystemObject='TRUE') AND (NOT
showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR
(((objectClass=group) AND (gidNumber>=2000)) AND (NOT
isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))";
mapping = {
displayname = ("cn");
};
MailFieldNames = (mail, otherMailbox);
}
);
/* Web Interface */
SOGoPageTitle = "Zentyal Webmail";
SOGoVacationEnabled = NO;
SOGoForwardEnabled = YES;
SOGoSieveScriptsEnabled = YES;
Can you help me spot the problem?
--
users@sogo.nu
https://inverse.ca/sogo/lists
--
users@sogo.nu
https://inverse.ca/sogo/lists
