Re: [SOGo] SOGo with Zentyal ADDC
Il 29/01/2018 23:08, Jay Lepore" (j...@compumatter.com) ha scritto: I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP From a command line sudo pdbedit -L -v should give you a list of existing LDAP users maintained by Zentyal It does, so it seems Samba is working. That's actually no news, because domain logons do work correctly. Once when LDAP was not working I had to run * /usr/share/zentyal/unconfigure-module samba I'm not sure about what that command is supposed to do, other than disabling the Samba module, however I've run it, then enabled the Samba module again from the Zentyal web interface, but nothing changed: SOGo keeps refusing correct credentials. To fix samba problems. It's been a while but it seems that 'reconfigured' everything and *things worked after that*. You'll have to Google it. Have you got any other details by any chance? Googling "reconfigure samba" or "reconfigure everything" yelds quite a lot of pages about general configuration procedures and I suspect most of them aren't the solution. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP From a command line sudo pdbedit -L -v should give you a list of existing LDAP users maintained by Zentyal Once when LDAP was not working I had to run * /usr/share/zentyal/unconfigure-module samba To fix samba problems. It's been a while but it seems that 'reconfigured' everything and *things worked after that*. You'll have to Google it. CompuMatter Jay On 1/29/2018 1:24 PM, "Dennis Lloyd" (dll...@sgvfr.com) wrote: This is not a SoGo issue... Zentyal removed LDAP support in version 5. -Original Message- From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of Lucio Crusca Sent: Friday, January 26, 2018 15:43 To: users@sogo.nu Subject: [SOGo] SOGo with Zentyal ADDC Hello all. I'm new here. I've just upgraded a Zentyal instance from 4.1 to 5.0.1. After upgrade, SOGo doesn't let users log in anymore. Users can access other Zentyal services like shares and domain logon, but SOGo refuses the same credentials. I've tried copying over the `/etc/sogo/sogo.conf` from the old installation to the new one, purging the new `sogo` and `zentyal-sogo` packages, then installing them again and finally activating SOGo in the Zentyal control panel. In the /var/log/sogo/sogo.log file I get: Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253' for user 'direzione' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect HTTP/1.1" 403 34/64 0.018 - - 0 Here is what I believe is the relevant part of my current sogo.conf (the one that worked in the old version): /* LDAP authentication */ SOGoUserSources = ( { type = ldap; id = sambaLogin; displayName = "SambaLogin"; canAuthenticate = YES; CNFieldName = cn; IDFieldName = cn; UIDFieldName = sAMAccountName; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; bindFields = (sAMAccountName, mail); filter = "(mail='*')"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaShared; displayName = "Shared Addressbook"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; filter = "((NOT isCriticalSystemObject='TRUE') AND (mail=\'*\') AND (NOT objectClass=contact))"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaContacts; displayName = "Shared Contacts"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi09SfgLAWZQ49GS"; filter = "objectClass=person) AND (objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR (((objectClass=group) AND (gidNumber>=2000)) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))"; mapping = { displayname = ("cn"); }; MailFieldNames = (mail, otherMailbox); } ); /* Web Interface */ SOGoPageTitle = "Zentyal Webmail"; SOGoVacationEnabled = NO; SOGoForwardEnabled = YES; SOGoSieveScriptsEnabled = YES; Can you help me spot the problem? -- users@sogo.nu https://inverse.ca/sogo/lists -- Sincerely, Jay Lepore Owner CompuMatter Ofc: 360 299 2428 Email: j...@compumatter.com -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
Il 29/01/2018 22:24, "Dennis Lloyd"" (dll...@sgvfr.com) ha scritto: This is not a SoGo issue... Zentyal removed LDAP support in version 5. Could you please elaborate on that? Assuming you are right, what's the point of bundling SOGo with Zentyal 5 if they can't work together? Anyway, Zentyal 5 documentation seems to imply that it supports LDAP: https://wiki.zentyal.org/wiki/En/5.0/Users,_Computers_and_File_Sharing#LDAP_configuration_options -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo with Zentyal ADDC
I'm running Zentyal 5.0.10 And SOGo logins work fine with built in LDAP From a command line sudo pdbedit -L -v should give you a list of existing LDAP users maintained by Zentyal Once when LDAP was not working I had to run * /usr/share/zentyal/unconfigure-module samba To fix samba problems. It's been a while but it seems that 'reconfigured' everything and *things worked after that*. You'll have to Google it. CompuMatter Jay On 1/29/2018 1:24 PM, "Dennis Lloyd" (dll...@sgvfr.com) wrote: This is not a SoGo issue... Zentyal removed LDAP support in version 5. -Original Message- From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of Lucio Crusca Sent: Friday, January 26, 2018 15:43 To: users@sogo.nu Subject: [SOGo] SOGo with Zentyal ADDC Hello all. I'm new here. I've just upgraded a Zentyal instance from 4.1 to 5.0.1. After upgrade, SOGo doesn't let users log in anymore. Users can access other Zentyal services like shares and domain logon, but SOGo refuses the same credentials. I've tried copying over the `/etc/sogo/sogo.conf` from the old installation to the new one, purging the new `sogo` and `zentyal-sogo` packages, then installing them again and finally activating SOGo in the Zentyal control panel. In the /var/log/sogo/sogo.log file I get: Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253' for user 'direzione' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect HTTP/1.1" 403 34/64 0.018 - - 0 Here is what I believe is the relevant part of my current sogo.conf (the one that worked in the old version): /* LDAP authentication */ SOGoUserSources = ( { type = ldap; id = sambaLogin; displayName = "SambaLogin"; canAuthenticate = YES; CNFieldName = cn; IDFieldName = cn; UIDFieldName = sAMAccountName; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; bindFields = (sAMAccountName, mail); filter = "(mail='*')"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaShared; displayName = "Shared Addressbook"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; filter = "((NOT isCriticalSystemObject='TRUE') AND (mail=\'*\') AND (NOT objectClass=contact))"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaContacts; displayName = "Shared Contacts"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi09SfgLAWZQ49GS"; filter = "objectClass=person) AND (objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR (((objectClass=group) AND (gidNumber>=2000)) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))"; mapping = { displayname = ("cn"); }; MailFieldNames = (mail, otherMailbox); } ); /* Web Interface */ SOGoPageTitle = "Zentyal Webmail"; SOGoVacationEnabled = NO; SOGoForwardEnabled = YES; SOGoSieveScriptsEnabled = YES; Can you help me spot the problem? -- users@sogo.nu https://inverse.ca/sogo/lists -- Sincerely, Jay Lepore Owner CompuMatter Ofc: 360 299 2428 Email: j...@compumatter.com -- users@sogo.nu https://inverse.ca/sogo/lists
RE: [SOGo] SOGo with Zentyal ADDC
This is not a SoGo issue... Zentyal removed LDAP support in version 5. -Original Message- From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf Of Lucio Crusca Sent: Friday, January 26, 2018 15:43 To: users@sogo.nu Subject: [SOGo] SOGo with Zentyal ADDC Hello all. I'm new here. I've just upgraded a Zentyal instance from 4.1 to 5.0.1. After upgrade, SOGo doesn't let users log in anymore. Users can access other Zentyal services like shares and domain logon, but SOGo refuses the same credentials. I've tried copying over the `/etc/sogo/sogo.conf` from the old installation to the new one, purging the new `sogo` and `zentyal-sogo` packages, then installing them again and finally activating SOGo in the Zentyal control panel. In the /var/log/sogo/sogo.log file I get: Jan 26 13:57:00 sogod [15541]: SOGoRootPage Login from '192.168.1.253' for user 'direzione' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 Jan 26 13:57:00 sogod [15541]: 192.168.1.253 "POST /SOGo/connect HTTP/1.1" 403 34/64 0.018 - - 0 Here is what I believe is the relevant part of my current sogo.conf (the one that worked in the old version): /* LDAP authentication */ SOGoUserSources = ( { type = ldap; id = sambaLogin; displayName = "SambaLogin"; canAuthenticate = YES; CNFieldName = cn; IDFieldName = cn; UIDFieldName = sAMAccountName; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; bindFields = (sAMAccountName, mail); filter = "(mail='*')"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaShared; displayName = "Shared Addressbook"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi97SfgLAWZQ49GS"; filter = "((NOT isCriticalSystemObject='TRUE') AND (mail=\'*\') AND (NOT objectClass=contact))"; MailFieldNames = (mail, otherMailbox); }, { type = ldap; id = sambaContacts; displayName = "Shared Contacts"; canAuthenticate = NO; isAddressBook = YES; CNFieldName = cn; IDFieldName = mail; UIDFieldName = mail; hostname = "ldap://127.0.0.1;; baseDN = "DC=ufficio,DC=lan"; bindDN = "CN=zentyal-mail-barth,CN=Users,DC=ufficio,DC=lan"; bindPassword = "mWaByi09SfgLAWZQ49GS"; filter = "objectClass=person) AND (objectClass=contact) AND ((uidNumber>=2000) OR (mail=\'*\'))) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE') AND (NOT uid=Guest)) OR (((objectClass=group) AND (gidNumber>=2000)) AND (NOT isCriticalSystemObject='TRUE') AND (NOT showInAdvancedViewOnly='TRUE')))"; mapping = { displayname = ("cn"); }; MailFieldNames = (mail, otherMailbox); } ); /* Web Interface */ SOGoPageTitle = "Zentyal Webmail"; SOGoVacationEnabled = NO; SOGoForwardEnabled = YES; SOGoSieveScriptsEnabled = YES; Can you help me spot the problem? -- users@sogo.nu https://inverse.ca/sogo/lists -- users@sogo.nu https://inverse.ca/sogo/lists