On Tue, Jun 7, 2011 at 6:42 AM, <[email protected]> wrote: > I have managed to set up our Sogo installation with shibboleth authentication > by using the RequestHeader set "x-webobjects-remote-user" in the Apache > config. > > > Unfortunately it now doesn't use the password set in the mysql sogo_auth_user > table to connect to the main IMAP server. > > My main question is: > > Can sogo somehow take the password of the user matched to the > x-webobjects-remote-user request header and use that to log in to the imap > server. > > Or is it somehow possible that the password gets set in a similar method as > the > username via an apache request header. > > if I set SOGoMailAuxiliaryUserAccountsEnabled it does save the user details in > the mysql DB (sogo_user_profile) table for any additional accounts, would it > maybe be possible to set default imap account here if sogo_auth_users is only > meant for user authentication into sogo. > > Please do let me know if I have overlooked something completely which already > does any of the above.
This likely does not work for the same reason SOGo does not support true kerberos SSO. See http://www.sogo.nu/bugs/view.php?id=1200. You have to use Web-SSO like CAS or WebAuth (http://www.sogo.nu/english/nc/support/faq/article/how-to-use-webauth-with-sogo-2.html). I'm not sure how you might integrate those with shibboleth. Steve -- [email protected] https://inverse.ca/sogo/lists
