Hey Ludovic,
thanks for your answers. Excuse my late reply, but SOGo is on evaluation
state and there are many other things that occupy me, so I am
progressing slow but steadily. Some follow-ups:
We provide packages for Debian 7, Ubuntu 12.04 and CentOS so you
should use what you prefer the most.
I sticked to Ubuntu 12.04 and did some testing. Sadly my experiences
with the different software packages didn't change. I seldom hat
problems with SOGo or the mail part (either dovecot or cyrus), but
practically always with Samba4 or OpenChange. The most stable setup so
far ist a fresh installation from today, following the tutorial by
Olivier Bitsch nearly to the word. I used cyrus and also installed
iGestis. SOGo and imap are working. I can join the Samba4-Domain with
windows clients and I can connect with Outlook to the
OpenExchange-Server. Unfortunately the connection is not very stable.
Often Outlook would loose the Connection the Exchange or would complain
that it could not finish some operation, because Exchange wasn't
available. At the same time Windows would complain about the reduced
internet connectivity - probably because the dns server (samba4 internal
backend) doesn't respond.
I also have problems login into the server itself. According to
Olivier's tutorial I configured pam to also use winbind authentication.
SSH logins would time out and console logins would take ages. All
together something seems to be wrong and I can't figure out what. When I
look into the samba logs during these periods there are nearly no
entries (log level 3) except for those:
[2013/07/01 18:56:19.796015, 2]
../source3/smbd/server.c:436(remove_child_pid)
Could not find child 3501 -- ignoring
[2013/07/01 18:56:38.002461, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 192.168.16.89 (192.168.16.89)
[2013/07/01 18:56:38.002774, 3] ../source3/smbd/oplock.c:985(init_oplocks)
init_oplocks: initializing messages.
[2013/07/01 18:56:38.003066, 3] ../source3/smbd/process.c:1789(process_smb)
Transaction 0 of length 72 (0 toread)
[2013/07/01 18:56:38.003240, 2] ../source3/smbd/reply.c:567(reply_special)
netbios connect: name1=FRODO 0x20 name2=WIN7-TEST2 0x0
[2013/07/01 18:56:38.003375, 2] ../source3/smbd/reply.c:608(reply_special)
netbios connect: local=frodo remote=win7-test2, name type = 0
[2013/07/01 18:56:38.004010, 3] ../source3/smbd/process.c:1789(process_smb)
Transaction 0 of length 108 (0 toread)
[2013/07/01 18:56:38.005860, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'gssapi_spnego' registered
[2013/07/01 18:56:38.006042, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'gssapi_krb5' registered
[2013/07/01 18:56:38.006091, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'gssapi_krb5_sasl' registered
[2013/07/01 18:56:38.006179, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'schannel' registered
[2013/07/01 18:56:38.006252, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'spnego' registered
[2013/07/01 18:56:38.006329, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'ntlmssp' registered
[2013/07/01 18:56:38.006407, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'krb5' registered
[2013/07/01 18:56:38.006508, 3]
../auth/gensec/gensec_start.c:868(gensec_register)
GENSEC backend 'fake_gssapi_krb5' registered
[2013/07/01 18:56:38.008295, 3]
../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2013/07/01 18:56:38.009970, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam' registered
[2013/07/01 18:56:38.010116, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam_ignoredomain' registered
[2013/07/01 18:56:38.010166, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'anonymous' registered
[2013/07/01 18:56:38.010309, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind' registered
[2013/07/01 18:56:38.010343, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind_wbclient' registered
[2013/07/01 18:56:38.010488, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'name_to_ntstatus' registered
[2013/07/01 18:56:38.010512, 3]
../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'unix' registered
[2013/07/01 18:56:38.024173, 3]
../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2013/07/01 18:56:38.035790, 3]
../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect)
ldb_wrap open of privilege.ldb
[2013/07/01 18:57:19.838103, 2]
../source3/smbd/server.c:436(remove_child_pid)
Could not find child 3505 -- ignoring
This repeats itself, messages about dead child processes (maybe they are
normal?) and auth related stuff. I get the feeling that I am looking at
the wrong place but I don't know where to look. SOGo doesn't log
anything then and cyrus gets connections that time out:
Jul 1 18:49:11 frodo cyrus/imapnoauth[3452]: executed
Jul 1 18:49:11 frodo cyrus/imapnoauth[3452]: accepted connection
Jul 1 18:53:21 frodo cyrus/imapnoauth[2222]: idle for too long, closing
connection
Jul 1 18:53:23 frodo cyrus/imapnoauth[3290]: idle for too long, closing
connection
Jul 1 18:54:58 frodo cyrus/master[1146]: process 3290 exited, status 0
Jul 1 18:54:59 frodo cyrus/master[1146]: process 2222 exited, status 0
Jul 1 18:55:40 frodo cyrus/imap[3297]: idle for too long, closing
connection
Jul 1 18:56:36 frodo cyrus/imap[2192]: fetching user_deny.db entry for
'mvolz'
Jul 1 18:56:41 cyrus/imap[2192]: last message repeated 3 times
Jul 1 18:56:41 frodo cyrus/master[1146]: process 3297 exited, status 0
Maybe someone can point me into the right direction?
4. What options for professional support are there? Is it always on a
per need base or are there any support or licensing plans?
It depends on what kind of support you're looking for. Free support is
offered on this mailing list, we well as commercial support packages
from sogo.nu.
Okay, it is quiet clear there. Sorry, should have read more your web
page more carefully.
5. Although it is our first experience with Samba4 it seems promising
and the combination of a Samba4 domain and SOGo/OpenChange as an
Exchange replacement seems to be a great concept for small
businesses. Is it possible for the OpenChange server to join an
existing Samba4 domain and use its directory? Any experiences with
that setup?
It is possible but we haven't yet tested it. It's in our TODO list for
this week so we'll report our findings later
Any news on that?
Thanks for your help!
Kind regards
Michael
--
[email protected]
https://inverse.ca/sogo/lists
