Hi guys, So I did an installation on CentOS 7 Minimal Instalaltion with SOGo, MySQL, Apache, Postfix and Dovecot. I’d like to use Samba for authentication and I don’t really care about supporting older Outlook so I’m not going to attempt OpenChange. I do want activesync but first I’m trying to get SOGo and Samba to play nice. Here is the output from sogo.log:
Apr 13 13:47:14 sogod [3251]: |SOGo| request took 0.092076 seconds to execute Apr 13 13:47:14 sogod [3251]: 10.10.1.100 "GET /SOGo/ HTTP/1.1" 200 22161/0 0.096 - - 4M Apr 13 13:47:20 sogod [3251]: |SOGo| starting method 'POST' on uri '/SOGo/connect' Apr 13 13:47:20 sogod [3251]: <0x0x7f3c04a90520[NGLdapConnection]> Using ldap_initialize for LDAP URL: ldap://127.0.0.1:389 Apr 13 13:47:20 sogod [3251]: <0x0x7f3c04adae10[NGLdapConnection]> Using ldap_initialize for LDAP URL: ldap://127.0.0.1:389 2016-04-13 13:47:20.550 sogod[3251] -[NGLdapConnection _searchAtBaseDN:qualifier:attributes:scope:]: search at base '' filter '(objectClass=*)' for attrs 'subschemaSubentry' 2016-04-13 13:47:20.550 sogod[3251] -[NGLdapConnection _searchAtBaseDN:qualifier:attributes:scope:]: search at base 'CN=Aggregate,CN=Schema,CN=Configuration,DC=rhythmic,DC=ca' filter '(objectClass=*)' for attrs 'objectclasses' 2016-04-13 13:47:20.572 sogod[3251] -[NGLdapConnection _searchAtBaseDN:qualifier:attributes:scope:]: search at base 'cn=users,dc=rhythmic,dc=ca' filter '(&(|(sAMAccountName=test1)(mail=test1))(mail=*))' for attrs 'dn' Apr 13 13:47:20 sogod [3251]: SOGoRootPage Login from '10.10.1.100' for user 'test1' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 Apr 13 13:47:20 sogod [3251]: |SOGo| request took 0.062964 seconds to execute Apr 13 13:47:20 sogod [3251]: 10.10.1.100 "POST /SOGo/connect HTTP/1.1" 403 34/62 0.068 - - 216K Here is my conf file (easy passwords for a test environment): /* Database configuration (mysql:// or postgresql://) */ //SOGoProfileURL = "postgresql://sogo:sogo@localhost:5432/sogo/sogo_user_profile"; //OCSFolderInfoURL = "postgresql://sogo:sogo@localhost:5432/sogo/sogo_folder_info"; //OCSSessionsFolderURL = "postgresql://sogo:sogo@localhost:5432/sogo/sogo_sessions_folder"; SOGoProfileURL = "mysql://sogo:l3mm3in123@localhost:3306/sogo/sogo_user_profile"; OCSFolderInfoURL = "mysql://sogo:l3mm3in123@localhost:3306/sogo/sogo_folder_info"; OCSSessionsFolderURL = "mysql://sogo:l3mm3in123@localhost:3306/sogo/sogo_sessions_folder"; /* Mail */ SOGoDraftsFolderName = INBOX/Drafts; SOGoSentFolderName = INBOX/Sent; SOGoTrashFolderName = INBOX/Trash; SOGoIMAPServer = imaps://localhost:993; SOGoSieveServer = sieve://127.0.0.1:4190; SOGoSMTPServer = 127.0.0.1; SOGoMailDomain = rhythmic.ca; SOGoMailingMechanism = smtp; //SOGoForceExternalLoginWithEmail = NO; //SOGoMailSpoolPath = /var/spool/sogo; //NGImap4ConnectionStringSeparator = "/"; /* Notifications */ //SOGoAppointmentSendEMailNotifications = NO; //SOGoACLsSendEMailNotifications = NO; //SOGoFoldersSendEMailNotifications = NO; /* Authentication */ //SOGoPasswordChangeEnabled = YES; /* LDAP authentication example */ //SOGoUserSources = ( // { // type = ldap; // CNFieldName = cn; // UIDFieldName = uid; // IDFieldName = uid; // first field of the DN for direct binds // bindFields = (uid, mail); // array of fields to use for indirect binds // baseDN = "ou=users,dc=acme,dc=com"; // bindDN = "uid=sogo,ou=users,dc=acme,dc=com"; // bindPassword = qwerty; // canAuthenticate = YES; // displayName = "Shared Addresses"; // hostname = ldap://127.0.0.1:389; // id = public; // isAddressBook = YES; // } //); /* LDAP AD/Samba4 example */ SOGoUserSources = ( { type = ldap; CNFieldName = cn; UIDFieldName = sAMAccountName; baseDN = "CN=users,dc=rhythmic,dc=ca"; bindDN = "CN=administrator,CN=users,DC=rhythmic,DC=ca"; bindFields = (sAMAccountName, mail); bindPassword = l3mm3in123; canAuthenticate = YES; displayName = "Public"; hostname = ldap://127.0.0.1:389; filter = "mail = '*'"; id = directory; isAddressBook = YES; } ); /* SQL authentication example */ /* These database columns MUST be present in the view/table: * c_uid - will be used for authentication - it's the username or [email protected]) * c_name - which can be identical to c_uid - will be used to uniquely identify entries * c_password - password of the user, plain-text, md5 or sha encoded for now * c_cn - the user's common name - such as "John Doe" * mail - the user's mail address * See the installation guide for more details */ //SOGoUserSources = // ( // { // type = sql; // id = directory; // viewURL = "postgresql://sogo:[email protected]:5432/sogo/sogo_view"; // canAuthenticate = YES; // isAddressBook = YES; // userPasswordAlgorithm = md5; // } // ); /* Web Interface */ SOGoPageTitle = RhythmicCanada; SOGoVacationEnabled = YES; SOGoForwardEnabled = YES; SOGoSieveScriptsEnabled = YES; //SOGoMailAuxiliaryUserAccountsEnabled = YES; //SOGoTrustProxyAuthentication = NO; /* General */ SOGoLanguage = English; SOGoTimeZone = America/Toronto; SOGoCalendarDefaultRoles = ( PublicDAndTViewer, ConfidentialDAndTViewer ); SOGoSuperUsernames = (Administrator); // This is an array - keep the parens! SxVMemLimit = 1024; WOPidFile = "/var/run/sogo/sogo.pid"; SOGoMemcachedHost = "/var/run/memcached.sock"; /* Debug */ SOGoDebugRequests = YES; SoDebugBaseURL = YES; ImapDebugEnabled = YES; LDAPDebugEnabled = YES; PGDebugEnabled = YES; MySQL4DebugEnabled = YES; SOGoUIxDebugEnabled = YES; WODontZipResponse = YES; WOLogFile = /var/log/sogo/sogo.log; } For the life of me I can’t figure out what I’m doing wrong. I have the Administrator user in Samba4 with password l3mm3in123. Samba4 is an Active Directory Domain Controller (See smb.con below) and the sogo user has been set up in MySQL with the same password. I have created a user called ‘test1’ (yes, same password :)) in Samba who I’m trying to login with in the SOGo Web Interface with no luck. Is there something wrong with my config file? I enabled debugging so I would get a detailed output. BTW, here is the smb.conf: # Global parameters [global] workgroup = RHYTHMIC realm = RHYTHMIC.CA netbios name = MYTEAM server role = active directory domain controller dns forwarder = 10.10.30.1 idmap_ldb:use rfc2307 = yes [netlogon] path = /usr/local/samba/var/locks/sysvol/rhythmic.ca/scripts read only = No [sysvol] path = /usr/local/samba/var/locks/sysvol read only = No Thanks! Azam -- [email protected] https://inverse.ca/sogo/lists
