benno_mailarchiv
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
| Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende ÜberarbeitungLetzte ÜberarbeitungBeide Seiten der Revision | ||
| benno_mailarchiv [2018/10/15 19:55] – matthias | benno_mailarchiv [2018/10/15 20:00] – matthias | ||
|---|---|---|---|
| Zeile 34: | Zeile 34: | ||
| ===== LDAP Authentisierung ===== | ===== LDAP Authentisierung ===== | ||
| + | / | ||
| + | < | ||
| + | # | ||
| + | # LDAP Authentication configuration file | ||
| + | # | ||
| + | # This file must be readable by the user of the web server | ||
| + | # | ||
| - | Die Datei / | + | # LDAP host |
| + | # | ||
| + | # < | ||
| + | # | ||
| + | # Univention UCS + Samba4: < | ||
| + | # | ||
| + | host = ucs.domain.lan: | ||
| + | |||
| + | |||
| + | # LDAP base dn | ||
| + | # | ||
| + | # Base dn of the ldap directory, the bind dn will be determined by a search | ||
| + | # | ||
| + | # request the user uid | ||
| + | # | ||
| + | basedn = dc=domain, | ||
| + | |||
| + | |||
| + | # User id attribute | ||
| + | # | ||
| + | # The attribute which holds the user id for authentication | ||
| + | # | ||
| + | # Windows AD: userattr = sAMAccountName | ||
| + | #userattr = uid | ||
| + | |||
| + | # user rdn | ||
| + | # | ||
| + | # Authentication will be performed as: $userattr=USERLOGIN, | ||
| + | # | ||
| + | # If disabled, a LDAP search operation will be performed to detect the user dn | ||
| + | usersuffix = cn=users, | ||
| + | |||
| + | |||
| + | # User objectclas | ||
| + | # | ||
| + | # Objectclass of user object | ||
| + | # | ||
| + | # Windows AD: objectclass = user | ||
| + | objectclass = posixAccount | ||
| + | |||
| + | # Encrypt LDAP connection with TLS if set to " | ||
| + | #tls = true | ||
| + | |||
| + | # DN to bind for search requests | ||
| + | # | ||
| + | # Dn of an user with permissions to search at the ldap tree. | ||
| + | # Enable if anonymous search is not permitted! | ||
| + | # | ||
| + | # Windows AD: binddn = < | ||
| + | #binddn = | ||
| + | |||
| + | # Password of the admin user | ||
| + | # | ||
| + | #password = | ||
| + | |||
| + | ## User is allowed to access his own email adresses and | ||
| + | ## addtional adresses | ||
| + | |||
| + | # Email address attribute | ||
| + | # Univention UCS: mailPrimaryAddress | ||
| + | email = mailPrimaryAddress | ||
| + | |||
| + | # Email alias attribute | ||
| + | # Windows AD: proxyAddress | proxyAddresses | ||
| + | # Univention UCS: mailAlternativeAddress | ||
| + | alias = mailAlternativeAddress | ||
| + | |||
| + | # Allow access to additional email addresses | ||
| + | addemail = bennoEmailAddress | ||
| + | |||
| + | |||
| + | # Benno role attribute | ||
| + | role = bennoRole | ||
| + | |||
| + | # Benno container name attribute | ||
| + | container = bennoContainer | ||
| + | |||
| + | # Default container (if containerattr not set in LDAP) | ||
| + | default_container = BennoContainer | ||
| + | |||
| + | # Username who will always assigned the admin role | ||
| + | adminuser = Administrator | ||
| + | |||
| + | |||
| + | # remove domain from username during authentication if set to " | ||
| + | # | ||
| + | </ | ||
| + | |||
| + | LDAP-Modul aktivieren: | ||
| + | |||
| + | cd / | ||
| + | ln -s / | ||
| + | |||
| + | Die Datei / | ||
| EXTERNAL_AUTH = / | EXTERNAL_AUTH = / | ||
benno_mailarchiv.txt · Zuletzt geändert: 2019/11/25 18:33 von matthias