Changeset View
Changeset View
Standalone View
Standalone View
conf/kolab.conf
Show First 20 Lines • Show All 334 Lines • ▼ Show 20 Lines | |||||
; [ | ; [ | ||||
; 'cn' | ; 'cn' | ||||
; ] | ; ] | ||||
; ] | ; ] | ||||
; } | ; } | ||||
; }, | ; }, | ||||
; ] | ; ] | ||||
; SingleSignOn against external ldap directory (e.g. ActiveDirectory) | |||||
; Parameters: | |||||
; sso_uri: URI of external LDAP server | |||||
; sso_bind_dn: DN of an user in external LDAP server who has the right to search | |||||
; sso_bind_pw: password of sso_bind_dn. | |||||
; sso_base_dn: Base DN that ist searched on external ldap server | |||||
; sso_kolab_uid_attr: atrribute from kolab ldap database to search on externel ldap server. | |||||
; sso_ext_uid_attr: attribute on external ldap to search. | |||||
; sso_sync_password: if set to True (case sensitive) the password a user supplies (e.g. roundcube,kolab-webadmin or cyrus-imapd login). | |||||
' will be synced to local kolab database after successfull authenticcation. Without been | |||||
; synced, the user will be reauthenticated each time, kolab-saslauthd ist asked (which may be very oftern). | |||||
; Note: If you change your password on the external LDAP server, your local password will still be valid | |||||
; until you use your new password against kolab/roundcube/cyrus-imapd (having sso_sync_password set to True) | |||||
; Note2: You need to have a ldap_uri (see above in this file) that connect over ssl (e.g. ldaps:/lcoalhost). | |||||
; Password sync to local LDAP server will not work otherwise. | |||||
; Note3: If you dont use sso_sync_password some parts of kolab that dont use authentication over sasl | |||||
; my not work correctly. E.g. kolab-webadmin directly authenticates againt local LDAP directory. | |||||
; uncomment next line to enable authentiction against external ldap directory | |||||
;sso_uri = ldap://ad.external.org:389 | |||||
sso_bind_dn = CN=Kolab Service,CN=Users,DC=ad,DC=external,DC=org | |||||
sso_bind_pw = Welcome | |||||
sso_base_dn = DC=ad,DC=external,DC=org | |||||
sso_kolab_uid_attr = uid | |||||
sso_ext_uid_attr = sAMAccountName | |||||
sso_sync_password = True | |||||
[kolab_smtp_access_policy] | [kolab_smtp_access_policy] | ||||
cache_uri = mysql://user:pass@localhost/database | cache_uri = mysql://user:pass@localhost/database | ||||
cache_retention = 86400 | cache_retention = 86400 | ||||
; To allow users to also send using email addresses in domain name spaces not | ; To allow users to also send using email addresses in domain name spaces not | ||||
; in their own parent and/or alias domains, add 'mailalternateaddress' to this | ; in their own parent and/or alias domains, add 'mailalternateaddress' to this | ||||
; list. | ; list. | ||||
address_search_attrs = mail, alias | address_search_attrs = mail, alias | ||||
▲ Show 20 Lines • Show All 147 Lines • Show Last 20 Lines |