1

Topic: Add LDAP users created by iRedMail to different groups (OU's)

Zhang, one question:

So we have in LDAP:

domainName=mydomain.com,o=domains,dc=mydomain,dc=com
-->account1@mydomain.com
-->account2@mydomain.com

Is there any way to add them to OU? :

domainName=mydomain.com,o=domains,dc=mydomain,dc=com
-->developers
------>account1@mydomain.com
-->informationsystems
------>account2@mydomain.com

How I can make iRedMail "group friendly"?

2

Re: Add LDAP users created by iRedMail to different groups (OU's)

iRedMail doesn't use the LDAP structure like this. Default is:

domainName=mydomain.com,o=domains,dc=xx,dc=xx
    |- ou=Groups
        |- mail=developers@mydomain.com
        |- mail=informationsystems@mydomain.com
    |- ou=Users
        |- mail=account1@mydomain.com (with attribute "memberOfGroup=developers@mydomain.com")
        |- mail=account2@mydomain.com (with attribute "memberOfGroup=informationsystems@mydomain.com")

You can easily manage user <-> group relationship with iRedAdmin-Pro-LDAP. Screenshots:

*) User profile. You can assign user to mail group (mail list or mail alias, mail list is recommended)
http://screenshots.iredmail.googlecode.com/hg/iredadmin/user_profile_general.png

*) Mail list profile.
http://screenshots.iredmail.googlecode.com/hg/iredadmin/maillist_profile_members.png

3 (edited by sam-the-man 2011-10-03 07:27:08)

Re: Add LDAP users created by iRedMail to different groups (OU's)

Is this possible?

domainName=mydomain.com,o=domains,dc=xx,dc=xx
    |- ou=Groups
        |- cn=Developers
        |- cn=IT
    |- ou=Users
        |- mail=account1@mydomain.com (with attribute "memberOfGroup=Developers")
        |- mail=account2@mydomain.com (with attribute "memberOfGroup=IT")

Is the following also correct:

# The LDAP query URL
AuthLDAPURL "ldap://localhost:389/DC=mydomain,DC=com?memberOfGroup?sub?(cn=Developers)"


Is memberOfGroup an attribute in inetorgperson schema?

4

Re: Add LDAP users created by iRedMail to different groups (OU's)

sam-the-man wrote:

Is memberOfGroup an attribute in inetorgperson schema?

It's an attribute in objectclass "mailUser", provided by iredmail.scheme.