1 (edited by donkeyben 2015-09-02 20:54:11)

Topic: Working with LDAP backend? Which tools? Newbie needs some direction.:)

==== Required information ====
- iRedMail version (0.9.2):
- Linux/BSD distribution name and version: Centos 6.6 Final
- Store mail accounts in which backend (LDAP):
- Web server (Apache ):
- Manage mail accounts with iRedAdmin-Pro? No

====
So, our 10+ year old Exchange 2003 Server is being put to rest. Testing iRedMail with lab server. Love it!

iRedMail.tips doesn't show where phpLDAPadmin support web page is located.

Yum search comes up with phpldapadmin v1.2.3-1.el6 available to install.

I'm new to using LDAP and researching everything about it.

I'm specifically trying to add additional smtp aliases for some mailboxes I created.
  Example: mailbox joe@burgers.com should have aliases joe@burgers.com, mayo@burgers.com, mustard@burgers.com........All email from these should appear in joe@burgers.com mailbox.

This was something extremely simple to add in Exchange 2003 and, from what i see, extremely simple with LDAP, but I don't know where to start.

Does anyone have any pointers or references to do this in LDAP?  Do I need phpLDAPadmin? Other tools? Text editor on ldap config?

Any help getting started down right path to tackle this problem is greatly appreciated.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

You can install phpldapadmin manually (via RPM or source tarball). It's simple, just extract it to web DocumentRoot, then it's done. You don't even need to copy a sample config file.

P.S. another tool is `ldapvi`. It's a command line tool, just like `vi` or `vim`.

3 (edited by donkeyben 2015-09-03 09:46:36)

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

P.S. another tool is `ldapvi`. It's a command line tool, just like `vi` or `vim`.

Turns out my test machine has Nginx installed, not Apache. Installed ldapvi and learning how to use it now.

Thanks for tool tip. smile

The iRedMail tips file show different ldap access accounts.

root: cn=manager

bind: cn=vmail

admin: cn=vmailadmin

cn=vmailadmin seems to be the one "account" I use to access ldap through ldapvi since it's (read-write).

If anyone can reply with which creditials (accounts), I should use to modify ldap with ldapvi..

Example:  ldapvi --user cn=vmailadmin,dc=mail,dc=myserver,dc=com --host mail.myserver.com

Thanks,

The Donkey

4

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

You can use either cn=Manager or cn=vmailadmin.

5

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

ZhangHuangbin wrote:

You can use either cn=Manager or cn=vmailadmin.

So I'm using JXplorer to remotely manage/edit LDAP on my iRedMail Server.

I uncommented ldap ports in IRedMail IpTables script.

JXplorer connects, but says my base DN is incorrect and fails.

I'm following my iRedAdmin Tips File:

IRedMail.tips wrote:

OpenLDAP:
    * LDAP suffix: dc=mail,dc=burgerland,dc=com
    * LDAP root dn: cn=Manager,dc=mail,dc=burgerland,dc=com, password: [removed]
    * LDAP bind dn (read-only): cn=vmail,dc=mail,dc=burgerland,dc=com, password: [removed]
    * LDAP admin dn (read-write): cn=vmailadmin,dc=mail,dc=burgerland,dc=com, password: [removed]
    * LDAP base dn: o=domains,dc=mail,dc=burgerland,dc=com
    * LDAP admin base dn: o=domainAdmins,dc=mail,dc=burgerland,dc=com
    * Configuration files:
        - /etc/openldap
        - /etc/openldap/slapd.conf
        - /etc/openldap/ldap.conf
        - /etc/openldap/schema/iredmail.schema
    * Log file related:
        - /etc/rsyslog.conf
        - /var/log/openldap.log
        - /etc/logrotate.d/openldap
    * Data dir and files:
        - /var/lib/ldap
        - /var/lib/ldap/mail.burgerland.com
        - /var/lib/ldap/mail.burgerland.com/DB_CONFIG
    * RC script:
        - /etc/init.d/slapd
    * See also:
        - /root/iRedMail-0.9.2/runtime/ldap_init.ldif

Tried various Base DN from this and JXplorer fails.


Any suggestions? (See attached screenshot)

I'm trying to add a mail list, per these instructions:
http://www.iredmail.org/docs/ldap.add.mail.list.html
I have Nginx as web server, so I can't use PHPadmin as document states.

Post's attachments

jxplorer.gif
jxplorer.gif 38.01 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

6 (edited by mir 2015-09-04 07:09:47)

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

donkeyben wrote:

Tried various Base DN from this and JXplorer fails.
Any suggestions? (See attached screenshot)

Base DN should be: dc=burgerland,dc=com
User DN should be: cn=Manager,dc=burgerland,dc=com
LDAP protocol should be: LDAP v3

7

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

Wow! Thanks guys!

I was able to gain access to my iRedMail Server from a remote desktop and Server with a desktop running jXplorer and LDAP Admin. I was also able to use a remote server with phpldapadmin to gain access.

I also was successful gaining access locally with ldapvi. I'm at a complete loss comprehending how to use ldapvi to edit.

My biggest issue it seems is templates.  I used phpldapadmin to add a maillist.  (http://www.iredmail.org/docs/ldap.add.m … st-account)

Following the instructions, I don't see the ObjectClasses as documented about when adding a child entry to groups.

I proceed to choose Default, and select mailList from menu. The document shows three attributes with three different values, but I can only add one for enabledService.

Is there some template I should be using with phpldapadmin?

I included some screen shots:

Post's attachments

phpldapadmin01.gif
phpldapadmin01.gif 84.75 kb, file has never been downloaded. 

phpldapadmin02.gif 104.66 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

8

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

donkeyben wrote:

I proceed to choose Default, and select mailList from menu. The document shows three attributes with three different values, but I can only add one for enabledService.

Just add one when creating, and edit its profile to add more after you created this mailing list.

9

Re: Working with LDAP backend? Which tools? Newbie needs some direction.:)

Many thanks to all!

This all works well with phpldapadmin