1

Topic: How To: Ejabberd integration with iredmail.schema.

ejabberd integration with iredmail.schema 
first to thank to Zhang Huangbin (michaelbibby@gmail.com) for this great project 
     
what I have used to integrate ejabberd is to add to enableService alone jabber they have to look at it here 
 
dn: mail=www@ssp.rimed.cu,ou=Users,domainName=ssp.rimed.cu,o=domains,dc=ssp, 
dc=rimed,dc=cu 
objectClass: inetOrgPerson 
objectClass: shadowAccount 
objectClass: mailUser 
objectClass: top 
cn: www 
sn: www 
uid: www 
givenName: www 
mail: www@ssp.rimed.cu 
accountStatus: activate 
storageBaseDirectory: /var/vmail/vmail01 
mailMessageStore: ssp.rimed.cu/w/ww/www/www-2009.12.13.15.45.29 / 
homeDirectory: /var/vmail/vmail01/ssp.rimed.cu/w/ww/www/www-2009.12.13.15.45 
.29 / 
mailQuota: 104857600 
userPassword: {SSHA}zkKw5lBjn+8/1xKRTM+a8PUXtfmD3j2A 
memberOfGroup: all@ssp.rimed.cu 
enabledService: mail 
enabledService: smtp 
enabledService: pop3 
enabledService: pop3secured 
enabledService: imap 
enabledService: imapsecured 
enabledService: deliver 
enabledService: forward 
enabledService: senderbcc 
enabledService: recipientbcc 
enabledService: managesieve 
enabledService: managesievesecured 
enabledService: displayedInGlobalAddressBook 
enabledService: shadowaddress 
enabledService: jabber 
 
install the ejabberd with aptitude install ejabberd (In my case use Debian) 
 
here I put the main thing that I have modified in /etc/ejabberd/ejabberd.cfg 
------- 
%% Admin user 
{acl, admin, {user, " www ", " ssp.rimed.cu "}}. 
 
%% Hostname 
{hosts, [" ssp.rimed.cu "]}. 
 
To notice to comment the method of auntenficacion internal since will use the ldap method   
 
%% 
%% {auth_method, internal}. 
 
Using the ldap method   
 
%% 
%% Authentication using LDAP 
%% 
{auth_method, ldap}. 
%% 
%% List of LDAP servers: 
{ldap_servers, [" localhost "]}. 
%% 
%% Encryption of connection to LDAP servers (LDAPS): 
%% {ldap_encrypt, tls}. 
%% 
%% Port connect to LDAP server: 
{ldap_port, 389}. 
%% 
%% LDAP manager: 
{ldap_rootdn, " cn=Manager,dc=ssp,dc=rimed,dc=cu "}. 
%% 
%% Password to LDAP manager: 
{ldap_password, " MyPassword "}. 
%% 
%% Search bases of LDAP directory: 
{ldap_base, " dc=ssp,dc=rimed,dc=cu "}. 
%% 
%% LDAP attribute that holds user GOES: 
{ldap_uids, [{" mail ", " %u@ssp.rimed.cu "}]}. 
%% 
%% LDAP filter: 
{ldap_filter," (enabledService=jabber)"}. 
 
now what is is to restart the ejabberd and to allow connections to the ports of the ejabberd 5222 5223 and 5269 for the communication with other servants   
 
we publish /etc/default/iptables and we add ejabberd and the ports 
 
#http/https, smtp/smtps, pop3/pop3s, imap/imaps, ssh, ejabberd 
-TO INPUT -p tcp -m multiport--dport 80,443,25,465,110,995,143,993,587,465,22,5222,5223,5269 -j ACCEPT 
 
greetings from Cuba yrjc2004@gmail.com

2 (edited by Suno Ano 2010-01-06 03:19:14)

Re: How To: Ejabberd integration with iredmail.schema.

I am very much interested in this!

@Zhang
What do you think about making this part of core irm? Maybe optional using a command line switch when installing irm?

There have been talks about OpenFire integration already http://www.iredmail.org/forum/topic229- … eased.html

From a business deciders point of view, intergrating some IM/MUC service like OpenFIre is as substantial as is having a web management interface like iRedAdmin. Adding OpenFire or ejabberd would therefore be a very wise step forward. From a maintainers pov maybe ejabberd is favorable since there are Debian packages available.

3

Re: How To: Ejabberd integration with iredmail.schema.

Interesting.

OpenFire doesn't support virtual hosting, so i think ejabberd is the best XMPP IM solution.

I will test ejabberd later and try to make it an optional component, but no promise.

4

Re: How To: Ejabberd integration with iredmail.schema.

Zhang, I agree, ejabberd is probably the best way to go since maintainance will be no issue ... it's in Debian already, works within OpenVZ (yes, I have two ejabberd instances running inside OpenVZ) and is the most popular XMPP server from what I can tell. It's certainly the one supporting/providing most standards/features http://www.saint-andre.com/jabber/jsc/

As soon as I am not that busy with Pinax projects anymore, I plan on spending more time on irm again, helping with testing etc.

Keep up the good work folks! :-)

+1 for ejabber integration into IRM

5

Re: How To: Ejabberd integration with iredmail.schema.

Suno Ano wrote:

As soon as I am not that busy with Pinax projects anymore, I plan on spending more time on irm again, helping with testing etc.

Great.

I've tested ejabberd with virtual hosting support on CentOS 5.4 with iChat as jabber client, works as expected. Thanks yrjc2004 again smile

Post's attachments

ejabberd.virtual.hosting.png
ejabberd.virtual.hosting.png 77.4 kb, 2 downloads since 2010-01-06 

You don't have the permssions to download the attachments of this post.

6

Re: How To: Ejabberd integration with iredmail.schema.

ZhangHuangbin wrote:
Suno Ano wrote:

As soon as I am not that busy with Pinax projects anymore, I plan on spending more time on irm again, helping with testing etc.

Great.

I've tested ejabberd with virtual hosting support on CentOS 5.4 with iChat as jabber client, works as expected. Thanks yrjc2004 again smile

sorry I have forgot the firewall port 5280 for the administration of ejabberd
http://ip:5280/admin

7

Re: How To: Ejabberd integration with iredmail.schema.

What file do you edit? Actually ldap can handle remote jabber servers?

Thanks.

8

Re: How To: Ejabberd integration with iredmail.schema.

yrjc2004 wrote:
ZhangHuangbin wrote:
Suno Ano wrote:

As soon as I am not that busy with Pinax projects anymore, I plan on spending more time on irm again, helping with testing etc.

Great.

I've tested ejabberd with virtual hosting support on CentOS 5.4 with iChat as jabber client, works as expected. Thanks yrjc2004 again smile

sorry I have forgot the firewall port 5280 for the administration of ejabberd
http://ip:5280/admin

thanks yrjc2004 share.

http://www.howtoforge.com/virtual-mail- … buntu-9.10

9

Re: How To: Ejabberd integration with iredmail.schema.

Hi! Thanks for a great tutorial smile

I am trying to get ejabberd to work with shared roster. I have shared_roster_ldap enabled. But not sure of how to configure the ejabberd.cfg or the LDAP for storing och retrieving groups of the users.

My ejabberd.cfg looks like this:

{mod_shared_roster_ldap,[
   {ldap_base, "dc=ccvattugatan3,dc=se"},
    %%{ldap_filter, "(|(objectClass=mailUser))"},
    {ldap_filter, "(enabledService=jabber)"}. 
  {ldap_rfilter, "(objectClass=mailUser)"},
    {ldap_userdesc, "uid"}
  ]},



%% Authentication using LDAP
{auth_method, ldap}.
%% List of LDAP servers:
{ldap_servers, ["127.0.0.1"]}.
%% Encryption of connection to LDAP servers (LDAPS):
%% {ldap_encrypt, tls}.
%%{ldap_encrypt, none}.
%% Port connect to LDAP server:
{ldap_port, 389}.
%% LDAP manager:
%%{ldap_rootdn, "cn=Manager,dc=ccvattugatan3,dc=se"}.
{ldap_rootdn, "cn=vmail,dc=ccvattugatan3,dc=se"}.
%% Password to LDAP manager:
{ldap_password, "mypasswordXX"}.
%% Search bases of LDAP directory:
{ldap_base, "dc=ccvattugatan3,dc=se"}.
%%{ldap_rootdn, "cn=vmail,dc=ccvattugatan3,dc=se"}.
%% LDAP attribute that holds user GOES:
{ldap_uids, [{"mail", "%u@%d"}]}.
%% LDAP filter:
{ldap_filter, "(enabledService=jabber)"}.

Does anyone have a idea of what i´m doing wrong?

Users with the enableService jabber can login to the jabber server. but i dont know how to configure ldap och ejabberd to use shared roster.

10 (edited by shake 2010-09-11 20:09:36)

Re: How To: Ejabberd integration with iredmail.schema.

shared roster seem not support in ldap package install ejabberd.

I also hope to relize the feature.

11

Re: How To: Ejabberd integration with iredmail.schema.

shake wrote:

shared roster seem not support in ldap package install ejabberd.

I also hope to relize the feature.


shared roster is supported by the module mod_shared_roster_ldap

Only problem i dont know how to configure it for getting its info from ldap

12 (edited by shake 2010-09-11 20:19:45)

Re: How To: Ejabberd integration with iredmail.schema.

yes, but mod_shared_roster_ldap not include ejabberd package, you need add by manual.

what os and verison of ejabberd are you use ?

maybe you can check the manual of mod_shared_roster_ldap and find clue

13

Re: How To: Ejabberd integration with iredmail.schema.

shake wrote:

yes, but mod_shared_roster_ldap not include ejabberd package, you need add by manual.

what os and verison of ejabberd are you use ?


I have compiled and enabled the module with the ejabberd source tree.

The module itself is working with ejabberd. Just I dont know of how to configure the ldap or the paramaters of the ejabberd.cfg to get it working smile

i run iRedOS 0.6.0

14

Re: How To: Ejabberd integration with iredmail.schema.

http://ejabberd-msrl.alioth.debian.org/ … /msrl.html

this is for debian, but I think it would work in centos.

15

Re: How To: Ejabberd integration with iredmail.schema.

shake wrote:

http://ejabberd-msrl.alioth.debian.org/ … /msrl.html

this is for debian, but I think it would work in centos.


I have that module allready. The module is not the problem.

I dont know how to configure ldap, and set the correct settings in ejabberd.cfg. (see my config i my first post)

smile

16

Re: How To: Ejabberd integration with iredmail.schema.

http://ejabberd-msrl.alioth.debian.org/ … html#htoc8

this is for config.

17

Re: How To: Ejabberd integration with iredmail.schema.

Thank you!

The problem is i allready read that config section. And i´m all new to ldap. I dont know of how to configure it to get the shared roster to work sad

18

Re: How To: Ejabberd integration with iredmail.schema.

Suno Ano wrote:

I am very much interested in this!

@Zhang
What do you think about making this part of core irm? Maybe optional using a command line switch when installing irm?

There have been talks about OpenFire integration already http://www.iredmail.org/forum/topic229- … eased.html

From a business deciders point of view, intergrating some IM/MUC service like OpenFIre is as substantial as is having a web management interface like iRedAdmin. Adding OpenFire or ejabberd would therefore be a very wise step forward. From a maintainers pov maybe ejabberd is favorable since there are Debian packages available.

Hi,
@Zhan I have already implemented Open Fire Server with LDAP Schema at one of my clients place and it is working superb ... I think having this inbuilt with your server will be a great advantage ..
Indranil (India)

19

Re: How To: Ejabberd integration with iredmail.schema.

Thanks for your suggestion. Will you share implementation in your blog or somewhere?