Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: DBMail: users

LDAP Schema

  

 
DBMail users RSS feed   Index | Next | Previous | View Threaded


gordan at bobich

May 21, 2009, 1:10 PM

Post #1 of 9 (1865 views)
Permalink
LDAP Schema
Hi,

Can anyone confirm if this is the most up to date LDAP schema that
should be used with 2.2.11?
http://svn.ic-s.nl/websvn/filedetails.php?repname=DBMail&path=%2Ftrunk%2Fdbmail%2Fdbmail.schema&rev=1828&sc=0

Thanks.

Gordan
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


vulture at netvulture

May 21, 2009, 3:27 PM

Post #2 of 9 (1773 views)
Permalink
Re: LDAP Schema [In reply to]
See -
http://git.dbmail.eu/cgit/cgit.cgi/paul/dbmail/tree/dbmail.schema?h=dbmail_2_2
We no longer use svn. I'm not sure as to how correct this schema is, but
it should be better than what that old svn version shows.

-Jon


Gordan Bobic wrote:
> Hi,
>
> Can anyone confirm if this is the most up to date LDAP schema that
> should be used with 2.2.11?
> http://svn.ic-s.nl/websvn/filedetails.php?repname=DBMail&path=%2Ftrunk%2Fdbmail%2Fdbmail.schema&rev=1828&sc=0
>
> Thanks.
>
> Gordan
> _______________________________________________
> DBmail mailing list
> DBmail [at] dbmail
> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
>
>


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


gordan at bobich

May 21, 2009, 3:41 PM

Post #3 of 9 (1785 views)
Permalink
Re: LDAP Schema [In reply to]
OK, I got the one from the latest tar ball, thanks.

Now that I tried that, I have another question - I have an existing LDAP
database that is already used in production to authenticate
UNIX/Windows/Samba accounts.

I have gotten as far as authenticating IMAP users via the LDAP database
(it seems that this doesn't require the dbmailUsers class), but lmtpd,
clearly, won't work because the mailbox aliases don't exist.

I added the schema to my OpenLDAP slapd.conf and I can add new dbmail
users using the dbmail-users tool, but I cannot convert existing users
to include the dbmailUsers objectClass. I tried adding it manually, but
I get objectClass class violations, and dbmail-users -c does the same.
dbmail-users -a says the user already exists.

How do I add dbmailUsers objectClass to existing users to I can
authenticate dbmail off the same user account?

Thanks.

Gordan

Jonathan Feally wrote:
> See -
> http://git.dbmail.eu/cgit/cgit.cgi/paul/dbmail/tree/dbmail.schema?h=dbmail_2_2
> We no longer use svn. I'm not sure as to how correct this schema is, but
> it should be better than what that old svn version shows.
>
> -Jon
>
>
> Gordan Bobic wrote:
>> Hi,
>>
>> Can anyone confirm if this is the most up to date LDAP schema that
>> should be used with 2.2.11?
>> http://svn.ic-s.nl/websvn/filedetails.php?repname=DBMail&path=%2Ftrunk%2Fdbmail%2Fdbmail.schema&rev=1828&sc=0
>>
>> Thanks.
>>
>> Gordan
>> _______________________________________________
>> DBmail mailing list
>> DBmail [at] dbmail
>> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
>>
>>
>
>

_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


vulture at netvulture

May 21, 2009, 3:53 PM

Post #4 of 9 (1772 views)
Permalink
Re: LDAP Schema [In reply to]
I'm not a dbmail LDAP user so I can't help you much on getting your
directory setup. As far as I know, you do not need to add users to the
database as upon delivery or login, the account would automatically be
created. Paul would know how it works better. You should have also read
README.ldap from the tarball.

-Jon

Gordan Bobic wrote:
> OK, I got the one from the latest tar ball, thanks.
>
> Now that I tried that, I have another question - I have an existing LDAP
> database that is already used in production to authenticate
> UNIX/Windows/Samba accounts.
>
> I have gotten as far as authenticating IMAP users via the LDAP database
> (it seems that this doesn't require the dbmailUsers class), but lmtpd,
> clearly, won't work because the mailbox aliases don't exist.
>
> I added the schema to my OpenLDAP slapd.conf and I can add new dbmail
> users using the dbmail-users tool, but I cannot convert existing users
> to include the dbmailUsers objectClass. I tried adding it manually, but
> I get objectClass class violations, and dbmail-users -c does the same.
> dbmail-users -a says the user already exists.
>
> How do I add dbmailUsers objectClass to existing users to I can
> authenticate dbmail off the same user account?
>
> Thanks.
>
> Gordan
>
> Jonathan Feally wrote:
>
>> See -
>> http://git.dbmail.eu/cgit/cgit.cgi/paul/dbmail/tree/dbmail.schema?h=dbmail_2_2
>> We no longer use svn. I'm not sure as to how correct this schema is, but
>> it should be better than what that old svn version shows.
>>
>> -Jon
>>
>>
>> Gordan Bobic wrote:
>>
>>> Hi,
>>>
>>> Can anyone confirm if this is the most up to date LDAP schema that
>>> should be used with 2.2.11?
>>> http://svn.ic-s.nl/websvn/filedetails.php?repname=DBMail&path=%2Ftrunk%2Fdbmail%2Fdbmail.schema&rev=1828&sc=0
>>>
>>> Thanks.
>>>
>>> Gordan
>>> _______________________________________________
>>> DBmail mailing list
>>> DBmail [at] dbmail
>>> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
>>>
>>>
>>>
>>
>
> _______________________________________________
> DBmail mailing list
> DBmail [at] dbmail
> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
>
>


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


gordan at bobich

May 21, 2009, 4:01 PM

Post #5 of 9 (1782 views)
Permalink
Re: LDAP Schema [In reply to]
Jonathan Feally wrote:
[...]
> You should have also read README.ldap from the tarball.

Indeed I did, but the documentation isn't exactly extensive. :(

Gordan
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


aaron at serendipity

May 21, 2009, 4:02 PM

Post #6 of 9 (1782 views)
Permalink
Re: LDAP Schema [In reply to]
Please read the DBMail config file's [LDAP] section. It is designed to
interact with essentially arbitrary schemas, you simply tell it what the
field names are it'll use them. You are encouraged to use your existing
schema as much as possible.

There's no need to convert your users over to dbmailUsers. You can add the
dbmailUsers schema in addition to your existing user schemas in order to
get the additional dbmail fields, but you can just as well re-use other
fields available in your schema.

Since you mention Windows users authenticating, are you working with an
Active Directory server?

Aaron


On Thu, 21 May 2009 23:41:53 +0100, Gordan Bobic <gordan [at] bobich> wrote:
> OK, I got the one from the latest tar ball, thanks.
>
> Now that I tried that, I have another question - I have an existing LDAP
> database that is already used in production to authenticate
> UNIX/Windows/Samba accounts.
>
> I have gotten as far as authenticating IMAP users via the LDAP database
> (it seems that this doesn't require the dbmailUsers class), but lmtpd,
> clearly, won't work because the mailbox aliases don't exist.
>
> I added the schema to my OpenLDAP slapd.conf and I can add new dbmail
> users using the dbmail-users tool, but I cannot convert existing users
> to include the dbmailUsers objectClass. I tried adding it manually, but
> I get objectClass class violations, and dbmail-users -c does the same.
> dbmail-users -a says the user already exists.
>
> How do I add dbmailUsers objectClass to existing users to I can
> authenticate dbmail off the same user account?
>
> Thanks.
>
> Gordan
>
> Jonathan Feally wrote:
>> See -
>>
http://git.dbmail.eu/cgit/cgit.cgi/paul/dbmail/tree/dbmail.schema?h=dbmail_2_2
>> We no longer use svn. I'm not sure as to how correct this schema is, but

>> it should be better than what that old svn version shows.
>>
>> -Jon
>>
>>
>> Gordan Bobic wrote:
>>> Hi,
>>>
>>> Can anyone confirm if this is the most up to date LDAP schema that
>>> should be used with 2.2.11?
>>>
http://svn.ic-s.nl/websvn/filedetails.php?repname=DBMail&path=%2Ftrunk%2Fdbmail%2Fdbmail.schema&rev=1828&sc=0
>>>
>>> Thanks.
>>>
>>> Gordan
>>> _______________________________________________
>>> DBmail mailing list
>>> DBmail [at] dbmail
>>> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
>>>
>>>
>>
>>
>
> _______________________________________________
> DBmail mailing list
> DBmail [at] dbmail
> http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


gordan at bobich

May 21, 2009, 4:06 PM

Post #7 of 9 (1782 views)
Permalink
Re: LDAP Schema [In reply to]
Aaron Stone wrote:
> Please read the DBMail config file's [LDAP] section. It is designed to
> interact with essentially arbitrary schemas, you simply tell it what the
> field names are it'll use them. You are encouraged to use your existing
> schema as much as possible.
>
> There's no need to convert your users over to dbmailUsers. You can add the
> dbmailUsers schema in addition to your existing user schemas in order to
> get the additional dbmail fields, but you can just as well re-use other
> fields available in your schema.

I'm aware of all that, and the default schema by and large does that.
But at the same time I see no reason not to add the dbmailUser object
attributes to users as per this:

USER_OBJECTCLASS = top,account,dbmailUser

Other than the fact that I can't seem to add the object class to an
existing user to a class violation somewhere. :-/

> Since you mention Windows users authenticating, are you working with an
> Active Directory server?

No, it's OpenLDAP. The Windows clients are authenticated with pGina.

Gordan
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


paul at nfg

May 22, 2009, 12:31 AM

Post #8 of 9 (1786 views)
Permalink
Re: LDAP Schema [In reply to]
Gordan Bobic wrote:

> USER_OBJECTCLASS = top,account,dbmailUser
>
> Other than the fact that I can't seem to add the object class to an
> existing user to a class violation somewhere. :-/

then you are most likely missing a required attribute. dbmailUser *must*
have both a 'uid' and a 'mail' attribute.

below is the format I've used in the past. Adapt it for your needs and
feed it to ldapmodify.

----<cut>----
dn: uid=gordan,ou=People,dc=mydomain,dc=org
changetype: modify
add: objectClass
objectClass: dbmailUser
-
add: mail
mail: gordan [at] mydomain
----<cut>----



--
________________________________________________________________
Paul Stevens paul at nfg.nl
NET FACILITIES GROUP GPG/PGP: 1024D/11F8CD31
The Netherlands________________________________http://www.nfg.nl
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail


gordan at bobich

May 22, 2009, 2:35 AM

Post #9 of 9 (1778 views)
Permalink
Re: LDAP Schema [In reply to]
Thanks, that did the trick. I think I had misunderstood the way the mail
entry works. I thought I needed an entry there like "username", and then
attach additional email aliases pointing to that. Serves me right for
trying to do this at 1am. Thanks for clearing it up. :)

Gordan

On Fri, 22 May 2009 09:31:36 +0200, Paul Stevens <paul [at] nfg> wrote:
> Gordan Bobic wrote:
>
>> USER_OBJECTCLASS = top,account,dbmailUser
>>
>> Other than the fact that I can't seem to add the object class to an
>> existing user to a class violation somewhere. :-/
>
> then you are most likely missing a required attribute. dbmailUser *must*
> have both a 'uid' and a 'mail' attribute.
>
> below is the format I've used in the past. Adapt it for your needs and
> feed it to ldapmodify.
>
> ----<cut>----
> dn: uid=gordan,ou=People,dc=mydomain,dc=org
> changetype: modify
> add: objectClass
> objectClass: dbmailUser
> -
> add: mail
> mail: gordan [at] mydomain
> ----<cut>----
_______________________________________________
DBmail mailing list
DBmail [at] dbmail
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail

DBMail users RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.