« previous next »
Pages: [1]

Author Topic: [SOLVED] Zimbra auto provisioning from Zentyal LDAP  (Read 6199 times)

agd

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
[SOLVED] Zimbra auto provisioning from Zentyal LDAP
« on: April 23, 2014, 11:03:14 am »
THE PROBLEM:
The auto provisioning zimbra not working.

WHAT WORKS:
If exists ldap user on Zentyal server and he is member of mail group. I can create an account on Zimbra and I setting the dn for external authentication "uid=userX,ou=users,dc=organization,dc=net". Then the user can be authenticated.

WHAT NOT WORKS:
If I create a new user on Zentyal server and I assign to the mail group; Zimbra must be auto provisioned and the user should be able to authenticate. But this fails.

ENVIRONMENT :
Server 1 : Zentyal LDAP
Server 2 : Zimbra

I HAVE DONE :
In the web administration interface zimbra :
Configure -> Domains - > right click on the domain
1 - Authentication : External LDAP.
2 - LDAP://192.168.1.222:390
3 - LDAP filter : (&(|(objectclass=inetOrgPerson))|(memberof=cn=mail,ou=groups,dc=organization,dc=net))(uid=%u)) "
4 - LDAP based search: ou=Users,dc=organization,dc=net
5 - Bind DN . Zentyalro cn=,dc=organization,dc=net
6 - Bind password . Xxxxxxxx

I test authentication from the web interface of zimbra and if the user exists and the password is correct show "success" if the password is incorrect show "error" .

Zimbra console (config for automatic provisioning):
[root @ zt ~] # su zimbra
[ zimbra @ zt root] $ zmprov
prov > md organization.net zimbraAutoProvMode LAZY
prov > md organization.net zimbraAutoProvLdapURL ldap://192.168.1.220:390
prov > md organization.net zimbraAutoProvLdapAdminBindDn " zentyalro cn=,dc=organization,dc=net"
prov > md organization.net zimbraAutoProvLdapAdminBindPassword " xxxxxxxx "
prov > md organization.net zimbraAutoProvLdapSearchFilter " (&(|(objectclass=inetOrgPerson)((memberof=cn=mail,ou=Groups,dc=organization,dc=net))(uid=%u)) "
prov> md organization.net zimbraAutoProvLdapSearchBase "ou=Users,dc=organization,dc=net"
prov> md organization.net +zimbraAutoProvAttrMap description=description +zimbraAutoProvAttrMap cn=displayName +zimbraAutoProvAttrMap givenName=givenName +zimbraAutoProvAttrMap sn=sn
prov> exit
[ zimbra @ zt root] $ zmcontrol restart

What am I doing wrong? What remains to be done?
« Last Edit: April 28, 2014, 10:05:55 am by agd »
Logged

agd

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: Zimbra auto provisioning from Zentyal LDAP
« Reply #1 on: April 24, 2014, 07:47:52 pm »
Nobody uses Zimbra with Zentyal?
Logged

agd

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: Zimbra auto provisioning from Zentyal LDAP
« Reply #2 on: April 28, 2014, 08:26:31 am »
anyone know if it works?
Logged

agd

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: Zimbra auto provisioning from Zentyal LDAP
« Reply #3 on: April 28, 2014, 10:03:27 am »
Solved, i forgot execute:

prov> md myorganization.net zimbraAutoProvAuthMech LDAP
Logged
Pages: [1]
« previous next »