Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Re: GroupOffice Integration
« on: May 19, 2011, 03:01:51 pm »I'm wondering if I use the LDAP module, instead of the IMAP module, if the groups in Zentyal will be enabled/recognized in Groupoffice?
Hi,
It should be possible to use the LDAP module.
Have a look here: http://www.group-office.com/wiki/IMAP_or_LDAP_authentication.
But I don't see how to map Zentyal groups...
2
Installation and Upgrades / Re: [Howto] Mediawiki with LDAP authentication
« on: May 03, 2011, 08:26:38 pm »
Another small error in the howto:
$wgLDAPDisableAutoCreate must be set at false
$wgLDAPDisableAutoCreate must be set at false
Code: [Select]
//Don't automatically create an account for a user if the account exists in LDAP
//but not in MediaWiki.
//Default: false.
$wgLDAPDisableAutoCreate = array("zentyal"=>false);
3
Installation and Upgrades / Re: Need: step by step guide installing Raid1 with or w/0 screenshot.
« on: April 30, 2011, 08:03:46 pm »
Hi,
Try to do a search on "Ubuntu server raid 1".
ex:
https://help.ubuntu.com/community/Installation/SoftwareRAID
Good luck
Try to do a search on "Ubuntu server raid 1".
ex:
https://help.ubuntu.com/community/Installation/SoftwareRAID
Good luck
4
Installation and Upgrades / Re: [samba] Error open file [...] NT_STATUS_ACCESS_DENIED
« on: April 26, 2011, 04:59:37 pm »
Solved.
The problem was the same on site. I uninstalled and reinstalled ebox-samba. A reboot later, the problem disappeared.
Very strange...
The problem was the same on site. I uninstalled and reinstalled ebox-samba. A reboot later, the problem disappeared.
Very strange...
5
Installation and Upgrades / [SOLVED] [samba] Error open file [...] NT_STATUS_ACCESS_DENIED
« on: April 25, 2011, 03:12:42 pm »
Hi,
I've a weird problem with samba. When I'm connected with the VPN (not yet tested on site), I cannot open a file I have just created.
So, I open my personal folder (idem with shared folders), create a new file "test.txt", open it, write a sentence, save it and exit. No problem. Now, when I try to open it again I have a permission problem...
I've activated the log of samba (log level = 3) and in the log:
But I can still, rename the file, move it and delete it without any error. I just cannot open it again?!?
I've check the ACL before and after the first edit. No change:
I've this problem with the PDC enable or not. And the problem is the same using the samba Ubuntu client or with a Windows XP box.
I still need to test this on site without VPN tomorrow.
Any help greatly will be greatly appreciate.
I've a weird problem with samba. When I'm connected with the VPN (not yet tested on site), I cannot open a file I have just created.
So, I open my personal folder (idem with shared folders), create a new file "test.txt", open it, write a sentence, save it and exit. No problem. Now, when I try to open it again I have a permission problem...
I've activated the log of samba (log level = 3) and in the log:
Code: [Select]
[...] smbd/open.c:424(open_file)
Error opening file new.txt (NT_STATUS_ACCESS_DENIED) (local_flags=0) (flags=0)
[...] smbd/error.c:60(error_packet_set)
error packet at smbd/error.c(136) cmd=45 (SMBopenX) NT_STATUS_ACCESS_DENIEDBut I can still, rename the file, move it and delete it without any error. I just cannot open it again?!?
I've check the ACL before and after the first edit. No change:
Code: [Select]
# getfacl new.txt
# file: new.txt
# owner: dmoraine
# group: __USERS__
user::rwx
group::r--
other::r--
I've this problem with the PDC enable or not. And the problem is the same using the samba Ubuntu client or with a Windows XP box.
I still need to test this on site without VPN tomorrow.
Any help greatly will be greatly appreciate.
6
Installation and Upgrades / Re: Web server SSL
« on: April 23, 2011, 03:46:30 pm »
Hi,
I'm facing the same problem...
/var/log/ebox/ebox.log
I've opened a new ticket: http://trac.zentyal.org/ticket/2843
I'm facing the same problem...
/var/log/ebox/ebox.log
Code: [Select]
DEBUG> Certificates.pm:311 EBox::CA::Model::Certificates::validateTypedRow - This service does not allow to change the certifcate common nameI've opened a new ticket: http://trac.zentyal.org/ticket/2843
7
Installation and Upgrades / Re: [Howto] Mediawiki with LDAP authentication
« on: April 21, 2011, 06:15:28 pm »
Hi mordor,
First of all, be sure to have the LDAP Authentication Plugin loaded in Mediawiki. Check the special page http://.../index.php/Special:Version. You should see the LDAP module indicated below Installed extensions.
If not, do:
This will enable the LDAP Authentication Plugin. That's something I've forgot in my too quick howto...
@+
First of all, be sure to have the LDAP Authentication Plugin loaded in Mediawiki. Check the special page http://.../index.php/Special:Version. You should see the LDAP module indicated below Installed extensions.
If not, do:
Code: [Select]
$ mwenext LdapAuthentication.phpThis will enable the LDAP Authentication Plugin. That's something I've forgot in my too quick howto...
@+
8
Installation and Upgrades / Re: [HOWTO] Mailman
« on: April 19, 2011, 02:31:27 am »
That's would be great to have it as module !!!
To finish this howto here are some troubleshooting tips:
If something goes wrong, check your logs:
1) [...]Recipient address rejected: User unknown in virtual mailbox table[...]
Check that Postfix is searching in the good aliases map:
2) The email is not received in the user mailbox.
Check which transport Postfix used to dispatch your email. You should find in your logs:
[...]to=<...@lists.domain.com>, relay=mailman[...]
If you find:
[...]to=<...@lists.domain.com>, relay=dovecot[...]
Check /etc/postfix/transport. You must have a line lists.domain.com mailman:.
And do:
Hope that it can help you.
Enjoy Mailman!!!
To finish this howto here are some troubleshooting tips:
If something goes wrong, check your logs:
Code: [Select]
$ tail -f /var/log/mail.infoSend a test email to your mailing list: mailman-request@lists.domain.com with the subject "help".1) [...]Recipient address rejected: User unknown in virtual mailbox table[...]
Check that Postfix is searching in the good aliases map:
Code: [Select]
$ postmap -q "mailman-request@lists.domain.com" hash:/var/lib/mailman/data/virtual-mailman
Should return
$ mailman-requestIf not, check alias_maps, alias_database, virtual_alias_maps in /etc/postfix/main.cf, and do:Code: [Select]
$ cd /var/lib/mailman/
$ sudo bin/genaliases2) The email is not received in the user mailbox.
Check which transport Postfix used to dispatch your email. You should find in your logs:
[...]to=<...@lists.domain.com>, relay=mailman[...]
If you find:
[...]to=<...@lists.domain.com>, relay=dovecot[...]
Check /etc/postfix/transport. You must have a line lists.domain.com mailman:.
And do:
Code: [Select]
$ sudo postmap /etc/postfix/transportThis point explains why you need a sub-domain to run mailman. Postfix will use different relays function of the domain. Zarafa uses /etc/postfix/transport as well. I haven't test this configuration...Hope that it can help you.
Enjoy Mailman!!!
9
Installation and Upgrades / [HOWTO] Mailman
« on: April 17, 2011, 04:33:04 pm »
Hi,
I've finally successfully installed Mailman on my Zentyal box. As requirement you must have a sub-domain dedicated to yours mailing lists (ex: lists.domain.com). Edit: This sub-domaincan not must be referred as a Virtual domain aliase in the Zential web administration (if not, you'll see Relay access denied in mail log).
This has been tested on a system without Zarafa installed. If you do have Zarafa installed further tests must be done.
There're quite a lots of files to modify. So let's go step-by-step...
First of all, install mailman package:
Create the required mailman list:
Check your mailman installation (check permission file) :
if there are errors, type :
Create the file /etc/apache2/conf.d/mailman-apache.conf
Next, modify mailman configuration. Here are the relevant parameters:
/etc/mailman/mm_cfg.py
Postfix must now be informed that we're going to use mailman. We have to modify the stubs files of Zential:
/usr/share/ebox/stubs/mail/main.cf.mas
And:
/usr/share/ebox/stubs/mail/transport.mas
Force the templates to be redeployed by restarting the Mail on the Zential dashboard.
You can now create your own mailing list via the web interface (http://.../mailman) or with the command line newlist.
Feedbacks are welcome!!!
I've finally successfully installed Mailman on my Zentyal box. As requirement you must have a sub-domain dedicated to yours mailing lists (ex: lists.domain.com). Edit: This sub-domain
This has been tested on a system without Zarafa installed. If you do have Zarafa installed further tests must be done.
There're quite a lots of files to modify. So let's go step-by-step...
First of all, install mailman package:
Code: [Select]
$ sudo aptitude install mailmanCreate the required mailman list:
Code: [Select]
$ newlist mailmanCheck your mailman installation (check permission file) :
Code: [Select]
$ cd /usr/lib/mailman
$ sudo bin/check_permsif there are errors, type :
Code: [Select]
$ sudo bin/check_perms –fCreate the file /etc/apache2/conf.d/mailman-apache.conf
Code: [Select]
#------------------------------------------------------------
# mailman
#------------------------------------------------------------
# We can find mailman here
ScriptAlias /cgi-bin/mailman /usr/lib/cgi-bin/mailman
# And the public archives:
Alias /pipermail/ /var/lib/mailman/archives/public/
Alias /mailman/public /var/lib/mailman/archives/public
# Logos:
Alias /images/mailman/ /usr/share/images/mailman/
# Redirect to mailman start page
RedirectMatch ^/mailman[/]*$ /cgi-bin/mailman/listinfo
<Directory /usr/lib/cgi-bin/mailman>
Options ExecCGI
AllowOverride None
order deny,allow
deny from all
allow from all
</Directory>
<Directory /var/lib/mailman/archives/public>
Options Indexes Includes FollowSymLinks
order deny,allow
deny from all
allow from all
</Directory>
<Directory /usr/share/images/mailman/>
AllowOverride None
Order allow,deny
Allow from all
</Directory>Next, modify mailman configuration. Here are the relevant parameters:
/etc/mailman/mm_cfg.py
Code: [Select]
DEFAULT_EMAIL_HOST = 'lists.domain.com'
DEFAULT_URL_HOST = 'lists.domain.com'
[...]
MTA='Postfix'
POSTFIX_STYLE_VIRTUAL_DOMAINS = ['lists.domain.com']Postfix must now be informed that we're going to use mailman. We have to modify the stubs files of Zential:
/usr/share/ebox/stubs/mail/main.cf.mas
Code: [Select]
[...]
alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
[...]
virtual_alias_maps = ldap:valiases, hash:/var/lib/mailman/data/virtual-mailman
[...]
# Mailman
owner_request_special = no
mailman_destination_recipient_limit = 1
transport_maps = hash:/etc/postfix/transport
And:
/usr/share/ebox/stubs/mail/transport.mas
Code: [Select]
[...]
lists.domain.com mailman:Force the templates to be redeployed by restarting the Mail on the Zential dashboard.
You can now create your own mailing list via the web interface (http://.../mailman) or with the command line newlist.
Feedbacks are welcome!!!
10
Installation and Upgrades / Re: GroupOffice Integration
« on: April 15, 2011, 12:31:44 pm »
Hi,
I did it and it works pretty well !!!
Open your browser to http://mydomain.lan/groupoffice. Log as admin/admin, activate the module Authentification IMAP and change the admin password !!!
Configure the authentification by IMAP:
And change imapauth_combo_domains and imapauth_default_domains with your favorite editor (Vim of course!!)
Maybe restart apache:
That's all.
I did it and it works pretty well !!!
Code: [Select]
$ sudo echo 'deb http://repos.groupoffice.eu/ threeseven main' >> /etc/apt/sources.list
$ sudo gpg --keyserver hkp://keyserver.ubuntu.com:11371 --recv-keys 01F1AE44
$ sudo gpg --export --armor 01F1AE44 | sudo apt-key add -
$ sudo aptitude update
$ sudo aptitude install groupoffice-com
$ sudo chown -R www-data:www-data /home/groupoffice/Open your browser to http://mydomain.lan/groupoffice. Log as admin/admin, activate the module Authentification IMAP and change the admin password !!!
Configure the authentification by IMAP:
Code: [Select]
$ sudo cp /usr/share/groupoffice/modules/imapauth/imapauth.config.php.example /etc/groupoffice/imapauth.config.phpAnd change imapauth_combo_domains and imapauth_default_domains with your favorite editor (Vim of course!!)
Maybe restart apache:
Code: [Select]
$ sudo /etc/init.d/apache2 restartThat's all.
11
Installation and Upgrades / [Howto] Mediawiki with LDAP authentication
« on: April 15, 2011, 11:28:56 am »
Hi,
This quick howto will help you to restrict the access of your Mediwiki to known Zentyal users.
In this sample, the user must be member of any Zentyal Group1 or Group2 (cf. $wgLDAPRequiredGroups).
First, you need to install the mediawiki-extensions:
Edit: Enable the module with:
Append the following code to /etc/mediawiki/LocalSettings.php and change all "dc=domain,dc=lan" with your Base DN:
That's all.
This quick howto will help you to restrict the access of your Mediwiki to known Zentyal users.
In this sample, the user must be member of any Zentyal Group1 or Group2 (cf. $wgLDAPRequiredGroups).
First, you need to install the mediawiki-extensions:
Code: [Select]
sudo aptitude install mediawiki-extensionsEdit: Enable the module with:
Code: [Select]
$ mwenext LdapAuthentication.phpAppend the following code to /etc/mediawiki/LocalSettings.php and change all "dc=domain,dc=lan" with your Base DN:
Code: [Select]
#######################
# LDAP Authentication #
#######################
$wgAuth = new LdapAuthenticationPlugin();
//The names of one or more domains you wish to use
$wgLDAPDomainNames = array("zentyal");
//The fully qualified name of one or more servers per domain you wish to use.
$wgLDAPServerNames = array("zentyal"=>"localhost");
//The type of encryption you would like to use when connecting to the LDAP server.
//Available options are "tls", "ssl", and "clear"
//Default: tls
$wgLDAPEncryptionType = array("zentyal"=>"clear");
//Base DNs. Group and User base DNs will be used if available; if they are not defined, the search
//will default to $wgLDAPBaseDNs
$wgLDAPBaseDNs = array("zentyal"=>"dc=domain,dc=lan");
//The search string to be used for straight binds to the directory; USER-NAME will be
//replaced by the username of the user logging in.
$wgLDAPSearchStrings = array("zentyal"=>"uid=USER-NAME,ou=Users,dc=domain,dc=lan");
//Munge the case of the username to lowercase when doing searches in groups
//Default: false
$wgLDAPLowerCaseUsername = array("zentyal"=>true);
//The objectclass of the groups we want to search for
$wgLDAPGroupObjectclass = array("zentyal"=>"eboxGroup");
//The attribute used for group members
$wgLDAPGroupAttribute = array("zentyal"=>"memberUid");
//The naming attribute of the group
$wgLDAPGroupNameAttribute = array("zentyal"=>"cn");
//An array of the groups the user is required to be a member of.
$wgLDAPRequiredGroups = array(
"zentyal"=>array(
"cn=Group1,ou=Groups,dc=domain,dc=lan",
"cn=Group2,ou=Groups,dc=domain,dc=lan")
);
//Option for getting debug output from the plugin. 1-3 available. 1 will show
//non-sensitive info, 2 will show possibly sensitive user info, 3+ will show
//sensitive system info. Setting this on a live public site is probably a bad
//idea.
//Default: 0
$wgLDAPDebug = 0;
$wgDebugLogGroups["ldap"] = "/tmp/mediawiki-debug.log" ;
//Don't automatically create an account for a user if the account exists in LDAP
//but not in MediaWiki.
//Default: false.
$wgLDAPDisableAutoCreate = array("zentyal"=>false);
# Disable reading by anonymous users
$wgGroupPermissions['*']['read'] = false;
$wgGroupPermissions['*']['createaccount'] = false;
$wgGroupPermissions['*']['edit'] = false;
$wgGroupPermissions['*']['createpage'] = false;
$wgGroupPermissions['*']['createtalk'] = false;
$wgGroupPermissions['*']['createaccount'] = false;
# But allow them to access the login page or else there will be no way to log in!
# NOTE: You also need to provide access here to the .css and .js files that the
# allowed pages attempt to load; otherwise, users will get errors on the page
# when they attempt to load it (IE will complain about the errors;
# FF will show them in its error console)
# [You also might want to add access to "Main Page", "Wikipedia:Help", etc.)
$wgWhitelistRead = array ("Special:Userlogin", "MediaWiki:Common.css", "MediaWiki:Common.js", "MediaWiki:Monobook.css", "MediaWiki:Monobook.js", "-", "Main Page");
That's all.
12
Installation and Upgrades / [Mail] Changing hostname
« on: April 14, 2011, 06:33:20 pm »
Hi all,
I need to change the hostname but I can't get access to Mail --> General after this change.
I've tried to uninstall (+ purge) all email modules and reinstall them. Problem stays...
I'm running out of solution. Any help greatly appreciate.
Regards
I need to change the hostname but I can't get access to Mail --> General after this change.
Code: [Select]
$ tail /var/log/ebox/error.log
[...]
hostname: Name or service not knownI've tried to uninstall (+ purge) all email modules and reinstall them. Problem stays...
I'm running out of solution. Any help greatly appreciate.
Regards
Pages: [1]