Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - hjt

Pages: [1]
Email and Groupware / [SOLVED] Out of office reply
« on: November 04, 2019, 02:58:59 pm »
Out of the box the out-of-office notifications are not enabled in Zentyal.
Is there any reason not to enable this?

For anyone interested in this, this requires modification of the stubs/mason files.
The standard stub is first copied from the default location to the /etc/zentyal/stubs location.
This is where zentyal looks for modified mason files. This way after an upgrade, you have the new stubs in /usr/share/zentyal/stubs and the custom ones in /etc/zentyal/stubs.

sudo mkdir /etc/zentyal/stubs
sudo mkdir /etc/zentyal/stubs/sogo
cp /usr/share/zentyal/stubs/sogo/sogo.conf.mas /etc/zentyal/stubs/sogo/
sudo nano /etc/zentyal/stubs/sogo/sogo.conf.mas

find the line   
SOGoVacationEnabled = NO;
and change to:
SOGoVacationEnabled = YES;

save the file and restart SOGo from the dashboard.

Now when you login to your webmail, click the settings icon behind your name, click " mail", now you see the out-of-office option.

Other modules / [SOLVED] OpenVPN authorisation by common name
« on: November 04, 2019, 12:47:48 pm »
I have a working VPN server, I can connect and ping the network.

In the server settings of the (Open)VPN there is an option "Client autorisation by common name"
The description says : "If enabled, only certificates whos common name begins with the selected value will be able to connect"

My server certificate common name is "vpn-client" (confusing, but to indicate this server is for mobile clients, as opposed to lan2lan)
My client certificates common name is "vpn-client.henkjan" and I also tried "vpn-client henkjan"
The client autorisation by common name is set to "vpn-client"

In my opinion the command name of the client starts with " vpn-client", so I expected it to work.
The connection works when I set "Client authorisation by common name" to disabled.
Enabling the setting gives in the VPN log file :

VERIFY X509NAME ERROR: C=NL, ST=Undefined, L=Town, O=Company, CN=vpn-client henkjan, must be vpn-client

So it appears to be checking the complete common name, as opposed to only the start.

Am I missing something?

Email and Groupware / Fetchmail and Gmail: Oauth required [SOLVED]
« on: February 21, 2019, 01:46:06 am »
Apparently Google is tightening security, and closing down Imap(s) an POP3(s) access to  Gmail accounts.
(I am aware of the "Allow less secure app", but even when this is set access is not allowed anymore)

On both my production server (5.0) and a clean test install (6.0) the /var/log/mail.log throws errors:
Fetchmail Query status=3 (AUTHFAIL) Authorization failure on ######

It seems that Oauth is now required to get the mails from Gmail.
I found an article that covers giving Fetchmail (6.3 and 6.4) support for Oauth2 :

But I cannot figure out how to get this into the Zentyal server. Anyone succeeded at this?

Pages: [1]