<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hello Mr. freeipa-users<br>
<br>
<div class="moz-cite-prefix">On 6/26/2014 2:17 AM, Petr Spacek
wrote:<br>
</div>
<blockquote cite="mid:53ABC920.3020001@redhat.com" type="cite">On
25.6.2014 15:03, Dave Gonzalez wrote:
<br>
<blockquote type="cite">Hey again guys,
<br>
<br>
I know and understand there are topics that draw more interest
and attention
<br>
than others but I'd really need to insist on a *working*
<br>
FreeIPA+Postfix+Dovecto tutorial tested by any members of the
community?.
<br>
<br>
I'd like to deploy this setup for my company so that some 20+
users can
<br>
authenticate OTP-style or SSO-style to Services on my current
setup which
<br>
include Openfire, Asterisk.
<br>
<br>
I'd really appreciate a bit more attention to something that
many users will
<br>
like me thank and appreciate.
<br>
</blockquote>
<br>
Hello,
<br>
<br>
Do you have any particular problem with how-tos in Mail Services
section?
<br>
<a class="moz-txt-link-freetext" href="http://www.freeipa.org/page/HowTos#Mail_Services">http://www.freeipa.org/page/HowTos#Mail_Services</a>
<br>
</blockquote>
<br>
It's a very very valuable effort which has helped me greatly, so I'm
not complaining. There's more like misleading information and at
some points incomplete.<br>
<br>
For instance. I could point out that from the Dovecot part the
author is using the "protocols" statement which is now obsolete.
(<a class="moz-txt-link-freetext" href="http://www.freeipa.org/page/Dovecot_IMAPS_Integration_with_FreeIPA_using_Single_Sign_On">http://www.freeipa.org/page/Dovecot_IMAPS_Integration_with_FreeIPA_using_Single_Sign_On</a>)<br>
<br>
quote<br>
<h2 style="margin: 10px 0px 0px; font-family: 'Venturis Sans', 'Open
Sans', sans-serif; font-weight: normal; line-height: 40px; color:
rgb(85, 87, 83); text-rendering: optimizelegibility; font-size:
24px; padding-top: 0.2em; font-style: normal; font-variant:
normal; letter-spacing: normal; orphans: auto; text-align: start;
text-indent: 0px; text-transform: none; white-space: normal;
widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;
background-color: rgb(255, 255, 255);"><span class="mw-headline"
id="Edit_.2Fetc.2Fdovecot.2Fdovecot.conf_to_allow_imap">Edit
/etc/dovecot/dovecot.conf to allow imap</span></h2>
<p style="margin: 0px 0px 10px; color: rgb(46, 52, 54); font-family:
'Source Sans Pro', sans-serif; font-size: 14px; font-style:
normal; font-variant: normal; font-weight: normal; letter-spacing:
normal; line-height: 20px; orphans: auto; text-align: start;
text-indent: 0px; text-transform: none; white-space: normal;
widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;
background-color: rgb(255, 255, 255);">Find</p>
<pre style="padding: 9.5px; font-family: Monaco, Menlo, Consolas, 'Courier New', monospace; font-size: 13px; color: rgb(51, 51, 51); border-top-left-radius: 4px; border-top-right-radius: 4px; border-bottom-right-radius: 4px; border-bottom-left-radius: 4px; display: block; margin: 0px 0px 10px; line-height: 20px; word-break: break-all; word-wrap: break-word; white-space: pre-wrap; border: 1px solid rgba(0, 0, 0, 0.14902); font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; background-color: rgb(245, 245, 245);">#protocols = imap pop3 lmtp
</pre>
<p style="margin: 0px 0px 10px; color: rgb(46, 52, 54); font-family:
'Source Sans Pro', sans-serif; font-size: 14px; font-style:
normal; font-variant: normal; font-weight: normal; letter-spacing:
normal; line-height: 20px; orphans: auto; text-align: start;
text-indent: 0px; text-transform: none; white-space: normal;
widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;
background-color: rgb(255, 255, 255);">and replace with</p>
<pre style="padding: 9.5px; font-family: Monaco, Menlo, Consolas, 'Courier New', monospace; font-size: 13px; color: rgb(51, 51, 51); border-top-left-radius: 4px; border-top-right-radius: 4px; border-bottom-right-radius: 4px; border-bottom-left-radius: 4px; display: block; margin: 0px 0px 10px; line-height: 20px; word-break: break-all; word-wrap: break-word; white-space: pre-wrap; border: 1px solid rgba(0, 0, 0, 0.14902); font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; background-color: rgb(245, 245, 245);">protocols = imap
</pre>
<br class="Apple-interchange-newline">
end quote<br>
<br>
Another is where you add the "mailusers" group and the corresponding
user, they never mention that you need to get a new ticket with
"kinit admin"<br>
<br>
quote<br>
<h2 style="margin: 10px 0px 0px; font-family: 'Venturis Sans', 'Open
Sans', sans-serif; font-weight: normal; line-height: 40px; color:
rgb(85, 87, 83); text-rendering: optimizelegibility; font-size:
24px; padding-top: 0.2em; font-style: normal; font-variant:
normal; letter-spacing: normal; orphans: auto; text-align: start;
text-indent: 0px; text-transform: none; white-space: normal;
widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;
background-color: rgb(255, 255, 255);"><span class="mw-headline"
id="Create_new_IPA_group_for_mailbox_access">Create new IPA
group for mailbox access</span></h2>
<p style="margin: 0px 0px 10px; color: rgb(46, 52, 54); font-family:
'Source Sans Pro', sans-serif; font-size: 14px; font-style:
normal; font-variant: normal; font-weight: normal; letter-spacing:
normal; line-height: 20px; orphans: auto; text-align: start;
text-indent: 0px; text-transform: none; white-space: normal;
widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;
background-color: rgb(255, 255, 255);">From your IPA server,
create a new group for your users to store their mailbox</p>
<pre style="padding: 9.5px; font-family: Monaco, Menlo, Consolas, 'Courier New', monospace; font-size: 13px; color: rgb(51, 51, 51); border-top-left-radius: 4px; border-top-right-radius: 4px; border-bottom-right-radius: 4px; border-bottom-left-radius: 4px; display: block; margin: 0px 0px 10px; line-height: 20px; word-break: break-all; word-wrap: break-word; white-space: pre-wrap; border: 1px solid rgba(0, 0, 0, 0.14902); font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; background-color: rgb(245, 245, 245);">[root@ds01 ~]# ipa group-add
Group name: mailusers
Description: Mail User Group
--------------------
Added group "mailusers"
--------------------
Group name: mailusers
Description: Mail User Group
GID: 1427200003
[root@ds01 ~]#
</pre>
<br class="Apple-interchange-newline">
end quote<br>
<br>
For many people that'd be no problem as some of the users are more
experienced than others, but for me it was apain to try to debug the
ticket issue because though I've been a Linux user for a long time
am a total n00b when it comes to Kerberos, IPA and LDAP.<br>
<br>
I promise that when I get my setup done, I've taken notes that I'll
add to the wiki to help others, I've been struggling to get this
setup working for two weeks now and the problem is that I need to
iumplement this for my company to replace existing email system.<br>
<br>
Kind regards.<br>
<br>
-- Cheers DavidG<br>
<blockquote cite="mid:53ABC920.3020001@redhat.com" type="cite">
<br>
The wiki is open to anyone with Fedora account so feel free to fix
any bugs you find in the how-tos when you try them.
<br>
<br>
If you encounter some hard problem then please report which
versions you use, what you did, what doesn't work etc. so we can
help you.
<br>
<br>
Have a nice day!
<br>
<br>
</blockquote>
<br>
</body>
</html>