Loading...
 

LDAP / Active directory


LDAP / iRedMail Configuration

I have an iRedMail mail server using an LDAP back end and tiki sites on a different machine.

I can successfully bind but cannot authenticate. phpLdapAdmin is running on the mail server and successfully finds users. In contrast I am using webmin on the tiki server and have set up the webmin ldapclient - it successfully binds but cannot find users.

I am running tiki 8.3 and iRedMail 0.7.0: Open Source Mail Server With Postfix, Dovecot, Amavisd, ClamAV, SpamAssassin, RoundCube On Debian Squeeze (Debian 6.0)

From the iRedMail configuration documentation for this specific installation:

OpenLDAP:
* LDAP suffix: dc=dejure,dc=us
* LDAP root dn: cn=Manager,dc=dejure,dc=us, password: secret1
* LDAP bind dn: cn=vmail,dc=dejure,dc=us, password: secret2
* LDAP admin dn: cn=vmailadmin,dc=dejure,dc=us, password: secret3
* LDAP base dn: o=domains,dc=dejure,dc=us
* LDAP admin base dn: o=domainAdmins,dc=dejure,dc=us

--------------------
My tiki configuration:
LDAP Bind
Host: mail.dejure.us
Port: 389
Write LDAP debug Information in Tiki Logs (checked)
Use SSL (ldaps)
Use TLS
LDAP Bind Type: Full:userattr=username, UserDN, BaseDN
Search scope: Subtree
LDAP version: 3
Base DN: o=domains,dc=dejure,dc=us

LDAP User
User DN: ou=mailuser,ou=Users,domainName=dejure.us,o=domains,dc=dejure,dc=us
User attribute: employeeNumber
User OC:inetOrgPerson
Realname attribute: displayName
Country attribute:
E-mail attribute: mail

Any help is appreciated.

Why Register?

Register at tiki.org and you'll be able to use the account at any *.tiki.org site, thanks to the InterTiki feature. A valid email address is required to receive site notifications and occasional newsletters. You can opt out of these items at any time.