1

Topic: AD authentification problem

==== Provide basic information to help troubleshoot ====
- iRedMail version: iRedMail-0.7.3
- Linux/BSD distribution name and version: Ubuntu Server 10.04.3
- Any related log? Log is helpful for troubleshooting.
====

I followed your tutorial for AD + iRedMail integration and everything works fine, except for the users who are restricted to one computer of their department (the userWorkstations entry in AD). These users can´t login until I delete the usersWorkstations entry in AD. I`ve got no idea how to fix it.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: AD authentification problem

I didn't use "userWorkstations" before, may i know how you use it? Any sample values?

3 (edited by patient212 2011-10-18 14:06:35)

Re: AD authentification problem

ZhangHuangbin wrote:

I didn't use "userWorkstations" before, may i know how you use it? Any sample values?

Thanks for the reply.

You just fill in the name of the computer(s) the user is allowed to use.

Here is a screenshot, but unfortunately it´s in german...

Post's attachments

AD_userWorkstations.png
AD_userWorkstations.png 16.41 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

4

Re: AD authentification problem

i'm afraid that we cannot achieve this restriction with LDAP filter directly. Implementing this restriction with the iRedAPD (postfix policy server) is better. iRedAPD is part of iRedMail, it should be already installed on your server, but you have to modify some source code to make it work with AD and "userWorkstation".