Hi All, Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send me the procedure & the installables for the same. It's urgent. Regards, Sandeep
Now, send attachments up to 25MB with Yahoo! India Mail. Learn how. http://in.overview.mail.yahoo.com/photos
On Thursday 24 Sep 2009 9:41:27 am Sandeep Deshmukh wrote:
Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send me the procedure & the installables for the same. It's urgent.
Qmail is non-free software and so is AD and win2k3
On 9/24/09, Kenneth Gonsalves lawgon@au-kbc.org wrote:
Qmail is non-free software and so is AD and win2k3
qmail was always free. It was released into public domain in Nov 2007. You can read
http://en.wikipedia.org/wiki/Qmail
Before it was released into public domain, the author DJB had a licensing term where you had to have the binary generated on the machine where you needed qmail to run.
On Thursday 24 Sep 2009 12:37:02 pm Manvendra Bhangui wrote:
Qmail is non-free software and so is AD and win2k3
qmail was always free. It was released into public domain in Nov 2007.
please find out the meaning of 'free software' before you make statements like this. Qmail does not satisfy the 4 freedoms - and it never did
You can read
yes, I learnt to do so when I was about 4-5 years old (how did you know?)
wikipedia is not an authoritative source of information - please do not quote it to bolster your arguments
On 9/24/09, Kenneth Gonsalves lawgon@au-kbc.org wrote:
On Thursday 24 Sep 2009 12:37:02 pm Manvendra Bhangui wrote:
Qmail is non-free software and so is AD and win2k3
qmail was always free. It was released into public domain in Nov 2007.
please find out the meaning of 'free software' before you make statements like this. Qmail does not satisfy the 4 freedoms - and it never did
You can read
yes, I learnt to do so when I was about 4-5 years old (how did you know?)
wikipedia is not an authoritative source of information - please do not quote it to bolster your arguments
The author of qmail I am sure knows more than you. In the words of DJB (author of qmail)
http://cr.yp.to/qmail/dist.html
"I hereby place the qmail package (in particular, qmail-1.03.tar.gz, with MD5 checksum 622f65f982e380dbe86e6574f3abcb7c) into the public domain. You are free to modify the package, distribute modified versions, etc.
This does not mean that modifications are encouraged! Please take time to ensure that your distribution of qmail supports exactly the same interface as everyone else's. In particular, if you move files, please set up symbolic links from the original locations, so that you don't frivolously break scripts that work everywhere else. "
Sandeep,
How does it matter to list if it's urgent for you?
In any case if it is that urgent, why don't your company pay few qmail hackers around and get things done.
Thanks & Regards, Mitul Limbani, Founder & CEO, Enterux Solutions Pvt. Ltd., The Enterprise Linux Company (r), http://www.enterux.com http://www.entVoice.com
On 24-Sep-2009, at 9:41 AM, Sandeep Deshmukh sandeepd5@yahoo.co.in wrote:
Hi All, Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send me the procedure & the installables for the same. It's urgent. Regards, Sandeep
Now, send attachments up to 25MB with Yahoo! India Mail. Learnhow. http://in.overview.mail.yahoo.com/photos
On Thu, Sep 24, 2009 at 11:20 AM, Mitul Limbani mitul@enterux.com wrote:
Sandeep,
How does it matter to list if it's urgent for you?
In any case if it is that urgent, why don't your company pay few qmail hackers around and get things done.
Thanks & Regards, Mitul Limbani,
Hi Mitul,
Qmail is not maintained for years. As per wikipedia.
quote
The core qmail package has not been updated for many years.[6] New features are provided by third party patches, such as net-qmail. This is a benefit for some users, from not needing to apply patches continuously, and a liability for other users, particularly those who rely on authentication mechanisms that post-date qmail.
unquote
Regards,
On 09/24/2009 09:41 AM, Sandeep Deshmukh wrote:
Hi All, Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send me the procedure& the installables for the same. It's urgent. Regards, Sandeep
Procedure: http://www.lmgtfy.com/?q=qmail+Active+Directory installers: http://www.qmail.org/ http://tinyurl.com/i5q4
HTH, cheers, - steve
On 9/24/09, Sandeep Deshmukh sandeepd5@yahoo.co.in wrote:
Hi All, Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send
What you require is a program confirming to checkpassword(3) interface. Can you google and see if anyone has written a checkpassword program for AD. There are other workaround you can do like creating a user in ldap whenever a user is added to AD and modifying the password in ldap whenever you modify the password in AD. I had migrated a big BPO out of exchange (and using AD) to qmail. I have the documentation archived and will send them to you offline in case you require them.
When you are talking about authenticating users from AD are you talking about authenticated SMTP only or also about other services like IMAP/POP3 which you may be running?
Regards Manvendra - http://www.indimail.org
On 9/24/09, Sandeep Deshmukh sandeepd5@yahoo.co.in wrote:
Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send
Since you are using qmail-ldap you can do the following 3 steps
1. Configure ldap to authenticate against the Active Directory controller by changing ldap.conf appropriately (keep a backup copy of ldap.conf before doing this)
host ip_address_of_ad_server base cn=Users,dc=example,dc=com binddn cn=dirsearch,cn=Users, dc=example,dc=com bindpw Directory scope sub ssl no nss_base_passwd cn=Users,dc=exaple,dc=com?sub nss_base_shadow cn=Users,dc=example,dc=com?sub nss_base_group cn=Users,dc=example,dc=com?sub nss_map_objectclass posixAccount user nss_map_objectclass shadowAccount user nss_map_attribute uid sAMAccountName nss_map_attribute uidNumber msSFU30UidNumber nss_map_attribute gidNumber msSFU30GidNumber nss_map_attribute loginShell msSFU30LoginShell nss_map_attribute gecos name nss_map_attribute userPassword msSFU30Password nss_map_attribute homeDirectory msSFU30HomeDirectory nss_map_objectclass posixGroup Group nss_map_attribute uniqueMember msSFU30PosixMember nss_map_attribute cn cn pam_login_attribute sAMAccountName pam_filter objectclass=user pam_member_attribute msSFU30PosixMember pam_groupdn cn=unixusergroup,dc=example,dc=com pam_password ad
2. Install nss_ldap which will provide nss (name service switch). NSS will allow extending users to be in ldap transparently to application. So if your application authenticates agains /etc/passwd, /etc/shadow, you will now be able to authenticate against ldap. There are many checkpassword programs available which authenticates againts /etc/passwd, /etc/shadow. After configuring nss_ldap the same checkpassword will now be able to authenticate agains ldap. Since ldap has been configured to authenticate against ADS, your authentication against ADS should work.
3. On the windows box Authenticate to the domain controller as a user that has schema admin rights. Extract the files from Microsoft's Services for Unix 3.5 to a location such as c:\temp\sfu Create basic user for LDAP bind. The password should be set not to not expire, and that the user not be allowed to change the password. This account should be used only for binding the Linux device to the Active Directory.
me the procedure & the installables for the same. It's urgent.
If it is urgent, why don't you put a test box and try it out.
On Thu, Sep 24, 2009 at 9:41 AM, Sandeep Deshmukh sandeepd5@yahoo.co.in wrote:
Hi All, Can somebody help in integrating Qmail with Active Directory on Win2k3 server. Presently i am using qmail-ldap on Suse, but i now i want that the qmail should integrate with AD and authenticate the users from there. Please send me the procedure & the installables for the same. It's urgent. Regards, Sandeep
Sandeep,
I hope these links will help you:
http://catb.org/~esr/faqs/smart-questions.html
And if it's really really really really urgent then I am available as a consultant. Mail me off line for my rates (just kidding of course).
Regards,
-
Kenneth Gonsalves -
Manvendra Bhangui -
Mitul Limbani -
Sandeep Deshmukh -
steve -
Vivek Varghese Cherian