Hi Sandy: >> It's no-brainer if you use IMail's NT integration on an AD DC. <<
I don't want to reinvent the wheel, so I'm trying to research this by reading the Imail 8 manual. It doesn't reference AD directly (only the NT User setup and that you have to run on a DC). So before I invest time and play around with it, I have three "no-brainer" questions, which I could not answer myself: - It says that you can't use the Imail "Explorer" to manage accounts (users, aliases, etc.) - does that imply that my clients wouldn't be able to use WebMail to add/administer their own mailboxes either? - Does the AD only store "Users" (mailboxes) - or also "Alias" (e.g., simple alias, group alias, program alias, etc.)? If not, then how do you accomplish using the AD information to verify "valid" RCTP TO information? A good portion of the email we process is addressed to an alias!? - Does the Imail/NT/AD integration support (multiple) virtual domains (ip-less) - or will it only create users for the AD domain name? Accordingly, how will it know that two mailboxes and/or aliases by the same name, but on two different mail domains, should be kept as two different entities in AD? Best Regards Andy Schmidt H&M Systems Software, Inc. 600 East Crescent Avenue, Suite 203 Upper Saddle River, NJ 07458-1846 Phone: +1 201 934-3414 x20 (Business) Fax: +1 201 934-9206 http://www.HM-Software.com/ -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Sanford Whiteman Sent: Monday, February 09, 2004 03:47 PM To: Andy Schmidt Subject: Re[2]: [Declude.JunkMail] [Declude.Junkmail] MS SMTP LDAP Routing > I would seriously consider funding some of the development for an > IMAIL/LDAP lookup event sink as it would help my SMTP server to > "disconnect" on dictionary attacks. I already use ORF to reject at the envelope using LDAP lookups and really have no need for any other intermediary. It's no-brainer if you use IMail's NT integration on an AD DC. All you need to do is add the Exchange schema extensions to the AD domain, since ORF is expecting the extended schema--you don't have to install or purchase Exchange itself. You can run the ORF queries against any server in the domain (which doesn't have to be the same as your primary domain), meaning that you can scale out from hitting the mailbox server directly to hitting dedicated AD DCs that only service such MX lookups. Building anything designed to interact with IMail's own ILDAP daemon is a very bad move, as the service is barely functional, compliant, or stable. AD's LDAP services, on the other hand, are mature and resilient. The other options that involve local text files would certainly work, but performance under load could not exceed that of indexed LDAP lookups. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/ --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.