Hello all!
Trying to configure SOGo so that users can search and use LDAP for
groups (Departments in our case with objectClass posixGroup) as
invitees. We have a departmentMail field which contains the e-mail
address for the department.
We also noticed that when canAuthenticate is enabled all users are
logged in as the group and not themselves, according to several google
searches and the SOGo documentation canAuthenticate is required. How
can I get around users logging in as the group ?
LDAP search results for the a test group
# CTS-Test, Departments, potsdam.edu
dn: ou=CTS-Test,ou=Departments,o=potsdam.edu
departmentMail: cts-t...@potsdam.edu
departmentSecretary: xkuchyt1
title: Chairperson
objectClass: top
objectClass: organizationalunit
objectClass: spotdepartment
objectClass: posixGroup
ou: CTS-Test
cn: CTS-Test
gidNumber: 1548
departmentChair: hardyjm
telephoneNumber: 3069
facsimileTelephoneNumber: 2868
url: http://www.potsdam.edu/CTS
memberUid: hardyjm
memberUid: kuchytgj
memberUid: yacketrj
postalAddress: Kellas 213
Current sogo config for the groups
sogod SOGoMailDomain potsdam.edu
sogod SOGoLoginModule Calendar
sogod SOGoSieveScriptsEnabled NO
sogod SOGoEnableEMailAlarms YES
sogod SOGoForwardEnabled YES
sogod OCSFolderInfoURL
postgresql://***********************:***********************@127.0.0.1:5432/sogo/sogo_folder_info
sogod SOGoMailingMechanism smtp
sogod SOGoUserSources '(
{
CNFieldName = cn;
IDFieldName = uid;
IMAPHostFieldName = mailHost;
ModulesConstraints = {
Mail = {
ou = People;
};
};
UIDFieldName = uid;
baseDN = "***********************";
bindAsCurrentUser = YES;
bindFields = uid;
canAuthenticate = YES;
displayName = "SUNY Potsdam";
hostname = ***********************;
id = CCA;
isAddressBook = YES;
port = 389;
},
{
CNFieldName = cn;
IDFieldName = memberUid;
MailFieldNames = (
Mail,
departmentMail
);
UIDFieldName = memberUid;
baseDN = "***********************";
bindDN = "***********************";
bindPassword = "***********************";
canAuthenticate = YES;
displayName = "SUNY Potsdam Departments";
hostname = ldaptest.potsdam.edu;
id = Departments;
isAddressBook = YES;
port = 389;
}
)'
sogod OCSSessionsFolderURL
postgresql://***********************:***********************@127.0.0.1:5432/sogo/sogo_sessions
sogod SOGoIMAPServer ***********************
sogod OCSEMailAlarmsFolderURL
postgresql://***********************:***********************@127.0.0.1:5432/sogo/sogo_alarms_folder
sogod SOGoTimeZone America/New_York
sogod SOGoSMTPServer ***********************
sogod SOGoAppointmentSendEMailNotifications YES
sogod SOGoVacationEnabled NO
sogod SOGoProfileURL
postgresql://***********************:***********************@127.0.0.1:5432/sogo/sogo_user_profile
--
users@sogo.nu
https://inverse.ca/sogo/lists