Hi, I have created three user sources for three domains. When I log in into one domain and go to address book and do a global address search, I can find people from other user sources. I already have reformatted my LDAP tree to have one "ou" for each domain, but that does not work. Also setting a filter does not shrink the search (i.e. filter = "(mail=*@roessner-network-solutions.com)").
I need to use bindAsCurrentUser, as I am using a LDAP-user with read access on LDAP to find the user logging in. The user itself can change his password. This is my user sources section: -------------------------------------------------------------------- sogod domains '{ "exampleserver-de" = { SOGoMailDomain = "exampleserver.de"; SOGoUserSources = ( { CNFieldName = cn; IDFieldname = uid; IMAPLoginFieldName = rnsMSDovecotUser; KindFieldName = Kind; MailFieldNames = ( mail ); MultipleBookingsFieldName = Multiplebookings; UIDFieldName = rnsMSDovecotUser; baseDN = "ou=exampleserver-de,ou=people,ou=it,dc=roessner-net,dc=de"; bindAsCurrentUser = YES; bindDN = "<hidden>"; bindFields = ( rnsMSRecipientAddress, uniqueIdentifier ); bindPassword = <hidden>; canAuthenticate = YES; displayName = "Gemeinsame Adressen"; encryption = STARTTLS; hostname = "server1 server2"; id = directory2; isAddressBook = YES; port = 389; scope = SUB; type = ldap; userPasswordAlgorithm = SSHA; } ); }; "roessner-net" = { SOGoMailDomain = "roessner-net.com"; SOGoUserSources = ( { CNFieldName = cn; IDFieldname = uid; IMAPLoginFieldName = rnsMSDovecotUser; KindFieldName = Kind; MailFieldNames = ( mail ); MultipleBookingsFieldName = Multiplebookings; UIDFieldName = rnsMSDovecotUser; baseDN = "ou=roessner-net,ou=people,ou=it,dc=roessner-net,dc=de"; bindAsCurrentUser = YES; bindDN = "<hidden>"; bindFields = ( rnsMSRecipientAddress, uniqueIdentifier ); bindPassword = <hidden>; canAuthenticate = YES; displayName = "Gemeinsame Adressen"; encryption = STARTTLS; hostname = "server1 server2"; id = directory1; isAddressBook = YES; port = 389; scope = SUB; type = ldap; userPasswordAlgorithm = SSHA; } ); }; "roessner-network-solutions-com" = { SOGoMailDomain = "roessner-network-solutions.com"; SOGoUserSources = ( { CNFieldName = cn; IDFieldname = uid; IMAPLoginFieldName = rnsMSDovecotUser; KindFieldName = Kind; MailFieldNames = ( mail ); MultipleBookingsFieldName = Multiplebookings; UIDFieldName = rnsMSDovecotUser; baseDN = "ou=roessner-network-solutions-com,ou=people,ou=it,dc=roessner-net,dc=de"; bindAsCurrentUser = YES; bindDN = "<hidden>"; bindFields = ( rnsMSRecipientAddress, uniqueIdentifier ); bindPassword = <hidden>; canAuthenticate = YES; displayName = "Gemeinsame Adressen"; encryption = STARTTLS; hostname = "server1 server2"; id = directory0; isAddressBook = YES; port = 389; scope = SUB; type = ldap; userPasswordAlgorithm = SSHA; } ); }; }' -------------------------------------------------------------------- Does someone know how to solve this? I really would like to give people who are interested to SOGo testing accounts on the exampleserver.de domain, but I do not want them to see anything on other domains, as I also use that server for my own business stuff. Thanks in advance Kind regards -Christian Rößner -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich -- users@sogo.nu https://inverse.ca/sogo/lists