Hi,
I have created three user sources for three domains. When I log in into one
domain and go to address book and do a global address search, I can find people
from other user sources. I already have reformatted my LDAP tree to have one
"ou" for each domain, but that does not work. Also setting a filter does not
shrink the search (i.e. filter = "(mail=*@roessner-network-solutions.com)").
I need to use bindAsCurrentUser, as I am using a LDAP-user with read access on
LDAP to find the user logging in. The user itself can change his password.
This is my user sources section:
--------------------------------------------------------------------
sogod domains '{
"exampleserver-de" = {
SOGoMailDomain = "exampleserver.de";
SOGoUserSources = (
{
CNFieldName = cn;
IDFieldname = uid;
IMAPLoginFieldName = rnsMSDovecotUser;
KindFieldName = Kind;
MailFieldNames = (
mail
);
MultipleBookingsFieldName = Multiplebookings;
UIDFieldName = rnsMSDovecotUser;
baseDN =
"ou=exampleserver-de,ou=people,ou=it,dc=roessner-net,dc=de";
bindAsCurrentUser = YES;
bindDN = "<hidden>";
bindFields = (
rnsMSRecipientAddress,
uniqueIdentifier
);
bindPassword = <hidden>;
canAuthenticate = YES;
displayName = "Gemeinsame Adressen";
encryption = STARTTLS;
hostname = "server1 server2";
id = directory2;
isAddressBook = YES;
port = 389;
scope = SUB;
type = ldap;
userPasswordAlgorithm = SSHA;
}
);
};
"roessner-net" = {
SOGoMailDomain = "roessner-net.com";
SOGoUserSources = (
{
CNFieldName = cn;
IDFieldname = uid;
IMAPLoginFieldName = rnsMSDovecotUser;
KindFieldName = Kind;
MailFieldNames = (
mail
);
MultipleBookingsFieldName = Multiplebookings;
UIDFieldName = rnsMSDovecotUser;
baseDN =
"ou=roessner-net,ou=people,ou=it,dc=roessner-net,dc=de";
bindAsCurrentUser = YES;
bindDN = "<hidden>";
bindFields = (
rnsMSRecipientAddress,
uniqueIdentifier
);
bindPassword = <hidden>;
canAuthenticate = YES;
displayName = "Gemeinsame Adressen";
encryption = STARTTLS;
hostname = "server1 server2";
id = directory1;
isAddressBook = YES;
port = 389;
scope = SUB;
type = ldap;
userPasswordAlgorithm = SSHA;
}
);
};
"roessner-network-solutions-com" = {
SOGoMailDomain = "roessner-network-solutions.com";
SOGoUserSources = (
{
CNFieldName = cn;
IDFieldname = uid;
IMAPLoginFieldName = rnsMSDovecotUser;
KindFieldName = Kind;
MailFieldNames = (
mail
);
MultipleBookingsFieldName = Multiplebookings;
UIDFieldName = rnsMSDovecotUser;
baseDN =
"ou=roessner-network-solutions-com,ou=people,ou=it,dc=roessner-net,dc=de";
bindAsCurrentUser = YES;
bindDN = "<hidden>";
bindFields = (
rnsMSRecipientAddress,
uniqueIdentifier
);
bindPassword = <hidden>;
canAuthenticate = YES;
displayName = "Gemeinsame Adressen";
encryption = STARTTLS;
hostname = "server1 server2";
id = directory0;
isAddressBook = YES;
port = 389;
scope = SUB;
type = ldap;
userPasswordAlgorithm = SSHA;
}
);
};
}'
--------------------------------------------------------------------
Does someone know how to solve this? I really would like to give people who are
interested to SOGo testing accounts on the exampleserver.de domain, but I do
not want them to see anything on other domains, as I also use that server for
my own business stuff.
Thanks in advance
Kind regards
-Christian Rößner
--
[*] sys4 AG
http://sys4.de, +49 (89) 30 90 46 64
Franziskanerstraße 15, 81669 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer
Aufsichtsratsvorsitzender: Joerg Heidrich
--
users@sogo.nu
https://inverse.ca/sogo/lists
