Otu esi ejikọta iRedMail Roundcube na Samba4 AD DC - Nkebi 12
Roundcube, otu n'ime ndị ọrụ webụsaịtị a na-ejikarị na Linux, na-enye interface webụ ọgbara ọhụrụ maka ndị ọrụ njedebe ka ha na ọrụ ozi niile na-emekọrịta ihe iji gụọ, dee na zipu ozi-e. Roundcube na-akwado usoro akwụkwọ ozi dị iche iche, gụnyere nke echekwara, dị ka IMAPS, POP3S ma ọ bụ nrubeisi.
N'isiokwu a, anyị ga-atụle otu esi ahazi Roundcube na iRedMail na IMAPS wee nyefee ọdụ ụgbọ mmiri echekwara iji weghachite na zipu ozi-e maka akaụntụ Samba4 AD, otu esi enweta iRedMail Roundcube web interface site na ihe nchọgharị wee gbakwunye utu aha adreesị weebụ, otu esi eme Samba4. Ntinye AD maka Akwụkwọ Adreesị LDAP zuru ụwa ọnụ yana otu esi ewepụ ụfọdụ ọrụ iRedMail na-achọghị.
- Otu esi etinye iRedMail na CentOS 7 maka njikọta Samba4 AD
- Hazie iRedMail na CentOS 7 maka njikọta Samba4 AD
Kwụpụ 1: Kpọwapụta Adreesị ozi-e maka Akaụntụ ngalaba na Samba4 AD DC
1. Iji zipu ma nata mail maka akaụntụ ngalaba Samba4 AD DC, ịkwesịrị idezi akaụntụ onye ọrụ ọ bụla wee debe ozi email nke ọma na adreesị ozi-e kwesịrị ekwesị site na imepe ngwa ADUC site na igwe Windows nwere ngwaọrụ RSAT arụnyere wee sonye na Samba4. AD dị ka e gosiri na foto dị n'okpuru.
2. N'otu aka ahụ, iji jiri listi ozi, ịkwesịrị ịmepụta otu dị na ADUC, tinye adreesị ozi-e kwekọrọ maka otu ọ bụla wee kenye akaụntụ onye ọrụ kwesịrị ekwesị dị ka ndị otu.
Site na ntọlite a nke emepụtara dị ka ndepụta ozi, igbe ozi ndị otu Samba4 AD ga-enweta ozi echere maka adreesị ozi-e otu AD. Jiri nseta ihuenyo dị n'okpuru dị ka ntuziaka iji kwupụta e-mail gbara akwụkwọ maka akaụntụ otu Samba4 wee tinye ndị ọrụ ngalaba dịka ndị otu ahụ.
Jide n'aka na ndị otu akaụntụ agbakwunyere na otu ekwupụtala adreesị ozi-e ha.
N'ihe atụ a, ozi-e niile ezigara na adreesị ozi-e [email echebekwara] nke ekwuputara maka otu 'Domain Admins' ga-enweta igbe ozi onye ọ bụla nke otu a.
3. Ụzọ ọzọ ị nwere ike iji kwupụta adreesị ozi-e maka akaụntụ Samba4 AD bụ site na ịmepụta onye ọrụ ma ọ bụ otu nwere akara iwu samba-tool ozugbo site na otu n'ime AD DC console wee kọwaa adreesị ozi-e. nwere ọkọlọtọ --mail-address.
Jiri otu n'ime iwu ndị a syntax iji mepụta onye ọrụ nwere adreesị ozi-e akọwapụtara:
# samba-tool user add [email --surname=your_surname --given-name=your_given_name your_ad_user
Mepụta otu nwere adreesị ozi-e akọwapụtara:
# samba-tool group add [email your_ad_group
Ka ịgbakwunye ndị otu na otu:
# samba-tool group addmembers your_group user1,user2,userX
Ka ịdepụta mpaghara iwu samba-tool niile dị maka onye ọrụ ma ọ bụ otu jiri syntax a:
# samba-tool user add -h # samba-tool group add -h
Kwụpụ 3: Chekwaa Roundcube Webmail
4. Tupu ịmegharịa faịlụ nhazi Roundcube, nke mbụ, jiri Dovecot na Postfix gee ntị ma kwenye na ọdụ ụgbọ mmiri echekwara nke ọma (993 maka IMAPS na 587 maka nrubeisi) na-arụ ọrụ ma nwee ike.
# netstat -tulpn| egrep 'dovecot|master'
5. Iji mee ka nnabata ozi na nyefee n'etiti ọrụ Roundcube na iRedMail na ọdụ ụgbọ mmiri IMAP na SMTP echekwara, mepee faịlụ nhazi Roundcube dị na /var/www/roundcubemail/config/config.inc.php wee hụ na ị gbanwee ahịrị ndị a, maka localhost na nke a, dị ka egosiri n'ime ihe n'okpuru:
// For IMAPS $config['default_host'] = 'ssl://127.0.0.1'; $config['default_port'] = 993; $config['imap_auth_type'] = 'LOGIN'; // For SMTP $config['smtp_server'] = 'tls://127.0.0.1'; $config['smtp_port'] = 587; $config['smtp_user'] = '%u'; $config['smtp_pass'] = '%p'; $config['smtp_auth_type'] = 'LOGIN';
A na-atụ aro ntọlite a ma ọ bụrụ na etinyere Roudcube na ebe dịpụrụ adịpụ karịa nke na-enye ọrụ ozi (IMAP, POP3 ma ọ bụ SMTP daemons).
6. Ọzọ, emechila faịlụ nhazi, chọọ ma mee obere mgbanwe ndị a ka a na-eleta Roundcube naanị site na HTTPS protocol, zoo nọmba mbipute na iji tinye aha ngalaba aha maka akaụntụ ndị na-abanye na weebụ na-akpaghị aka. interface.
$config['force_https'] = true; $config['useragent'] = 'Your Webmail'; // Hide version number $config['username_domain'] = 'domain.tld'
7. Ọzọkwa, gbanyụọ plugins ndị a: njikwa na paswọọdụ site n'ịgbakwunye okwu (//) n'ihu akara na-amalite na $config['plugins'].
Ndị ọrụ ga-agbanwe okwuntughe ha site na igwe Windows ma ọ bụ Linux sonye na Samba4 AD DC ozugbo ha banyere wee mata na ngalaba ahụ. Otu sysadmin ga-ahazi iwu sieve niile maka akaụntụ ngalaba.
// $config['plugins'] = array('managesieve', 'password');
8. N'ikpeazụ, chekwaa ma mechie faịlụ nhazi wee gaa na Roundcube Webmail site na imepe ihe nchọgharị wee gaa na iRedMail adreesị IP ma ọ bụ FQDN/ebe ozi site na HTTPS protocol.
Oge mbụ mgbe ị gara na Roundcube, anya kwesịrị ịpụta na ihe nchọgharị ahụ n'ihi Asambodo ejiri aka onwe ya nke sava weebụ na-eji. Nabata asambodo ahụ wee jiri nzere akaụntụ Samba AD banye.
https://iredmail-FQDN/mail
Kwụpụ 3: Kwado kọntaktị Samba AD na Roundcube
9. Iji hazie akwụkwọ adreesị Samba AD Global LDAP ka ọ pụta ìhè Roundcube kọntaktị, mepee faịlụ nhazi Roundcube ọzọ maka edezi ma mee mgbanwe ndị a:
Gaa na ala nke faịlụ ahụ wee chọpụta ngalaba na-amalite na '# Global LDAP Address Book with AD', hichapụ ọdịnaya ya niile ruo njedebe nke faịlụ ahụ wee jiri ngọngọ koodu ndị a dochie ya:
# Global LDAP Address Book with AD.
#
$config['ldap_public']["global_ldap_abook"] = array(
'name' => 'tecmint.lan',
'hosts' => array("tecmint.lan"),
'port' => 389,
'use_tls' => false,
'ldap_version' => '3',
'network_timeout' => 10,
'user_specific' => false,
'base_dn' => "dc=tecmint,dc=lan",
'bind_dn' => "[email ",
'bind_pass' => "your_password",
'writable' => false,
'search_fields' => array('mail', 'cn', 'sAMAccountName', 'displayname', 'sn', 'givenName'),
'fieldmap' => array(
'name' => 'cn',
'surname' => 'sn',
'firstname' => 'givenName',
'title' => 'title',
'email' => 'mail:*',
'phone:work' => 'telephoneNumber',
'phone:mobile' => 'mobile',
'department' => 'departmentNumber',
'notes' => 'description',
),
'sort' => 'cn',
'scope' => 'sub',
'filter' => '(&(mail=*)(|(&(objectClass=user)(!(objectClass=computer)))(objectClass=group)))',
'fuzzy_search' => true,
'vlv' => false,
'sizelimit' => '0',
'timelimit' => '0',
'referrals' => false,
);
Na ngọngọ koodu a dochie aha, ndị ọbịa, base_dn, bind_dn na bind_pass ụkpụrụ.
10. Mgbe ịmechara mgbanwe niile achọrọ, chekwaa ma mechie faịlụ ahụ, banye na Roundcube webmail interface wee gaa na menu akwụkwọ adreesị.
See na gị Global Adreesị Akwụkwọ ahọrọ aha na a kọntaktị ndepụta niile ngalaba akaụntụ (ọrụ na otu) na ha kpọmkwem adreesị ozi-e kwesịrị ịhụ.
Kwụpụ 4: Tinye utu aha maka Roundcube Webmail Interface
11. Iji gaa na Roundcube na adreesị weebụ nwere ụdị na-esonụ https://webmail.domain.tld kama adreesị ochie nyere site na ndabara site na iRedMail ị ga-eme mgbanwe ndị a.
Site na igwe Windows ejikọrọ na ngwa RSAT arụnyere, mepee njikwa DNS wee tinye ndekọ CNAME ọhụrụ maka iRedMail FQDN, aha ya bụ webmail, dị ka e gosiri na foto a.
12. Na-esote, na igwe iRedMail, mepee Apache sava weebụ SSL faịlụ nhazi nke dị na /etc/httpd/conf.d/ssl.conf ma gbanwee ntụziaka DocumentRoot iji rụtụ aka na /var/www/roundcubemail/ usoro ụzọ.
faịlụ /etc/httpd/conf.d/ssl.conf dere:
DocumentRoot “/var/www/roundcubemail/”
Malitegharịa ekwentị Apache daemon iji tinye mgbanwe.
# systemctl restart httpd
13. Ugbu a, rụtụ aka nchọgharị na adreesị na-esonụ na Roundcube interface kwesịrị ịpụta. Nabata mperi asambodo ejiri aka gị gaa n'ihu na ibe nbanye. Jiri aha ngalaba nke gị dochie domain.tld site na ihe atụ a.
https://webmail.domain.tld
Kwụpụ 5: Gbanyụọ ọrụ iRedMail ejighi ya
14. Ebe ọ bụ na a haziri iRedMail daemons ka ọ jụọ Samba4 AD DC LDAP server maka ozi akaụntụ na ihe ndị ọzọ, ị nwere ike ịkwụsị ma gbanyụọ ụfọdụ ọrụ mpaghara na igwe iRedMail, dị ka LDAP nchekwa data na ọrụ iredpad site n'inye iwu ndị a.
# systemctl stop slapd iredpad # systemctl disable slapd iredpad
15. Ọzọkwa, gbanyụọ ụfọdụ ahazi ọrụ rụrụ site iRedMail, dị ka LDAP nchekwa data ndabere na iRedPad nsuso ndekọ site na-agbakwụnye a comment (#) n'ihu nke ọ bụla akara si crontab faịlụ dị ka e gosiri na n'okpuru screenshot.
# crontab -e
Kwụpụ 6: Jiri utu aha Mail na Postfix
16. Iji redirect niile n'ime obodo mail (kapụtara maka postmaster na emesia redirected na mgbọrọgwụ akaụntụ) na kpọmkwem Samba4 AD akaụntụ, meghee Postfix aliases nhazi faịlụ dị na /etc/postfix/aliases na gbanwee mgbọrọgwụ ahịrị dị ka ndị a:
root: [email
17. Tinye faịlụ nhazi aliases ka Postfix nwee ike ịgụ ya n'ụdị nke ya site n'ịme iwu ọhụrụ ma nwalee ma ọ bụrụ na ezigara mail na akaụntụ email kwesịrị ekwesị site na ịnye iwu na-esonụ.
# echo “Test mail” | mail -s “This is root’s email” root
18. Mgbe ezipụchara ozi ahụ, banye na Roundcube webmail na akaụntụ ngalaba ị debere maka ntụgharị mail wee nyochaa ozi ezigara na mbụ kwesịrị ịnata na igbe mbata akaụntụ gị.
Nke ahụ niile! Ugbu a, ị nwere ihe nkesa ozi na-arụ ọrụ nke ọma na Samba4 Active Directory. Akaụntụ ngalaba nwere ike izipu ma nata ozi maka ngalaba ime ha ma ọ bụ maka ngalaba mpụga ndị ọzọ.
Enwere ike itinye nhazi a na-eji na nkuzi a nke ọma iji jikọta ihe nkesa iRedMail na Windows Server 2012 R2 ma ọ bụ 2016 Active Directory.