Results 1 to 8 of 8

Thread: Exporting Zimbra LDAP to OpenLDAP

Hybrid View

  1. #1
    Join Date
    Apr 2006
    Location
    Williamsburg, VA
    Posts
    451
    Rep Power
    9

    Default Exporting Zimbra LDAP to OpenLDAP

    For various reasons (ssl access to ldap being the primary), I need to export the Zimbra ldap and import uid and userPassword information into a new OpenLDAP install.

    I have the zimbra ldif (following the blog entry). But what encryption are the passwords? Does anyone have a best practice for doing something like this?

  2. #2
    Join Date
    May 2007
    Location
    Zimbra
    Posts
    1,285
    Rep Power
    10

    Default

    The passwords aren't encrypted. Why wouldn't you just load them straight in, as-is, since OpenLDAP will just simply handle it?

    I don't exactly understand what issue you are trying to resolve by doing the export/import, either...

    --Quanah
    Quanah Gibson-Mount
    Server Architect
    Zimbra, Inc
    --------------------
    Zimbra :: the leader in open source messaging and collaboration

  3. #3
    Join Date
    Apr 2006
    Location
    Williamsburg, VA
    Posts
    451
    Rep Power
    9

    Default

    Quote Originally Posted by quanah View Post
    I don't exactly understand what issue you are trying to resolve by doing the export/import, either...

    --Quanah

    If you can provide a way for access LDAP information over SSL (for remote systems), which I think is a bug in progress (don't have the bug number) then I don't have an issue.

  4. #4
    Join Date
    May 2007
    Location
    Zimbra
    Posts
    1,285
    Rep Power
    10

    Default

    Remote systems should be able to use SSL (StartTLS) to access the LDAP servers now, as long as you are on the 5.0 branch. That's what postfix, amavis, etc, do when talking to the Zimbra LDAP server. Simply tell the client to use SSL when talking to the Zimbra LDAP server.

    What's in progress is making SSL forced for all connections, which can't be done quite yet for StartTLS because some of the internal pieces don't yet support it. If you want to force SSL for everything, for now you'd need to use ldaps:// instead.
    Quanah Gibson-Mount
    Server Architect
    Zimbra, Inc
    --------------------
    Zimbra :: the leader in open source messaging and collaboration

  5. #5
    Join Date
    Apr 2006
    Location
    Williamsburg, VA
    Posts
    451
    Rep Power
    9

    Default

    Quote Originally Posted by quanah View Post
    Remote systems should be able to use SSL (StartTLS) to access the LDAP servers now, as long as you are on the 5.0 branch. That's what postfix, amavis, etc, do when talking to the Zimbra LDAP server. Simply tell the client to use SSL when talking to the Zimbra LDAP server.

    What's in progress is making SSL forced for all connections, which can't be done quite yet for StartTLS because some of the internal pieces don't yet support it. If you want to force SSL for everything, for now you'd need to use ldaps:// instead.
    So what port are you doing ldaps on? 636 doesn't appear to be responding

  6. #6
    Join Date
    May 2007
    Location
    Zimbra
    Posts
    1,285
    Rep Power
    10

    Default

    We don't use LDAPS by default, you need to reconfigure to use LDAPS if that's what you want to use instead.
    Quanah Gibson-Mount
    Server Architect
    Zimbra, Inc
    --------------------
    Zimbra :: the leader in open source messaging and collaboration

Similar Threads

  1. Replies: 21
    Last Post: 02-04-2010, 09:06 AM
  2. Replies: 31
    Last Post: 12-15-2007, 08:05 PM
  3. Replies: 22
    Last Post: 12-02-2007, 04:05 PM
  4. [SOLVED] Error Installing Zimbra on RHEL 5
    By harris7139 in forum Installation
    Replies: 10
    Last Post: 09-25-2007, 11:39 AM
  5. Can't start Zimbra!
    By zibra in forum Administrators
    Replies: 5
    Last Post: 03-22-2007, 11:34 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •