Results 1 to 2 of 2

Thread: Closed / Locked Accounts with using Zimbra LDAP to authenticate other things

Hybrid View

  1. #1
    Join Date
    Apr 2007
    Posts
    32
    Rep Power
    8

    Default Closed / Locked Accounts with using Zimbra LDAP to authenticate other things

    Hi,

    We've been using the Zimbra LDAP directory as a central authentication service within our company, to provide authentication to Unix shell accounts, Windows via Samba and Web access.

    One problem is that when an account is marked as locked or closed in Zimbra is is still possible for it to bind to the LDAP directory and therefore access everything except Zimbra. We therefore have to change a user's password when they leave, which means more work for me and that it's harder to temporarily suspend an account.

    I think one way round this would be to put an acl in the slapd.conf.in to prevent entries with zimbraAccountStatus set to closed or locked from binding - but this doesn't seem to be possible (although the acl syntax is quite complex!).

    Has anybody else found a way round this?

    Thanks,
    Rob

  2. #2
    Join Date
    Mar 2011
    Posts
    1
    Rep Power
    4

    Default

    Hello everyone.
    I'm reviving this old thread because I found it searching for the very same issue.

    It's been a long time since robh posted this. But I'm having the same issue with Zimbra 8 and using the LDAP for authenticating other services (for the proxy for ex.).

    Does anyone know of any way to set LDAP to respect the Zimbra account status?

Similar Threads

  1. Replies: 9
    Last Post: 03-01-2008, 08:21 PM
  2. Big Fubar on 5 FOSS GA Upgrade
    By uxbod in forum Administrators
    Replies: 24
    Last Post: 01-21-2008, 03:37 AM
  3. Major Issue - 5.0RC2 NE to 5.0GA NE failed
    By DougWare in forum Installation
    Replies: 7
    Last Post: 01-06-2008, 09:56 PM
  4. Replies: 16
    Last Post: 09-07-2006, 07:39 AM
  5. FC3 Install and no zimbra ?
    By aws in forum Installation
    Replies: 10
    Last Post: 10-09-2005, 05:19 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •