Scalix Forums


http://www.scalix.com/forums/

Authenicating Against Windows 2003 Active Directory LDAP

http://www.scalix.com/forums/viewtopic.php?f=5&t=8587

Page 1 of 1

Authenicating Against Windows 2003 Active Directory LDAP

Posted: Thu Aug 23, 2007 6:36 pm
by dbielaski
Hi,

We are currently using Scalix 10.0.1.21 which is currently Authenicating against OpenLDAP. We are in the process of moving our Domain users to Windows 2003R2-32 bit Active Directory.

I am trying to find out how to have our current Scalix users Authenicate against Windows2003R2 Active Directory LDAP. This is for Authenication only. No synchronization what-so-ever is needed.

Please let me know what needs to be done to make this happen.

Thank you for your time and knowledge,

-David

Posted: Fri Aug 24, 2007 4:19 am
by Valerion
Have a look at the Setup and Configuration Guide (downloadable from the same place as the Scalix install images) on page 63 onwards. It is explained there in detail.

Does Scalix support multiple Authntication Servers

Posted: Sun Aug 26, 2007 12:34 am
by mabadjiev
Hello All,

David post a question before, I would like to add to this question:

Does Scalix support multiple Authntication Servers, for example now we use Netscape LDAP 4.1 is it possible to add another authentication server like Windows 2003 with Active Directory so the users will be authenticate against both.

If someone is interested in a short term Contract and would like to help us with that we would greatly appreciate your response.

Regards,

Michael Abadjiev

Posted: Mon Aug 27, 2007 5:08 am
by Valerion
Scalix uses PAM to do the authentication, and PAM is nicely chainable.

The Auth ID will get passed to each of the modules you specify, and you can decide how many of them needs to succeed before you are accepted / rejected. The only hassle is you will have to have the same Auth ID in all your authentication sources.

We will need somebody to help us with this....

Posted: Fri Aug 31, 2007 7:30 pm
by mabadjiev
Over a week we are trying to resolve the Authentication issue.
We are running Scalix 10.0.2
Does anybody in this forum make the Scalix Authentication work work with AD.
Any pointers will be greatly appreciated.

Posted: Fri Aug 31, 2007 9:01 pm
by dkelly
If you're already authenticating against the OpenLDAP directory, you will have had to edit the sys/pam.d/ual.remote file. In that file, there are documented examples of different types of authentication.

At the bottom of the file is a combined authentication method which shows how to combine LDAP and kerberos (AD) authentication.

The problem you're going to find is that the authentication id for each user MUST be the same between LDAP and AD.

Please note that this forum has no SLAs so, if it's time critical to get an answer, you should purchase a support incident.

Cheers

Dave
All times are UTC-04:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/