LDAP User refresh sync parameter ?

[atec666]

is there a way to set a refresh time ?
(we 're using PMG with action to reject user when not in LDAP user )

Sync

Proxmox Mail Gateway synchronizes the relevant user and group info periodically, so that the information is available in a fast manner, even when the LDAP/AD server is temporarily not accessible.
After a successful sync, the groups and users should be visible on the web interface. After that, you can create rules targeting LDAP users and groups.

The question is when and how to set up this ?

It gave me some :
550: 5.1.1 <xxxx@domain.com>: Recipient address rejected: undeliverable address: Recipient address lookup failed


...
i can't wait, then force synchronize ...
and finally got :

double-bounce@my mailer ... rejected ...
then accepted ... in message queue !

 

[hata_ph]

Can you manual sync the LDAP query?

 

[atec666]

Can you manual sync the LDAP query?

View attachment 17687

yes, it 's work , it's normal.
But **when** PMG do a refresh sync of ldap user ... mystery....
Can this could be changed / tuned ?

 

[t.lamprecht]

Hi,

It's done hourly by the pmg-hourly.service triggered by the pmg-hourly.timer
systemctl status pmg-hourly.service
systemctl status pmg-hourly.timer

 

[t.lamprecht]

Can this could be changed / tuned ?

You could overwrite the pmg-hourly.timer unit to trigger more often, note that this may also affect some other things like when the SpamAssasin bayes learning journal is synced to the database.

You can use systemctl edit pmg-hourly.timer for this, it will open your cli $EDITOR where you can define an override section. You always have to reset the current schedule first with an empty "OnCalendar=" line - else both will be merged, then the new one can be set.

For reducing to daily:

[Timer]
OnCalendar=
OnCalendar=daily

To do it every four hours:

[Timer]
OnCalendar=
OnCalendar=0/4:00:00

 

[atec666]

thank you for, all
i will test that.