[SOLVED] Problem with LDAP IBM Lotus Domino

Discussion in 'Mail Gateway: Installation and configuration' started by Sommer, Jun 7, 2018.

  1. Sommer

    Sommer New Member

    Joined:
    Jun 7, 2018
    Messages:
    7
    Likes Received:
    0
    Greetings,

    I am using IBM Lotus Domino as LDAP server.
    I was able to get all users with mail address. However, for groups, PMG is not recognizing them. I set group objectclass as dominoGroup.
    Using LDAPDEBUG I can see the groups at query results.

    What am I missing?

    Thank you,
    Sommer
     
  2. Sommer

    Sommer New Member

    Joined:
    Jun 7, 2018
    Messages:
    7
    Likes Received:
    0
    Solved! The tricks was to set Account attribute name to mail.
    I was using uid, but that exist only for dominoPerson, not for groups.
     
  3. Craig Tosi

    Craig Tosi New Member

    Joined:
    Aug 19, 2016
    Messages:
    3
    Likes Received:
    0
    Hi Sommer,

    I'm stuggling with LDAP user management also. I'm not using a Domino LDAP server but it would help me if you could provide the LDAP attributes that got you up and running to help me adapt for my scenario.
     
  4. Sommer

    Sommer New Member

    Joined:
    Jun 7, 2018
    Messages:
    7
    Likes Received:
    0
    Craig,

    What is the directory are you using?
    My advise is to use a ldap explorer to your directory to get the attributes.
     
  5. Craig Tosi

    Craig Tosi New Member

    Joined:
    Aug 19, 2016
    Messages:
    3
    Likes Received:
    0
    I am using a Univention UCS (Samba 4 AD) LDAP. Yes, will give an LDAP explorer a try. I have a pfsense router authenticating ipsec VPN xauth clients via this LDAP ok but the settings aren't email specific in that case.
     
  6. Sommer

    Sommer New Member

    Joined:
    Jun 7, 2018
    Messages:
    7
    Likes Received:
    0
    Ok, Craig. Good luck!
    Below is the ldap.conf file for IBM Lotus Domino:
    ldap: LDAP_ACME
    comment ACME mail
    server1 10.10.10.1
    accountattr mail
    filter (&(|(objectclass=dominoPerson)(objectclass=dominoGroup)(objectclass=dominoServerMailInDatabase))(|(cn=*acme.com)(mail=*acme.com)))
    mailattr cn,mail
    mode ldap
    server2 10.10.10.2
     
  7. Craig Tosi

    Craig Tosi New Member

    Joined:
    Aug 19, 2016
    Messages:
    3
    Likes Received:
    0
    Many thanks Sommer
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice