{"id":213,"date":"2011-08-15T10:43:22","date_gmt":"2011-08-15T08:43:22","guid":{"rendered":"http:\/\/diablo.craem.net\/wordpress\/?p=213"},"modified":"2011-08-15T10:43:22","modified_gmt":"2011-08-15T08:43:22","slug":"migrando-exchange-2010-a-zarafa-parte-4","status":"publish","type":"post","link":"https:\/\/diablo.craem.net\/?p=213","title":{"rendered":"Migrando Exchange 2010 a Zarafa, parte 4"},"content":{"rendered":"

Ahora, editamos la parte de Ldap, haciendo:
\n
\nroot@zeus:\/etc\/zarafa# cp ldap.openldap.cfg ldap.cfg
\n<\/strong>
\nCambiamos :
\nnano ldap.cfg<\/em>
\n
\n##############################################################
\n# LDAP\/ACTIVE DIRECTORY USER PLUGIN SETTINGS
\n#
\n# Any of these directives that are required, are only required if the
\n# userplugin parameter is set to ldap.
\n# LDAP host name\/IP address
\n# Optional, default = localhost
\nldap_host = la.ip.de.mi.ldap
\n# LDAP port
\n# Optional, default = 389
\n# Use 636 for ldaps
\nldap_port = 389
\n# LDAP protocol
\n# Optional, default = ldap
\n# use ‘ldaps’ for SSL encryption. Make sure \/etc\/ldap\/ldap.conf is
\n# configured correctly with TLS_CACERT
\nldap_protocol = ldap
\n# The DN of the user to bind as for normal operations (not used for
\n# authentication if ldap_authentication_method is set to \u00abbind\u00bb
\n# Optional, default = empty (anonymous bind)
\n# The userPassword attribute must be readable for this user if the
\n# ldap_authentication_method option is set to password.
\nldap_bind_user = cn=admin,dc=craem,dc=net
\n# LDAP bind password
\n# Optional, default = empty (no password)
\nldap_bind_passwd = password_ldap_user
\n# The timeout for network operations in seconds
\nldap_network_timeout = 30
\n# When an object (user\/group\/company) is changed, this attribute will also change:
\n# Active directory: uSNChanged
\n# LDAP: modifyTimestamp
\nldap_last_modification_attribute = modifyTimestamp
\n#########
\n# Object settings
\n# Top level search base, every object should be available under this tree
\nldap_search_base = dc=craem,dc=net
\n# attribute name which is\/(should: was) used in ldap_user_search_filter
\nldap_object_type_attribute = objectClass
\nldap_user_type_attribute_value = posixAccount
\nldap_group_type_attribute_value = posixGroup
\nldap_contact_type_attribute_value = zarafa-contact
\nldap_company_type_attribute_value = organizationalUnit
\nldap_addresslist_type_attribute_value = zarafa-addresslist
\nldap_dynamicgroup_type_attribute_value = zarafa-dynamicgroup
\n<\/strong>
\ny para manejar las quotas<\/em> de almacenamiento:
\n should also receive a warning mail when a user exceeds his quota.
\nldap_quota_userwarning_recipients_attribute = zarafaQuotaUserWarningRecipients
\n# Optional, default = text
\n# Active directory: dn
\n# LDAP: text
\nldap_quota_userwarning_recipients_attribute_type = text
\n# Optional, default empty
\nldap_quota_userwarning_recipients_relation_attribute =
\n# Optional
\n# The attribute which indicates which users should receive a warning mail
\n# when a company exceeds his quota.
\nldap_quota_companywarning_recipients_attribute = zarafaQuotaCompanyWarningRecipients
\n# Optional, default = text
\n# Active directory: dn
\n# LDAP: text
\nldap_quota_companywarning_recipients_attribute_type = text
\n# Optional, default empty
\nldap_quota_companywarning_recipients_relation_attribute =
\n# Whether to override the system wide quota settings
\nldap_quotaoverride_attribute = zarafaQuotaOverride
\nldap_warnquota_attribute = zarafaQuotaWarn
\nldap_softquota_attribute = zarafaQuotaSoft
\nldap_hardquota_attribute = zarafaQuotaHard
\n<\/strong>
\n
\n# Whether to override the system wide quota settings for all users within the company
\nldap_userdefault_quotaoverride_attribute = zarafaUserDefaultQuotaOverride
\nldap_userdefault_warnquota_attribute = zarafaUserDefaultQuotaWarn
\nldap_userdefault_softquota_attribute = zarafaUserDefaultQuotaSoft
\nldap_userdefault_hardquota_attribute = zarafaUserDefaultQuotaHard
\n# Mapping from the quota attributes to a number of bytes. Qmail-LDAP
\n# schema uses bytes (1), ADS uses kilobytes (1024*1024).
\nldap_quota_multiplier = 1
\n<\/strong>
\nAplicamos los cambios y iniciamos zarafa
\nroot@zeus#\/etc\/init.d\/zarafa-server start<\/strong>
\nAhora modificamos los usuarios de ldap para que sean usuarios de zarafa, a\u00f1adiendo los siguientes atributos:
\nobject-Class: zarafa-user<\/strong>
\nY modificando:
\n
\nzarafaAccount = 1
\nzarafaAdmin = 1
\n<\/strong>
\nZarafaAdmin=1<\/em> ser\u00e1 el usuario con derecho de acceso a todos los buzones, importante para la migraci\u00f3n. zarafaAccount=1<\/em>, indica que este usuario es de zarafa.
\nA\u00f1adimos las direcciones de email, en el campo email, que pueden ser, de 1 a N.<\/em>
\nUna vez modificados todos los usuario implicados, consultamos desde la l\u00ed\u00adnea de comandos los usuarios de zarafa:
\n
\nroot@zeus:\/etc\/zarafa# zarafa-admin -l
\nUser list for Default(9):
\n\tUsername\tFullname\t\tHomeserver
\n\t—————————————————-
\n\tSYSTEM\t\tSYSTEM\t\t\tZarafa
\n\tpepito\t\tPepito
\n\tmanolito\tManolito
\n\tposeidon\tPoseidon
\n\tzeus\t Zeus
\n\tandromeda\tAndromeda
\n\topenfire openfire
\n\tcepheus\t\tCepheus
\n\tinfo\t\tinfo
\n<\/strong>
\nSi no nos sale la lista de usuarios, algo hemos hecho mal y toca revisar la configuraci\u00f3n.
\nAntes de crear los buzones, configuramos correctamente el idioma, para evitar sorpresas y cambios posteriores en el idioma de los buzones. Nos vamos al directorio:
\n \/etc\/zarafa\/userscripts\/createuser.d<\/em>
\ny editamos el fichero 00createstore<\/em> y lo dejamos tal que:
\n
\n#! \/bin\/sh
\n# Create a Zarafa user for an already existing external user. Create
\n# and initialize the user’s stores.
\nPATH=$PATH:\/sbin:\/usr\/local\/sbin:\/usr\/sbin
\n# The ZARAFA_USER variable from the server will always be in UTF-8
\n# format. The –utf8 option must be set before this value is used,
\n# since the current locale isn’t necessarily UTF-8.
\nzarafa-admin –create-store username –lang es_ES.UTF-8
\n#zarafa-admin –utf8 –create-store \u00ab${ZARAFA_USER}\u00bb –lang \u00ab${ZARAFA_LANG}\u00bb
\n<\/strong>
\nAhora creamos los buzones:
\n
\nroot@zeus#zarafa-admin –create-store pepito
\n…..
\n<\/strong>
\nY as\u00ed\u00ad con todos los buzones<\/p>\n","protected":false},"excerpt":{"rendered":"

Ahora, editamos la parte de Ldap, haciendo: root@zeus:\/etc\/zarafa# cp ldap.openldap.cfg ldap.cfg Cambiamos : nano ldap.cfg ############################################################## # LDAP\/ACTIVE DIRECTORY USER PLUGIN SETTINGS # # Any of these directives that are required, are only required if the # userplugin parameter is set to ldap. # LDAP host name\/IP address # Optional, default = localhost ldap_host = […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[58,70,102,106,134,201],"class_list":["post-213","post","type-post","status-publish","format-standard","hentry","category-linux","tag-debian","tag-exchange","tag-linux-2","tag-migrar-exchange-a-zarafa","tag-openldap","tag-zarafa"],"_links":{"self":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts\/213","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=213"}],"version-history":[{"count":0,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts\/213\/revisions"}],"wp:attachment":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=213"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=213"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=213"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}