引用:

下面是引用sollinux于2006-05-17 14:04发表的:
遇到2个问题：
1。在DNS上设置 extmail.domain.com 和 extman.domain.com 为 mail.domain.com 的CNAME
可以IE访问 http://extmail.domain.com 但无法打开 http://extman.domain.com
请问这样设置是否正确？ /etc/httpd/conf.d/extmail.conf 是按照文档中所设置。

.......

如果是参考ethan 的文档的话，请确认ldif是否正确导入，另外，仔细看他的文档，也许默认的登陆

帐户不是root@extmail.org了（ldif的数据已经更改？）还有就是webman.cf里认证类型记得设置

为ldap，而不是mysql

感谢回复！仔细察看以前帖子之后发现仍有登录 http://extman.domain.com 显示 "Invalid email account or password "
init.ldif 最后部分：
#Manager:mail=root@extmail.org,o=extmailManager,dc=extmail.org
dn:mail=root@domain.com,o=extmailManager,dc=domain,dc=com
cn:Root
uid:root
mail:root@domain.com
userPassword:{crypt}mypwd
managerType:admin
active:1
createDate:2006-05-17 13:03:10
expireDate:2009-06-01 00:00:00
objectClass:top
objectClass:extmailManager

用slapd -d 256 观察：
slapd starting
conn=0 fd=10 ACCEPT from IP=127.0.0.1:32834 (IP=0.0.0.0:389)
conn=0 op=0 BIND dn="cn=Manager,dc=domain,dc=com" method=128
conn=0 op=0 BIND dn="cn=Manager,dc=domain,dc=com" mech=SIMPLE ssf=0
conn=0 op=0 RESULT tag=97 err=0 text=
conn=0 op=1 SRCH base="dc=domain,dc=com" scope=2 deref=2 filter="(&(mail=root@domain.com)(objectClass=extmailManager))"
conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=0 fd=10 closed
conn=1 fd=10 ACCEPT from IP=127.0.0.1:32835 (IP=0.0.0.0:389)
conn=1 op=0 BIND dn="cn=Manager,dc=domain,dc=com" method=128
conn=1 op=0 BIND dn="cn=Manager,dc=domain,dc=com" mech=SIMPLE ssf=0
conn=1 op=0 RESULT tag=97 err=0 text=
conn=1 fd=10 closed

webman.cf
# sys_backend_type mysql|ldap
SYS_BACKEND_TYPE = ldap
# ldif attributes
SYS_LDAP_ATTR_USERNAME = mail
SYS_LDAP_ATTR_PASSWD = userPassword

此外，init.ldif 我是照着敲进去的，没有复制粘贴，是不是会有问题？

引用:

下面是引用sollinux于2006-05-17 15:19发表的:
webman.cf
# sys_backend_type mysql|ldap
SYS_BACKEND_TYPE = ldap
# ldif attributes
SYS_LDAP_ATTR_USERNAME = mail
.......

引用:

conn=0 op=0 BIND dn="cn=Manager,dc=domain,dc=com" method=128
conn=0 op=0 BIND dn="cn=Manager,dc=domain,dc=com" mech=SIMPLE ssf=0
conn=0 op=0 RESULT tag=97 err=0 text=
conn=0 op=1 SRCH base="dc=domain,dc=com" scope=2 deref=2 filter="(&(mail=root@domain.com)(objectClass=extmailManager))"
conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=

要么配置错了，要么ldif有问题。slapd的调试信息里，登陆时明明是root@domain.com

怎么说用户是root@extmail.org呢？这显然不对吧。但是ldif您给出的却又是root@extmail.org

这到底怎么回事呢？ps：严格按照ethan文档的步骤配置，或者直接使用extman附带的init.ldif

文件直接导入，并将base设置为dc=extmail.org ， rootdn 为cn=Manager,dc=extmail.org

才发现 extman 自带了 init.ldif .sorry.
现在发现是自己建的那个ldif文件有点问题，待重新修正后再试试。
另外，我自己写的那个init.ldif 第一句是注释掉的。
感谢指点。

上面问题解决了。原来还是自己在编写 init.ldif 文件时出现了差错。
但新问题又出现了：
1. 登入extman 管理界面后新建 domain ，postport 是否填写: postfix?
2. 新用户登录后 界面显示 乱码。
  是否和系统自带字符集有关？

乱码问题也已解决，原来是 httpd.conf 中应注释掉 AddDefaultCharset UTF-8
感谢extmail DX 指点。

现在遇到的问题为前面一同学贴过的，就是outlook可以收邮件，但是无法发送，maillog显示Relay access denied
已经设置了outlook的发送邮件服务器需要身份验证，在extmail中收发均正常。

原来是 main.cf 中 virtual_transport = maildrop: 的 maildrop 后面没有冒号。

还有我的
#service ldap status是在运行的
#service openldap status是 openldap: unrecognized service
这个有没有关系/

我是初次装extmail的，
大家帮忙分析一下


#vi /var/www/cgi-bin/extman/webman.cf

#webman.cf的配置文件如下
# sys_config, the config file and webman programe root
SYS_CONFIG = /var/www/cgi-bin/extman/

# sys_langdir, the i18n dir
SYS_LANGDIR = /var/www/cgi-bin/extman/lang

# sys_templdir, the template dir
SYS_TEMPLDIR = /var/www/cgi-bin/extman/html

# maildir_base, the base dir of user maildir, use absolute path
# if not set.
SYS_MAILDIR_BASE = /home/vmail/domains

# sys_warn, show system warning or not, default to yes
SYS_SHOW_WARN = 0

# sys_sess_dir, the session dir
SYS_SESS_DIR = /var/www/cgi-bin/extman/tmp/

# sys_sess_timeout, session timeout in seccond, default 6 hours
SYS_SESS_TIMEOUT = 21600

# sys_user_psize, user default page_size
SYS_PSIZE = 10

# sys_user_lang, user default language
SYS_LANG = en_US

# sys_charset,
SYS_CHARSET = iso-8859-1

# sys_template_name, the template name
SYS_TEMPLATE_NAME = standard

# web management related restritions
# sys_default_expire, valid value: ?y ?m ?d
SYS_DEFAULT_EXPIRE = 1y

# sys_default_services, valid value: smtpauth, webmail, pop3, netdisk
# can concatenate with "," with multiple values, eg: webmail,smtpauth
SYS_DEFAULT_SERVICES = webmail,smtpauth,pop3

# sys_min_uid, the minimal uid
SYS_MIN_UID = 500

# sys_min_gid, the minimal gid
SYS_MIN_GID = 500

# sys_default_uid, if not set, webman will ignore it
SYS_DEFAULT_UID = 500

# sys_default_gid, if not set, webman will ignore it
SYS_DEFAULT_GID = 500

# sys_quota_multiplier, in bytes, default to 1 MB
SYS_QUOTA_MULTIPLIER = 1048576

# sys_quota_type, valid type: vda|courier
SYS_QUOTA_TYPE = courier

# maxquota, alias, users and netdisk quota for domain
SYS_DEFAULT_MAXQUOTA = 10
SYS_DEFAULT_MAXALIAS = 10
SYS_DEFAULT_MAXUSERS = 10
SYS_DEFAULT_MAXNDQUOTA = 10

# sys_backend_type mysql|ldap
SYS_BACKEND_TYPE = ldap

# sys_crypt_type
SYS_CRYPT_TYPE = crypt

# sys_no_utf8, yes|no, default yes
SYS_NO_UTF8 = no

# if mysql, all relate paramters should prefix as SYS_MYSQL
SYS_MYSQL_USER = webman
SYS_MYSQL_PASS = webman
SYS_MYSQL_DB = extmail
SYS_MYSQL_HOST = localhost
SYS_MYSQL_SOCKET = /var/lib/mysql/mysql.sock
# table name
SYS_MYSQL_TABLE = manager
SYS_MYSQL_ATTR_USERNAME = username
SYS_MYSQL_ATTR_PASSWD = password

# if ldap, all relate paramters should prefix as SYS_LDAP
SYS_LDAP_BASE = dc=haining,dc=com
SYS_LDAP_RDN = cn=Manager,dc=haining,dc=com
SYS_LDAP_PASS = secret
SYS_LDAP_HOST = localhost
# ldif attributes
SYS_LDAP_ATTR_USERNAME = mail
SYS_LDAP_ATTR_PASSWD = userPassword







#vi /etc/openldap/init.ldif


#init.ldif配置文件如下

dn: dc=haining,dc=com
objectClass: organization
objectClass: dcObject
dc: haining
o: haining

# Manager, extmail.org
dn: cn=Manager,dc=haining,dc=com
objectClass: top
objectClass: organizationalRole
cn: Manager

# domains + users: o=extmailAccount, dc=extmail.org
dn: o=extmailAccount,dc=haining,dc=com
objectClass: organization
o: extmailAccount

# aliases: o=extmailAlias, dc=extmail.org
dn: o=extmailAlias,dc=haining,dc=com
objectClass: organization
o: extmailAlias

# manager: o=extmailManager, dc=extmail.org
dn: o=extmailManager,dc=haining,dc=com
objectClass: organization
o: extmailManager

# Manager: mail=root@extmail.org, o=extmailManager, dc=extmail.org
dn: mail=root@haining.com, o=extmailManager, dc=haining,dc=com
cn: Root
uid: root
mail: root@haining.com
userPassword: {crypt}dua7lTAdGjyfo
managerType: admin
active: 1
createDate: 2005-10-18 18:32:14
expireDate: 2007-08-01 00:00:00
objectclass: top
objectclass: extmailManager
                        






#vi /etc/openldap/slapd.conf
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include      /etc/openldap/schema/core.schema
include      /etc/openldap/schema/cosine.schema
include      /etc/openldap/schema/inetorgperson.schema
include      /etc/openldap/schema/nis.schema
include      /etc/openldap/schema/extmail.schema
# Allow LDAPv2 client connections.  This is NOT the default.
allow bind_v2

# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral     ldap://root.openldap.org

pidfile      /var/run/slapd.pid
argsfile      /var/run/slapd.args

# Load dynamic backend modules:
# modulepath   /usr/sbin/openldap
# moduleload   back_bdb.la
# moduleload   back_ldap.la
# moduleload   back_ldbm.la
# moduleload   back_passwd.la
# moduleload   back_shell.la

# The next three lines allow use of TLS for encrypting connections using a
# dummy test certificate which you can generate by changing to
# /usr/share/ssl/certs, running "make slapd.pem", and fixing permissions on
# slapd.pem so that the ldap user or group can read it.  Your client software
# may balk at self-signed certificates, however.
# TLSCACertificateFile /usr/share/ssl/certs/ca-bundle.crt
# TLSCertificateFile /usr/share/ssl/certs/slapd.pem
# TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem

# Sample security restrictions
#     Require integrity protection (prevent hijacking)
#     Require 112-bit (3DES or better) encryption for updates
#     Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64

# Sample access control policy:
#     Root DSE: allow anyone to read it
#     Subschema (sub)entry DSE: allow anyone to read it
#     Other DSEs:
#          Allow self write access
#          Allow authenticated users read access
#          Allow anonymous users to authenticate
#     Directives needed to implement policy:
# access to dn.base="" by * read
# access to dn.base="cn=Subschema" by * read
# access to *
#     by self write
#     by users read
#     by anonymous auth
#
# if no access controls are present, the default policy
# allows anyone and everyone to read anything but restricts
# updates to rootdn.  (e.g., "access to * by * read")
#
# rootdn can always read and write EVERYTHING!

#######################################################################
# ldbm and/or bdb database definitions
#######################################################################

database      bdb
suffix       "dc=haining,dc=com"
rootdn       "cn=Manager,dc=haining,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoided.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
  rootpw           secret
# rootpw           {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory     /var/lib/ldap

# Indices to maintain for this database
index objectClass                eq,pres
index ou,cn,mail,surname,givenname    eq,pres,sub
index uidNumber,gidNumber,loginShell   eq,pres
index uid,memberUid              eq,pres,sub
index nisMapName,nisMapEntry        eq,pres,sub

# Replicas of this database
#replogfile /var/lib/ldap/openldap-master-replog
#replica host=ldap-1.example.com:389 starttls=critical
#    bindmethod=sasl saslmech=GSSAPI
#    authcId=host/ldap-master.example.com@EXAMPLE.COM
                                          


以上是三个配置文件
#service ldap restart ,这是我是可以启动的
就是#ldapadd -x -D 'cn=Manager,dc=haining,dc=com' -w secret -f /etc/openldap/init.ldif这步操作时有如下的错误，大家帮忙看看，谢谢。。

# ldapadd -x -D 'cn=Manager,dc=haining,dc=com' -w secret -f /etc/openldap/init.ldif
ldap_bind: Invalid credentials (49)

引用:

下面是引用xiukan于2006-05-18 14:55发表的:
还有我的
#service ldap status是在运行的
#service openldap status是 openldap: unrecognized service
这个有没有关系/

没有openldap 这个service的。只有ldap（实际就是openldap）

# ldapadd -x -D 'cn=Manager,dc=haining,dc=com' -w secret -f /etc/openldap/init.ldif
出错要检查所有配置文件中关于 ROOTPW 的设置是否一致。默认口令为 secret

在extman中添加用户 出现该信息，无法建立用户
New user test@domain.com failed, reason: cn: value #0 invalid per syntax

这和extman/webman.cf 有关还是和 extmail/webmail.cf 有关？
谢谢！