General discussion on installation and configuration of SOGo

Text archives Help


Re: Re: [SOGo] kerberos authentication


Chronological Thread 
  • From: < >
  • To:
  • Subject: Re: Re: [SOGo] kerberos authentication
  • Date: Mon, 31 Jan 2011 17:55:24 -0500 (EST)

Thanks for your answer,

now I resolved the problem for apache-kerberos configuration, but I have yet
problem in sogo configuration in order to enable proxy-side authentication.

I tried to follow the indication suggested in
http://www.sogo.nu/english/nc/support/faq/article/how-to-use-webauth-with-sogo-2.html

but when i put "SOGoTrustProxyAuthentication" to YES I got a blank page with
the word "Unauthorized"

In order to enable proxy-side authentication in SOGo.conf I uncomment:
<Location /SOGo>
AuthType Kerberos
Require valid-user
SetEnv proxy-nokeepalive 1
RequestHeader set "x-webobjects-remote-user" "%{WEBAUTH_USER}e"
Allow from all
</Location>

and

RequestHeader set "x-webobjects-remote-user" "%{REMOTE_USER}e"



My
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//GNUstep//DTD plist 0.9//EN"
"http://www.gnustep.org/plist-0_9.xml";>
<plist version="0.9">
<dict>
<key>NSGlobalDomain</key>
<dict>
</dict>
<key>sogod</key>
<dict>
<key>OCSEMailAlarmsFolderURL</key>

<string>mysql://sogo: :3306/sogo/sogo_alarms_folder</string>
<key>OCSFolderInfoURL</key>

<string>mysql://sogo: :3306/sogo/sogo_folder_info</string>
<key>SOGoACLsSendEMailNotifications</key>
<string>YES</string>
<key>SOGoAppointmentSendEMailNotifications</key>
<string>YES</string>
<key>SOGoDraftsFolderName</key>
<string>Drafts</string>
<key>SOGoFoldersSendEMailNotifications</key>
<string>YES</string>
<key>SOGoIMAPServer</key>
<string>imaps://@@@.it:993/?tls=YES</string>
<key>SOGoLanguage</key>
<string>Italian</string>
<key>SOGoMailDomain</key>
<string>cnaf.infn.it</string>
<key>SOGoProfileURL</key>

<string>mysql://sogo: :3306/sogo/sogo_user_profile</string>
<key>SOGoSentFolderName</key>
<string>Sent</string>
<key>SOGoTimeZone</key>
<string>Europe/Rome</string>
<key>SOGoTrashFolderName</key>
<string>Trash</string>
<key>SOGoTrustProxyAuthentication</key>
<string>YES</string>
<key>SOGoUserSources</key>
<array>
<dict>
<key>CNFieldName</key>
<string>cn</string>
<key>IDFieldName</key>
<string>uid</string>
<key>UIDFieldName</key>
<string>uid</string>
<key>baseDN</key>
<string>ou=people,ou=cnaf,o=infn,c=it</string>
<key>canAuthenticate</key>
<string>YES</string>
<key>displayName</key>
<string>Shared Addresses</string>
<key>hostname</key>
<string>131.154.128.32</string>
<key>id</key>
<string>public</string>
<key>isAddressBook</key>
<string>YES</string>
<key>port</key>
<string>389</string>
<key>type</key>
<string>ldap</string>
</dict>
</array>
</dict>
</dict>
</plist>


Thanks in advance for your support
Marco B



Archive powered by MHonArc 2.6.16.

Top of page