Installare un ambiente Groupware integrato in Samba4: differenze tra le versioni

Vai alla navigazione Vai alla ricerca
Riga 55: Riga 55:
dcerpc_mapiproxy:server = true
dcerpc_mapiproxy:server = true
dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp, exchange_ds_rfr
dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp, exchange_ds_rfr
</pre>
== Installazione di SoGo ==
Creiamo un database MySQL per SoGo:
<pre>
# mysql -uroot -p
mysql> create database sogo;
mysql> create user 'sogo'@'localhost' identified by 'Password';
mysql> grant all privileges on sogo.* to 'sogo'@'localhost';
mysql> quit;
</pre>
Sostituiamo il file di configurazione di SoGo con il seguente:
<pre>
# cp /etc/sogo/sogo.conf /etc/sogo/sogo.cong.old
# nano /etc/sogo/sogo.conf
</pre>
<pre>
{
  /* *********************  Main SOGo configuration file  **********************
  *                                                                          *
  * Since the content of this file is a dictionary in OpenStep plist format,  *
  * the curly braces enclosing the body of the configuration are mandatory.  *
  * See the Installation Guide for details on the format.                    *
  *                                                                          *
  * C and C++ style comments are supported.                                  *
  *                                                                          *
  * This example configuration contains only a subset of all available        *
  * configuration parameters. Please see the installation guide more details. *
  *                                                                          *
  * ~sogo/GNUstep/Defaults/.GNUstepDefaults has precedence over this file,    *
  * make sure to move it away to avoid unwanted parameter overrides.          *
  *                                                                          *
  * **************************************************************************/
  /* Database configuration (mysql:// or postgresql://) */
  SOGoProfileURL = "mysql://sogo:Passw0rd@localhost:3306/sogo/sogo_user_profile";
  OCSFolderInfoURL = "mysql://sogo:Passw0rd@localhost:3306/sogo/sogo_folder_info";
  OCSSessionsFolderURL = "mysql://sogo:Passw0rd@localhost:3306/sogo/sogo_sessions_folder";
  /* Mail */
  SOGoDraftsFolderName = Drafts;
  SOGoSentFolderName = Sent;
  SOGoTrashFolderName = Trash;
  SOGoIMAPServer = 127.0.0.1:143;
  SOGoSieveServer = sieve://127.0.0.1:4190;
  SOGoSMTPServer = 127.0.0.1;
  SOGoMailDomain = domain.local;
  SOGoMailingMechanism = smtp;
  //SOGoForceExternalLoginWithEmail = NO;
  //SOGoMailSpoolPath = /var/spool/sogo;
  //NGImap4ConnectionStringSeparator = "/";
  /* Notifications */
  //SOGoAppointmentSendEMailNotifications = NO;
  //SOGoACLsSendEMailNotifications = NO;
  //SOGoFoldersSendEMailNotifications = NO;
  /* Authentication */
  //SOGoPasswordChangeEnabled = YES;
  /* LDAP authentication example */
  //SOGoUserSources = (
  //  {
  //    type = ldap;
  //    CNFieldName = cn;
  //    UIDFieldName = uid;
  //    IDFieldName = uid; // first field of the DN for direct binds
  //    bindFields = (uid, mail); // array of fields to use for indirect binds
  //    baseDN = "ou=users,dc=acme,dc=com";
  //    bindDN = "uid=sogo,ou=users,dc=acme,dc=com";
  //    bindPassword = qwerty;
  //    canAuthenticate = YES;
  //    displayName = "Shared Addresses";
  //    hostname = ldap://127.0.0.1:389;
  //    id = public;
  //    isAddressBook = YES;
  //  }
  //);
  /* LDAP AD/Samba4 example */
  SOGoUserSources = (
    {
      type = ldap;
      CNFieldName = cn;
      UIDFieldName = sAMAccountName;
      baseDN = "CN=users,dc=domain,dc=local";
      bindDN = "Administrator@domain.local";
      bindFields = (sAMAccountName, mail);
      bindPassword = "Passw0rd";
      canAuthenticate = YES;
      displayName = "Public";
      hostname = ldap://127.0.0.1:389;
      filter = "mail = '*'";
      id = directory;
      isAddressBook = YES;
    }
  );
  /* SQL authentication example */
  /*  These database columns MUST be present in the view/table:
  *    c_uid - will be used for authentication -  it's the username or username@domain.tld)
  *    c_name - which can be identical to c_uid -  will be used to uniquely identify entries
  *    c_password - password of the user, plain-text, md5 or sha encoded for now
  *    c_cn - the user's common name - such as "John Doe"
  *    mail - the user's mail address
  *  See the installation guide for more details
  */
  //SOGoUserSources =
  //  (
  //    {
  //      type = sql;
  //      id = directory;
  //      viewURL = "postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_view";
  //      canAuthenticate = YES;
  //      isAddressBook = YES;
  //      userPasswordAlgorithm = md5;
  //    }
  //  );
  /* Web Interface */
  SOGoPageTitle = SOGo;
  SOGoVacationEnabled = YES;
  SOGoForwardEnabled = YES;
  SOGoSieveScriptsEnabled = YES;
  //SOGoMailAuxiliaryUserAccountsEnabled = YES;
  //SOGoTrustProxyAuthentication = NO;
  /* General */
  SOGoLanguage = English;
  SOGoTimeZone = Europe/Paris;
  SOGoCalendarDefaultRoles = (
    PublicDAndTViewer,
    ConfidentialDAndTViewer
  );
  SOGoSuperUsernames = (Administrator); // This is an array - keep the parens!
  SxVMemLimit = 384;
  WOPidFile = "/var/run/sogo/sogo.pid";
  SOGoMemcachedHost = 127.0.0.1;
 
  /* Debug */
  //SOGoDebugRequests = YES;
  //SoDebugBaseURL = YES;
  //ImapDebugEnabled = YES;
  //LDAPDebugEnabled = YES;
  //PGDebugEnabled = YES;
  //MySQL4DebugEnabled = YES;
  //SOGoUIxDebugEnabled = YES;
  //WODontZipResponse = YES;
  //WOLogFile = /var/log/sogo/sogo.log;
}
</pre>
Modifichiamo la configurazione di Apache2:
<pre>
# nano /etc/apache2/conf.d/SOGo.conf
</pre>
<pre>
# RequestHeader set "x-webobjects-server-port" "443"
# RequestHeader set "x-webobjects-server-name" "yourhostname"
# RequestHeader set "x-webobjects-server-url" "https://yourhostname"
</pre>
Abilitiamo i moduli necessari in Apache:
<pre>
# a2enmod proxy
# a2enmod proxy_http
# a2enmod headers
# a2enmod rewrite
# a2dismod reqtimeout
</pre>
Riavviamo Apache e gli altri servizi:
<pre>
# /etc/init.d/apache2 restart
# /etc/init.d/samba4 restart
# /etc/init.d/sogo restart
</pre>
=== Abilitare SSL ===
Iniziamo con abilitare il supporto SSL in Apache:
<pre>
# a2enmod ssl
# a2ensite default-ssl
# /etc/init.d/apache2 restart
</pre>
Verifichiamo di nona vere problemi con i certificati andando all'indirizzo:
<pre>
https://domain_name_of_your_server/rpc/rpcproxy.dll
</pre>
</pre>
Estratto da "https://guide.debianizzati.org/index.php/Installare_un_ambiente_Groupware_integrato_in_Samba4"