Difference between revisions of "Template:Directory Services Kerio Connect Authentication"

[unchecked revision][unchecked revision]
Line 1: Line 1:
To achieve this, you have to configure the following settings in the ''Authentication'' section:
+
As the Kerio Connect API only support synchronization, but not authentication of users, MailStore allows authenticate users via an IMAP login. To achieve this, you have to configure the following settings in the ''Authentication'' section:
 
   
 
   
 
*'''Kerio IMAP Server'''<br/>Enter the IP address or the DNS name of the Kerio Connect server against which authentication should be performed.
 
*'''Kerio IMAP Server'''<br/>Enter the IP address or the DNS name of the Kerio Connect server against which authentication should be performed.
*'''IMAP Server Access'''<br/>Configure whether the connection to the Kerio IMAP server is to be unencrypted or IMAP-TLS/IMAP-SSL encrypted.
+
*'''IMAP Server Access'''<br/>Configure the connection protocol. Be aware that IMAP servers often expect the connection to be encrypted (IMAP-TLS, IMAP-SSL). Additionally activate the ''Ignore SSL warnings'' option if a self-signed or non-public certificate is used on the email server
*'''Ignore SSL Security Warnings (only when using IMAP-TLS and IMAP-SSL)'''<br/>Activate this option if a self-signed or non-public certificate is used on the Kerio IMAP server. Otherwise the authentication will permanently fail.
 
  
 
<p class="msnote"><span style="color: red">'''Important Notice:'''</span> If your Kerio Connect users authenticate against an Active Directory or if you store the passwords as SHA hashes, you must disable ''CRAM-MD5'' and ''DIGEST-MD5'' under ''Configuration'' > ''Advanced Options'' > ''Security Policy'' in your Kerio Connect Server. Otherwise users will not be able to log on to MailStore.</p>
 
<p class="msnote"><span style="color: red">'''Important Notice:'''</span> If your Kerio Connect users authenticate against an Active Directory or if you store the passwords as SHA hashes, you must disable ''CRAM-MD5'' and ''DIGEST-MD5'' under ''Configuration'' > ''Advanced Options'' > ''Security Policy'' in your Kerio Connect Server. Otherwise users will not be able to log on to MailStore.</p>
 
<noinclude>[[de:Includes:Anmeldung_mit_Verzeichnisdienst-Zugangsdaten_Kerio_Optionen]]</noinclude>
 
<noinclude>[[de:Includes:Anmeldung_mit_Verzeichnisdienst-Zugangsdaten_Kerio_Optionen]]</noinclude>

Revision as of 12:38, 25 June 2014

As the Kerio Connect API only support synchronization, but not authentication of users, MailStore allows authenticate users via an IMAP login. To achieve this, you have to configure the following settings in the Authentication section:

  • Kerio IMAP Server
    Enter the IP address or the DNS name of the Kerio Connect server against which authentication should be performed.
  • IMAP Server Access
    Configure the connection protocol. Be aware that IMAP servers often expect the connection to be encrypted (IMAP-TLS, IMAP-SSL). Additionally activate the Ignore SSL warnings option if a self-signed or non-public certificate is used on the email server

Important Notice: If your Kerio Connect users authenticate against an Active Directory or if you store the passwords as SHA hashes, you must disable CRAM-MD5 and DIGEST-MD5 under Configuration > Advanced Options > Security Policy in your Kerio Connect Server. Otherwise users will not be able to log on to MailStore.