User Tools
sspi_gssapi_аутентификация_для_сервиса_imapd
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
sspi_gssapi_аутентификация_для_сервиса_imapd [2010/08/10 18:39] val |
— (current) | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== SSPI/GSSAPI аутентификация для сервиса imapd ====== | ||
| - | ===== Регистрация сервиса imap в AD ===== | ||
| - | |||
| - | Добавляем пользователя в AD | ||
| - | <code> | ||
| - | Login: gateimap | ||
| - | Password: Pa$$w0rd | ||
| - | </code> | ||
| - | Пароль не меняется и не устаревает | ||
| - | ===== Копирования ключа KERBEROS AD на сервер imap ===== | ||
| - | |||
| - | ==== Win2003 ==== | ||
| - | <code> | ||
| - | C:\>ktpass -princ imap/gate.corpX.un@CORPX.UN -mapuser gateimap -pass 'Pa$$w0rd' -out gateimap.keytab | ||
| - | |||
| - | C:\>pscp gateimap.keytab student@gate: | ||
| - | </code> | ||
| - | |||
| - | ==== FreeBSD, Ubuntu (8.04) ==== | ||
| - | <code> | ||
| - | gate# ktutil copy ~student/gateimap.keytab /etc/krb5.keytab | ||
| - | |||
| - | gate# ktutil list | ||
| - | </code> | ||
| - | |||
| - | ==== Ubuntu (10.04) ==== | ||
| - | <code> | ||
| - | root@gate:~# ktutil | ||
| - | ktutil: rkt /usr/student/gateimap.keytab | ||
| - | ktutil: list -e | ||
| - | ktutil: wkt /etc/krb5.keytab | ||
| - | ktutil: quit | ||
| - | |||
| - | root@gate:~# ktutil | ||
| - | ktutil: rkt /etc/krb5.keytab | ||
| - | ktutil: list -e | ||
| - | ... | ||
| - | ktutil: quit | ||
| - | </code> | ||
| - | |||
| - | ==== FreeBSD, Ubuntu ==== | ||
| - | <code> | ||
| - | gate# chmod +r /etc/krb5.keytab | ||
| - | </code> | ||
| - | ===== Инсталяция GSSAPI IMAP сервера ===== | ||
| - | |||
| - | [[Протокол SMTP и Mail Transfer Agent]] | ||
| - | |||
| - | ==== FreeBSD ==== | ||
| - | <code> | ||
| - | [gate:~] # cd /usr/ports/mail/dovecot | ||
| - | [gate:ports/mail/dovecot] # make config | ||
| - | [gate:ports/mail/dovecot] # cat /var/db/ports/dovecot/options | ||
| - | ... | ||
| - | WITH_GSSAPI=true | ||
| - | ... | ||
| - | [gate:ports/mail/dovecot] # make install clean | ||
| - | </code> | ||
| - | |||
| - | [[Протокол IMAP4]] | ||
| - | |||
| - | <code> | ||
| - | # cat dovecot.conf | ||
| - | ... | ||
| - | auth default { | ||
| - | mechanisms = gssapi | ||
| - | ... | ||
| - | </code> | ||
| - | |||
| - | ===== Настройка SSPI почтового клиента Thunderbird ===== | ||
| - | <code> | ||
| - | gate# mail user | ||
| - | </code> | ||
| - | |||
| - | Email адрес: user@gate.corpX.un | ||
| - | |||
| - | При первом запуске Thunderbird отмените получение почты с указанием пароля | ||
| - | |||
| - | Откройте свойства папки user@gate.corpX.un -> Параметры сервера->Использовать защищенную аутентификацию | ||
sspi_gssapi_аутентификация_для_сервиса_imapd.1281451163.txt.gz · Last modified: 2013/05/22 13:50 (external edit)
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
