LDAP Profile
- The Lightweight Directory Access Protocol (LDAP) is used to query and modify data using directory services running over TCP/IP.
- If the email servers behind KoruMail are integrated with a directory service via an LDAP profile, KoruMail can check whether the recipient is a valid user in the directory.
- If the recipient is not a valid user then the email is rejected at the SMTP level. This avoids wasting resources by filtering mail for for invalid recipients.
- The LDAP profiles added here are available for selection in interfaces such as 'Managed Domains > Routes' and 'SMTP AUTH > SMTP Authentication Settings'.
To open the 'LDAP' screen
- Click the 'SMTP' tab on the left and click 'LDAP/DB' then 'LDAP'.
|
LDAP Profile – Table of Column Descriptions |
||
|---|---|---|
|
Column Header |
Description |
|
|
LDAP Profile Name |
The name of the LDAP profile added to KoruMail. |
|
|
Action |
|
Allows the administrators to edit the details of a LDAP profile. |
 |
Allows administrators to copy a LDAP profile so it can be used as the basis for a new profile. |
|
 |
Allows the administrators to delete a LDAP profile from the list. |
|
From this screen administrators can:
You can create a new LDAP profile in two ways:
- By clicking the copy LDAP profile button beside a LDAP profile. This will open the 'New LDAP Profile' screen
with all its details pre-populated for the copied profile.
- By clicking the 'Add LDAP profile' link at the top
|
LDAP Profile -Table of Parameters |
|
|---|---|
|
Parameter |
Description |
|
Profile Name |
Enter the name of the new LDAP profile. |
|
Connection type |
Determines how KoruMail should connect to the LDAP server. The options available are:
|
|
Host Name or IP Address |
Enter the hostname or IP address of the LDAP/Active Directory. KoruMail will first check the primary server and will check the secondary server if the primary is not available. |
|
Port |
Specify the LDAP server port number. If you use 'Active Directory' then, instead of the default LDAP port 389, port 3826 must be used as Active Directory Catalog port. |
|
Search Type |
Select the type of search from the drop-down. The options available are: Realtime – Checks the AD server each time for user validity Cache – Checks the user validity from the system's cache memory and if not available checks the AD server. |
|
Cache Time (minutes) |
If the 'Cache' option is enabled as 'Search Type', this field becomes active. Enter the time in minutes the details of users are cached after which they are wiped out. |
|
Anonymous Access |
If this feature is enabled, the connection to
LDAP server will be created anonymously so that username and
password are not required. |
|
Login DN |
LDAP username to connect LDAP / Active Directory server. |
|
Password |
Enter the LDAP user password. |
|
Enable catch-all for this profile |
When this feature is enabled, if the recipient's address is value1-value2-value3@domain.com then KoruMail first checks whether this address is registered in LDAP. If it does not find it, it deletes value1 and checks the remaining value2-value3@domain.com address. If it does not find it again then it delete value2 and checks value3@domain.com |
|
Search Base |
Specify the search starting criteria to be used in LDAP tree. |
|
Search Pattern |
Determines which LDAP attributes will be searched in search base. |
|
Test E-Mail Address |
Enter the email address to test the LDAP connection. |
|
Email host attribute name |
Enter the mail host attribute name for the LDAP / Active Directory server. |
|
Check Local DB Users Also |
|
- Click the 'Verify' button to check the entered parameters and connectivity are correct. If verification fails, the error message will be displayed.
- Click the 'Save' button to apply your changes.
-
Click the
button beside a LDAP profile that you want to edit.
- Edit the required parameters. This is similar to the method explained in the 'Add' section.
- Click 'Save' to apply your changes.
-
Click the delete button
beside a LDAP profile that you want to remove.
-
Click 'OK' to confirm the deletion.