LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 12-03-2004, 11:14 AM   #1
soup21
LQ Newbie
 
Registered: Dec 2004
Posts: 27

Rep: Reputation: 15
Question Authenticating POP3 clients against WIN-2k server


Hello

How can I have a linux email server that when users get their mails with their POP3 clients(win-xp) their passwords can be authenticated from (against) a WIN-2K server ?
It means:
account server is a Win-2K
Email server is Linux
Email client is Win-XP or Win98(or other POP3 clients)

And for that purpose which linux Email server software is best, Sendmail or Qmail or ... ?

Thanks

 
Old 12-04-2004, 08:58 AM   #2
hob
Senior Member
 
Registered: Mar 2004
Location: Wales, UK
Distribution: Debian, Ubuntu
Posts: 1,075

Rep: Reputation: 45
We have this set up at work.

The first thing that you should know is that the SMTP and POP services are completely separate pieces of software on Linux. SMTP puts the mail in the mailboxes and POP takes it out - they actually don't directly interact at all.

For a standard SMTP e-mail server, both sendmail and qmail are not worth the trouble. Many Linux distributions (and OS X) supply Postfix, which is the best choice for an easy to set up system that will be compatible with whatever you need to do.

For the POP service, the easiest thing to do is use whatever your distribution includes - POP doesn't have advanced features... Most use UW IMAP (which includes a POP service). UW IMAP is controlled by inetd (or xinetd), it isn't a standalone service.

Authentication is also modular in Linux. You install Samba and set up Winbind, which will enable whichever services you configure to use it to authenticate against the Windows domain.

This is all just a case of editing a few text files. The time-consuming part is learning enough about the systems to know what to edit - it look me about a couple of weeks.

I can go into more detail on specific points if you need, but that's the general outline.

Last edited by hob; 12-04-2004 at 09:02 AM.
 
Old 12-12-2004, 04:19 AM   #3
soup21
LQ Newbie
 
Registered: Dec 2004
Posts: 27

Original Poster
Rep: Reputation: 15
Smile

>>This is all just a case of editing a few text files
>>I can go into more detail on specific points if you need, but that's the general outline.

Hello again

Thank you for your answer
i know SMTP & POP & IMAP and have installed many of their servers several times. the only thing is that I don't know how must I tell to linux to authenticate IMAP or POP3 clients against WIN-2k .
Can you tell me those above file editing in detail as you told, please ?

Thanks
 
Old 12-12-2004, 07:42 AM   #4
hob
Senior Member
 
Registered: Mar 2004
Location: Wales, UK
Distribution: Debian, Ubuntu
Posts: 1,075

Rep: Reputation: 45
If you install the Samba docs, you will find the info on how to make your server an AD member server:

/usr/share/doc/samba-3.0.2/docs/htmldocs/domain-member.html#ads-member

You can then set up Winbind:

/usr/share/doc/samba-3.0.2/docs/htmldocs/winbind.html

Note the bit about nscd - you will need to set "enable-cache" to no for the passwd and groups in /etc/nscd.conf, or weird account synchronisation issues will occur.

Once you have Winbind as an authentication source, edit the file in /etc/pam.d/ for the relevent services. They need to look like this:

auth required pam_nologin.so
auth sufficient pam_stack.so service=system-auth
auth sufficient pam_winbind.so
account sufficient pam_stack.so service=system-auth
account sufficient pam_winbind.so
password required pam_stack.so service=system-auth
session sufficient pam_stack.so service=system-auth
session required pam_limits.so
session optional pam_console.so

You just add lines for the Winbind plugin for account and auth.

The only serious problem I had was that users must have home directories for the SMTP service to accept mail for them. If you use the PAM plug-in that creates home directories when a user first logs in you still have the prblem that all mail for them will be bounced until they after they have logged in. So I wrote a Perl script that queries AD and creates the home directories for new AD users.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Controlling Poff/Pon on a Debian 3.0r2 server from Win clients? spaceuser Debian 1 10-22-2004 12:44 PM
Problem with Win XP Clients logging in a Domain with a Samba Server YasoKuhl Linux - Networking 0 05-03-2004 01:06 PM
Win clients to AIX server SSH? Larsin Linux - Software 2 02-12-2004 02:47 PM
Unable to connect to RH9 server from Win XP clients gavinc Linux - Networking 0 08-19-2003 08:15 AM
help on authenticating linux clients on server subhasis_ray Linux - Newbie 3 02-13-2002 01:35 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:57 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration