22.3 Configuring User Synchronization

You can configure the MTA to synchronize user information in the GroupWise Address Book with user information in an LDAP directory such as NetIQ eDirectory or Microsoft Active Directory. You can also configure the MTA to allow the Outlook Client and Mac Mail to access the System Address Book by enabling an LDAP server.

22.3.1 Configuring LDAP User Synchronization

When you import GroupWise users from an LDAP directory such as NetIQ eDirectory or Microsoft Active Directory, you can select an MTA to synchronize updated user information from the LDAP directory into GroupWise. User synchronization is typically configured when the LDAP directory is established, but you can set it up or reconfigure it later as needed.

For instructions, see Section 6.1.2, Configuring User Synchronization for an LDAP Directory.

22.3.2 Configuring Exchange Address Book Synchronization

Starting in GroupWise 2012 SP2, the MTA can perform address book synchronization between GroupWise and Exchange.

Exchange address book synchronization requires its own license. If you enable Exchange address book synchronization, your GroupWise system might be subject to additional licensing fees. We invite you to contact your Novell representative, reseller, or partner to learn more about this feature or for pricing and licensing information.

For setup instructions, see the GroupWise/Exchange Coexistence Guide.

22.3.3 Configuring the LDAP Server Capabilities

The LDAP Server provides a read-only interface into the GroupWise System Address Book. This allows lookups and queries via LDAP for the Outlook client. You can also use the LDAP server to provision GroupWise Mobility Service users. For more information, see Selecting the User Source for Your Mobility System in the GroupWise Mobility Service 2014 R2 Installation Guide.

  1. In the GroupWise Admin Console, browse to and click the MTA.

  2. Click the LDAP tab.

  3. Select Enable LDAP.

  4. (Optional) Specify a Port number.

    The default port for non-SSL is 389. The default port for SSL is 636.

  5. (Optional) Enable SSL.

    If SSL is enabled after the port is changed, the port will be reset to the default.

  6. (Conditional) If SSL is enabled, you can select to Use the MTA Certificate and Key or upload your own certificate and key file.

    1. In the SSL Certificate File field, click the Browse icon.

    2. Click Upload Local File to Server, then click Browse.

    3. Browse to and select the SSL certificate file on your local workstation.

      You can use certificate files in the PEM, PFX, CRT, B64, or CER format.

    4. Click Upload to upload the certificate file into the GroupWise certificates folder on the server where the POA is running.

    5. Click OK.

    6. In the SSL Key File field, browse to, select, and upload the private key file, then click OK.

    7. Click Save to save the SSL certificate and key files.

  7. (Optional) Select Set Password to specify and confirm a password for the key file.

To setup the Outlook client to connect to the GroupWise System Address Book through the LDAP server, see Configuring GroupWise Address Lookup in the Microsoft Outlook Client in the GroupWise Mobility Quick Start for Microsoft Outlook Users.

Known Limitations

  • You cannot run a Contains search.

  • Any filter beginning with a “*” will fail.

  • In Outlook, autocomplete will only work if you manually add the users as a contact. This is an Outlook limitation.

  • The only attributes available for search are Email, First name, Last Name, and Display name.

  • You cannot currently use a GroupWise created certificate for SSL.

  • You must restart the gwadminservice on the MTA server after enabling the LDAP server capabilities for it to be active.