Novell Home

My Favorites

Close

Please to see your favorites.

Novell iChain 2.2 - NetMail Configuration Quick Start

(Last modified: 06Apr2004)

This document (10080225) is provided subject to the disclaimer at the end of this document.

goal

Novell iChain 2.2 - NetMail Configuration Quick Start

fact

Novell iChain 2.2

Novell NetMail 3.1

Novell Internet Messaging System (NIMS) 3.0

Novell Internet Messaging System (NIMS) 2.5

fix

NetMail

 

Install to a NetWare server using nwconfig. By default, listens only on port 80, no SSL. To use SSL, run sys:/system/certgen.exe to create a CSR and/or import a cert, then stop and start NetMail (server commands "ims" to start, "ims u" to unload). Make sure no error is given like "MODWEBD: Could not load private key."

 

User Access: http://<server>, user will be prompted for login. Use CN only, users must be in defined contexts (see below).

 

Administrative access: use nwadmin32, or load "webadmin -p:<port>" at the NetMail server, then access that server port from a browser. Login requires full "dot delimited" name with leading ".".

 

To add user search contexts, login to webadmin->Internet Services-><select proper server->NMAP Agents->Context (on left pane). Insert entries in the form "users.novell" (no quotes).

 

Users can switch between "WebAccess" and "WebMail" templates (views) using the Options button or Preferences link. The WebAccess template allows Calendaring type functionality.

 

Accelerator Configuration:

Below are details from a working configuration using an accelerator where Secure Exchange (Client to Proxy only) and  Proxy Authentication are enabled:

 

On Web Server Accelerator page:

Name:  Netmail

DNS Name: cpq350.netmail.dsm.cit.novell.com

Cookie Domain: dsm.cit.novell.com

"Use host name sent by browser" is selected

Web Server Port: 443

Web Server Address: 10.251.201.253 (NW6/sp2 server with NetMail)

Accelerator Proxy port: 80

Accelerator IP address: 10.251.200.1

Enable Authentication is enabled

Authentication options:

Service Profile=ldap

Forward authentication info to web server:  Not selected

Enable Secure Exchange is enabled

SSL Listening Port: 443

Certificate: Auto

Secure Exchange Options:

Client<-443->Proxy<-80>Web Server

"Mark pages not cacheable in the browser" is enabled

"Enable secure access between Secure Exchange and Web Server" is NOT enabled

On Access Control Page:

"Enable Form Fill Authentication" is disabled

"Object level access control" (OLAC) is disabled

On Configuration->Management page:

"Enable Pin List" is not selected

 

ConsoleOne Configuration:

In ConsoleOne->ISO object properties:

Add resource for the NetMail web site:

Name=NetMail

URL Prefix=http://cpq350.netmail.dsm.cit.novell.com/*

Access: Restricted

 

Single Sign On through iChain:

Since NetMail does not accept comma delimited names in the Authorization header, OLAC needs to be used for SSO. Be sure to configure NetMail user search context(s) as described above. On the "Access Control" page in the iChain GUI, select check box "Enable Object Level Access Control (OLAC)". Under the accelerator configuration, go to the "Authentication Options" window and select "Forward authentication information to web server". In ConsoleOne,  modify the Netmail resource on the ISO object by adding the following OLAC entry:

 

Name:                     ICHAIN_UID

Data Source:         LDAP

Value:                     CN

 

Sending iChain SMTP alerts to NetMail

 

IChain can send eMail alerts using the SMTP protocol to NetMail. Configure iChain to send SMTP alerts in the iChain GUI->System->Alerts page. Be sure to use a username with an account on the specified server, and be careful of the "Alert source name" field. Normally, avoid spaces if at all possible.

.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10080225
  • Solution ID: NOVL87145
  • Creation Date: 13Feb2003
  • Modified Date: 06Apr2004
    • NetIQiChain

Did this document solve your problem? Provide Feedback