Log On To and Zimbra (AD): Difference between revisions
Line 11: | Line 11: | ||
'''Scenario:''' | '''Scenario:''' | ||
AD administrator wants to allow a | AD administrator wants to allow a client/user access to a few servers in his Active Directory domain. However, the AD administrator want to restrict access of these clients to only the servers they need access to? The solution to this is to use the '''Log On To...''' options in the user properties window: | ||
[[File:Logonto.JPG]] | [[File:Logonto.JPG]] |
Latest revision as of 15:38, 10 October 2016
"Log On To" and Zimbra (AD)
Problem
Prerequisites:
User authentication is against AD.
Scenario:
AD administrator wants to allow a client/user access to a few servers in his Active Directory domain. However, the AD administrator want to restrict access of these clients to only the servers they need access to? The solution to this is to use the Log On To... options in the user properties window:
Resolution
If you only allow the users to access the zimbra server and the machines to which they are restricted to, the users will receive invalid password error at login time. To fix the problem, you need to add the DC/s to the PCs that are allowed to be accessed. That is due to the fact, that the zimbra server must access the AD to authenticate the users.