Secure Authentication between Zimbra and AD

Revision as of 12:48, 18 October 2016 by Teodor Vizirov (talk | contribs) (Created page with "=Secure Authentication between Zimbra and AD (self-signed certificate)= {{KB|{{ZC}}|{{ZCS 8.6}}|{{ZCS 8.5}}|{{ZCS 8.0}}|}} ---- ==Purpose== How to configure authentication w...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Secure Authentication between Zimbra and AD (self-signed certificate)

   KB 23061        Last updated on 2016-10-18  




0.00
(0 votes)

Purpose

How to configure authentication with Active Directory using SSL.


Prerequisite

To have better overview of the authentication with AD and how to configure it, check the following article


Resolution

1. Review the following article to familiarize yourself with the authentication with AD from Zimbra side in AdminUI. The only difference is that in the "Active Directory Settings" , the Use SSL: tick box is selected:

3 ad ssl.JPG

2. After configuring the Domain Authentication with AD in Zimbra, we need to import the Zimbra CA to the DC:

  • Use tools such as WinScp to copy the /opt/zimbra/ssl/zimbra/ca/ca.pem file to the DC.
  • Copy the ca.pem file and rename it to ca.crt.

To install the certificate authority (CA) on the domain controller: , open the "Microsoft Management Console": 1. Start->Run > Type mmc. This will open the Microsoft Management Console. 2. Click "File" > "Add/Remove Snap-In..." to open the "Add Standalone Snap-in" dialog. 3. From the Available snap-ins on the left, select "Certificates" and press "Add". 4. Select "Computer account" and press "Next". 5. Select "Local computer" and press "Finish" 6. Click "Ok" to close the "Add/Remove Snap-in" dialog.

Once the "Certificates snap-in" is open, expand the "Certificates" node under "Trusted Root Certification Authorities". Right-click on the "Certificates" node, select "All Tasks" -> "Import...", and import the Certificate Authority ("ca.crt") you copied from Zimbra.












Verified Against: Zimbra Collaboration 8.6, 8.5, 8.0 Date Created: 31/05/2016
Article ID: https://wiki.zimbra.com/index.php?title=Secure_Authentication_between_Zimbra_and_AD Date Modified: 2016-10-18



Try Zimbra

Try Zimbra Collaboration with a 60-day free trial.
Get it now »

Want to get involved?

You can contribute in the Community, Wiki, Code, or development of Zimlets.
Find out more. »

Looking for a Video?

Visit our YouTube channel to get the latest webinars, technology news, product overviews, and so much more.
Go to the YouTube channel »


Wiki/KB reviewed by SME1 SME2 COPY EDITOR Last edit by Teodor Vizirov
Jump to: navigation, search