ArticlesArticles Most Popular ArticlesMost Popular Articles
RSS Feeds
DrillDown Icon Table of Contents
DrillDown Icon 2020 Official Holidays & Support Schedule
DrillDown Icon IMPORTANT: End of Life of SHA1 on Windows Server 2003
DrillDown Icon IMPORTANT: Supported Operating Systems
DrillDown Icon PLEASE READ: Our Update Server IPs Have Changed
DrillDown Icon Support
DrillDown Icon modusGate for Microsoft Azure
DrillDown Icon modusCloud
DrillDown Icon Alleviating Spam – Best Practices
DrillDown Icon directQuarantine Technical Information
DrillDown Icon modusMail & modusGate Technical Information
DrillDown Icon Documentation & Release Information
DrillDown Icon Known Issues (non-release related)
DrillDown Icon Configuration Information
DrillDown Icon modusGate & modusMail
DrillDown Icon modusGate Only
DrillDown Icon How-to: Perform a Backup/Restore on a modusGate Appliance
DrillDown Icon How-to: Integrate modusGate with a PGP Gateway
DrillDown Icon How-to: Reset a ModusGate Appliance to its Original State
DrillDown Icon How-to: Encrypt ModusGate User List Population and Authentication Requests
DrillDown Icon How-to: Install ModusGate v4.4 on Small Business Server 2003
DrillDown Icon Info: Appliance Cannot Access the ModusGate Console or System Health Panel
DrillDown Icon Info: ModusGate Appliance Cannot be Reached after Hooking up to the Network
DrillDown Icon How-To: Configure ModusGate with Specific OpenLDAP Server Attributes
DrillDown Icon How-To: Configure ModusGate with Sun One Open Directory for Sun Email Servers
DrillDown Icon Info: Mailbox Verification vs. Mailbox Authentication
DrillDown Icon How-To: Deactivate the Mimicking of Active Directory’s "Disabled Accounts" in ModusGate
DrillDown Icon Info: Forward Lookup / Pre-auth Options in ModusGate
DrillDown Icon How-To: Change the IIS Port on the ModusGate Appliance
DrillDown Icon How-To: Configure ModusGate with an Exchange/Outlook Junk Email Folder
DrillDown Icon How-To: Deploy ModusGate with Exchange/LDAP Servers
DrillDown Icon How-To: Deploy ModusGate with Groupwise
DrillDown Icon How-To: Deploy ModusGate with Lotus Domino 5 & 6
DrillDown Icon How-To: Deploy ModusGate with Postfix
DrillDown Icon How-To: Deploy ModusGate with Qmail
DrillDown Icon How-To: Deploy ModusGate with Sendmail
DrillDown Icon How-To: Prevent the Accumulation of Invalid User Names with Remote Exchange Server
DrillDown Icon How-To: Test POP3 Authentication with ModusGate
DrillDown Icon Info: Modusadm will not start while installed on Exchange 2013.
DrillDown Icon How-To: Upgrade NEP to modusGate \ modusCloud
DrillDown Icon How-To: Deploy ModusGate with Azure
DrillDown Icon modusMail Only
DrillDown Icon SQL Server Information
DrillDown Icon MySQL Information
DrillDown Icon Security
DrillDown Icon Sieve
DrillDown Icon Spam and False-Positives
DrillDown Icon Statistics and Monitoring Section
DrillDown Icon Web Components
DrillDown Icon Troubleshooting
DrillDown Icon Hardware & OS System Requirements
DrillDown Icon Tools
DrillDown Icon Other Product Technical Information
DrillDown Icon Professional Services
DrillDown Icon Newsletters
  Email This ArticlePrint PreviewPrint Current Article/Category and All Sub-Articles/Categories
 
How-To: Deploy ModusGate with Groupwise

 

Product: ModusGate

Version & Build: 4.1.361+

 

ModusGate - Groupwise Deployment Guide

 
Groupwise 6.x Configuration:
 
The recommended configuration for ModusGate/Groupwise is to use SMTP Authentication for the auto-create mailbox mechanism and to accept logins in the form of username@domain.name.  Groupwise v6.x supports SMTP Auth by default and does not require special configuration.
 
 
 
SMTP Authentication:
 
This method provides support for ModusGate's forward lookup feature: all incoming messages are be verified against the GWIA to ensure that the email addresses exist on your mail server.  In the Console, go to Connections - Properties - General to configure this feature.
 
Please consult the attached Exchange Deployment Guide, specifically the sections ModusGate Connection Creation and Other ways to configure mailbox lookup and authentication for configuration details:
  • Select SMTP_VRFY for Automatically populate user list 
  • Select SMTP_AUTH for Authentication requests
If the GWIA cannot support username@domain.name logins, enable Strip domain name for Authentication requests for the WebQuarantine logins.
 
 
 
LDAP Authentication Method:
 
If you are using Novell's LDAP, ModusGate can be configured to connect to it for mailbox authentication.  However, the LDAP server must be manually configured to accept plain text logins and nicknames (if required):
 
Groupwise Server Configuration:
  • Open the LDAP Group tab in the ConsoleOne User Management Snapin
  • Remove the checkmark for Require TLS for simple binds
  • Unload and Reload the NLDAP module on the Novell Server
  • In LDAP, manually add Groupwise Nicknames as a mail attribute for users in order for them to receive mail at their Groupwise nicknames
    • On your ModusGate server, you are pointing to your GroupWise GWIA server for LDAP authentication.  Find that GroupWise server in ConsoleOne.   In that OU, find the object LDAP Group - servername.  Open the object and go to Attribute Mappings.  Click on Add.  From the NDS Attribute drop-down section, find nickName.  Then, in the Primary LDAP attribute field, type in (case sensitive) nickName and click on OK (you may enter a description).  Click on OK on the LDAP Group page.  There is no need to reboot the server. 
    • Once the nicknames are set up, you can send email to them with the format of nickname@domain.xxx.
Please see the attached Groupwise Sreen Capture document for more details.
 
 
ModusGate server configuration:
  • Select OpenLDAP for Automatically populate user list
  • Select SMTP_AUTH for Authentication requests
1 Note that the recommended configuration for Auto-create mailboxes has changed: select OpenLDAP from the drop-down menu, enter the required LDAP connection information (using the attached Guide as an example) and stop/restart the SMTPRS service.  (We had suggested using the Exchange 2000+ setting in version 4.0, but now that connection can ONLY be used with an Exchange server.)
 
 
SMTP Method (No Authentication):
 
If end users have nicknames or aliases and you do not use LDAP or are unable to manually configure the LDAP server for nicknames, you must use a simple SMTP connection for Automatically populate user list. 
 
WARNING: This option does not provide a forward lookup verification: messages to both valid and invalid addresses will be sent through to Groupwise and invalid mail will have to be handled internally by the GWIA. 
 

Configuration with Older Groupwise Versions (pre-6.x)
 
Older Groupwise versions do no support SMTP Auth.  If you use an LDAP server, please use the instructions above.  Otherwise, you must select SMTP for the Automatically populate user list section.  If the GWIA supports POP3 access, you may select POP3 in the Authentication requests section.
 
 
Acknowledgement:  Thanks to Jon Clemons for his help and advice in putting this article together and to Paul Caron for his information about setting up Gropwise nicknames.
 
 
Attachments
Modified 8/13/2007
Keywords: pre-auth, Groupwise, LDAP
Article ID: 1379