Zimbra

1.
# su - zimbra
$ zmprov getConfig zimbraLogHostname
$ zmprov modifyConfig zimbraLogHostname [mailhost.example.com]

23
A
New Account Wizard
1.Accounts
4 1 2 1
4
2.NewNew Account Wizard
3.
4.FinishCOS
5. New Account Wizard
Finish
6.

B
Bulk Account Wizard 500
CSV

C ZCS
Zimbra ZCS
ZCS .

ZCS Migration Wizard for Exchange

.exe Microsoft? Exchange ZCS

ZCS Migration Wizard for Lotus? Domino?.

.exe Lotus Domino ZCS
Zimbra Collaboration Suite Import Wizard for Outlook?
.exe Outlook (.pst) ZCS

2.4 WEB
WEB ZIMBRA WEB

ZIMBRA

zimbra

3.1 Zimbra
Zimbra Zimbra
Zimbra

Jetty

Zimbra Web

Postfix

MTA

OpenLDAP
MySQL
Lucene
ClamAV

SpamAssassin

Amavisd-new

MTA

James/Sieve

3.2 Zimbra
ZCS

Zimbra Core

Zimbra LDAP
ZCS OpenLDAP
ID ZCS OpenLDAP

ZimbraMTA
Postfix MTA SMTP LMTP
Zimbra Zimbra MTA

Zimbra Store
Jetty Servlet ZCS

mailboxd

A
MySQL ID ID OpenDLAP

B
MIME

C
Lucene

Zimbr-SNMP
LDAPMTA
Zimbra swatch syslog SNMP

Zimbra Logger
syslog

Zimbra Spell
ZWC Zimbra-apache

Zimbra Proxy

ZimbraMemcached
Memcached
Memcached Memcached

3.3

/opt/zimbra/store
/opt/zimbra/db MySQL
/opt/zimbra/index
/opt/zimbra/log

MIME
/opt/zimbra/store ZCS ID


ZCS MySQL

A ZCS ID
ID ID OpenLDAP
B
C

Apache Lucene

1.MTA
2. PDF DOC
3. Lucene

ZCS
ZCS SNMP Trap SNMP ZCS

ZIMBRA
HTTP HTTP\HTTPS
$ zmprov ms <servername> zimbraMailSSLPort <https port> HTTPS 443
$ zmtlsctl http\https
$ tomcat restart

smtp

zmprov ms `zmhostname` zimbraMtaAuthHost mail.example.com

$ zmprov getConfig zimbraLogHostname

$ zmprov modifyConfig zimbraLogHostname mail.domain.com

zmlocalconfig -s
$ postconf
$ zmlocalconfig

// postfix
//
// zimbra LDAP DN

$ zmlocalconfig -s|grep zimbra_ldap_userdn

$ zmlocalconfig -s|grep zimbra_ldap_userdn
$ zmlocalconfig -s|grep zimbra_mysql

// zimbra LDAP
// mysql

10M
$ postconf message_size_limit
message_size_limit = 10240000
20M
$ zmprov modifyConfig zimbraMtaMaxMessageSize 2048000
$ postfix reload

5M
$ zmprov modifyConfig zimbraFileUploadMaxSize 5000000
mail2.domain.com 20M
$ zmprov modifyServer mail2.domain.com zimbraFileUploadMaxSize 20000000

$ zmprov gaaa

//

$ zmprov sp <admin email address> <new password>

//

zmprov sp admin q1w2e3r4 zmprov sp admin@wish.com q12e3r4

LDAP
$ ldap status(start)
$ zmldappasswd --root newpass root
$ zmldappasswd newpass

(zimbra)

MYSQL Database
$ mysql.server status(start)
$ zmmypasswd --root newrootpass
$ zmmypasswd newpass

Logger MYSQL Database

$ logmysql.server status(start)
$ zmmylogpasswd --root newrootpass (root
$ zmmylogpasswd newpass

(zimbra)

$ zmmailbox -z -m rootking@wish.net emptyFolder /[inbox][chats][sent][drafts][junk][trash]

inbox() chats() snet() drafts() junk() trash()

LDAP
1 LDAP()
1)ldapsearch -h -x -D "uid=zimbra,cn=admins,cn=zimbra" -w
objectclass=* > 201014.ldif
2)ldapsearch -h -x -D "uid=zimbra,cn=admins,cn=zimbra" -w >
201014.ldif

2 LDAP

ldapadd -h -x -c -D "uid=zimbra,cn=admins,cn=zimbra" -w <

20101214.ldif

#!/bin/bash
while read USER
do
TODAY=`date`
LOGFILE="/tmp/bak/backuplog.txt"
echo $TODAY >> $LOGFILE
echo $USER >> $LOGFILE
/opt/zimbra/bin/zmmailbox -z -m $USER gms >> $LOGFILE
zmmailbox -z -m $USER@test.com getRestURL "//?fmt=tgz" > /tmp/bak/$USER.tgz
done < /tmp/user.txt

PS:user.txt

zmmailbox -z -m $USER@test.com postRestURL "//?fmt=tgz&resolve=reset" tmp/bak/$USER.tgz

Zimbra
zimbra ClamAV SpamAssassin WEB
ClamAV+SpamAssassin 6

SpamAssassin
/opt/zimbra/conf/amavisd.conf.in

{ # a hash-type lookup table (associative array)

'nobody@cert.org'
'cert-advisory@us-cert.gov'
'owner-alert@iss.net'

=> -3.0,
=> -3.0,
=> -3.0,

'slashdot@slashdot.org'

=> -3.0,

'bugtraq@securityfocus.com'
'ntbugtraq@listserv.ntbugtraq.com'
'security-alerts@linuxsecurity.com'

=> -3.0,
=> -3.0,
=> -3.0,

-10 +10
$ su zimbra
$ zmamavisdctl stop
$ zmamavisdctl start

-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

ZCS 2

......................................................3
....................................................3
................................................3
..............

...................3

..............................................4
..............................................5
....................................................5
Zimbra .................................................6
....................................................7
Zimbra ...............................................8

......................................10
Zimbra Mailbox Server...................12
..............................................12
....................................................12
....................................................12
....................................................13
....................................................13
........................................................14
..............................................15
................................................15
LDAP .................................................. 16
Zimbra .............................................16
....................................................17
................................................17
LDAP ................................ 17
- zimbraCustomAuth..................................18
Kerberos5 ..........................................19
ZCS .................................................... 19
/GALGlobal Address List........... 22

 LDAP ............................................... 23

ZCS

ZCS

RHEL SUSE

Zimbra

Zimbra

Installation Guide

Administrator Guide

Release Note

ZCS

Zimbra

Zimbra
ZCS

Linux, Jetty, Postfix, MySQL, OpenLDAP

SMTPLMTPSOAPXMLIMAPOP
JavaJavaScript DHTML

RHEL

SYMANTEC Veritas Cluster Server

Zimbra Web Client ZCS

ZCS




Web

ZCS



IMAP POP

COSClass of Service)



Microsoft Exchange

Zimbra ZWCZimbra Web Client Ajax

ZWC HTML ZWCZWC

ZCS Web

Zimbra

Zimbra Zimbra

Zimbra

Jetty Zimbra Web

ZCS
Postfix MTA
OpenLDAP
MySQL
Lucene
ClamAV
SpamAssassin
Amavisd-new MTA
James/Sieve

Zimbra

ZCS

Zimbra Core

Zimbra LDAP
ZCS OpenLDAP

ID
ZCS OpenLDAP

ZimbraMTA
Postfix MTA SMTP LMTP

Zimbra Zimbra MTA

Zimbra Store
Jetty Servlet ZCS

mailboxd

MySQL ID ID
OpenDLAP

MIME

Lucene

Zimbr-SNMP
LDAPMTA
Zimbra swatch syslog SNMP

Zimbra Logger

 syslog

Zimbra Spell
ZWC
Zimbra-apache

Zimbra Proxy

ZimbraMemcached
Memcached
Memcached Memcached

IT

1. MTA

2.

3.
4. MTA
5.MTA LDAP
6.MTA

7.
8.Zimbra

Zimbra Mailbox Server

MTA


MTA SMTP LMTP

ZCS

/opt/zimbra/store
/opt/zimbra/db MySQL
/opt/zimbra/index
/opt/zimbra/log

MIME
/opt/zimbra/store ZCS ID

ID


UNIX

(hard link)

ZCS MySQL

ZCS ID
ID ID OpenLDAP

 Apache Lucene

1.MTA
2. PDF DOC

3. Lucene

ZCS
ZCS SNMP Trap SNMP
ZCS


Zimbra Zimbra Schema OpenLDAP

Zimbra Zimbra

LDAP ZCS

LDAP Zimbra LDAP

OpenLDAP
4 Zimbra MTA
MTA DNS MX

LDAP

LDAP DN

LDAP
LDAP ZCS

LDAP

5 ZCS LDAP
ZCS LDAP ZCS

Zimbra
LDAP ZCS

LDAP OpenLDAP ZCS

ZCS zimbra zimbraMailRecipient

zimbraAttachmentsBlocked

ZCS ZCS OpenLDAP

core.schema
cosine.schema
inetorgperson.schema
zimbra.schema
ZCS

LDAP

OpenLDAP ZCS

 LDAP LDAP

ZCS-LDAP

ZCS OpenLDAP
zimbraAuthMech

OpenLDAP userPassword SSHA

LDAP

zimbraAuthLdapURL

zimbraAuthLdapBindDn
zimbraAuthLdapURL SSL
URL

ldap://ldapserver:port/

 ldapserver IP port

ldap://server1:389

ldap://exch1.acme.com

SSL ldaps ldap SSL

zimbraAuthLdapBindDn

- zimbraCustomAuth

AuthRequest ZCS

ZCS

LDAP zimbraAuthMech

custom:{}

zmprov modifydomain {domain|id} zimbraAuthMech custom:sample.

sample

init ZimbraCustomAuth.register

com.zimbra.cs.account.ldap.zimbraCustomAuth

public synchronized static void register [String hndlName,zimbraCustomAuth handler]

hndlName ZCS
Handler ZimbraCustomAuth

public class SampleExtensionCustomAuth implements ZimbraExtension {

public void init() throws ServiceException {

ZimbraCustomAuth.register("sample", new SampleCustomAuth());

...

AuthRequest ZCS

ZimbraCustomAuth

ZimbraCustomAuth.authenticate()

Kerberos5
Kerboros5 Kerberos Kerberos5
zimbraAuthMech kerberos5zimbraAuthKerberos5Realm
Kerberos5 realm

[TBD]

ZCS
ZCS Zimbra ZCS LDAP
Accounts
Class of Service (COS)
Domains

Distribution Lists
Recipients
Servers
Global Configurations
Aliases
Zimlet
CalendarResource
Data Source
Signature
Account

ZCS
zimbraAccount zimbraMailRecipient

zimbraMailRecipient

user@example.com
ID

COSClass of Service
zimbra

zimbraCOS

Domain

example.com example.org
zimbraDomain

Distribution List

zimbraDistributionList

Recipient

/ zimbraMailRecipient
zimbraAccount zimbraDistributionlist

Server

ZCS ZCS

OpenLDAP zimbraServer

Global Configuration

zimbraGlobalConfig
Zimbra Core

Alias

zimbraAlias

Zimlet
Zimlet ZCS Zimlet zimbraZimletEntr

CalendarResource

zimbraCalendarResource

Data Source
POP3 IMAP
POP3/IMAP
zimbraDataSource

Signature

zimbraSignature

/GALGlobal Address List

ZCS

 ZCS GAL
LDAP GAL
Zimbra OpenLDAP
LDAP LDAP
Zimbra GAL
Zimbra GALGAL
LDAP

(|(cn = %s*)(sn=%s*)(gn=%s*)(mail=%s*))

(zimbraMailDeliveryAddress = %s*)

(zimbraMailAlias=%s*)

(zimbraMailAddress = %s*)

%s

ZCS GAL
GAL ZCS LDAP/ ZCS

GAL ZCS

 LDAP ZCS

co workCountry

company Company

givenName/gn firstName

sn lastName

cn fullName

GAL
GAL GAL

GAL

OpenLDAP
Zimbra Web Client
LDAP ZCS LDAP

LDAP
ZCS LDAP







Zimlet

initials initials

l workCity

street, streetaddress workStreet

postalCode workPostalCode

telephoneNumber workPhone

st workState

title jobTitle

mail email

objectClass Not currently mapped

 zmprov flushCache skin

zmprov flushCache locale

LDAP zmprov

15

zmprov flushCache [account|cos|domain|server] [name|id]

LDAP

1. zmprov mfc zmprov mcf zimbraImapClearTextLoginEnabled

2. zmprov flushCache

zmprov s server-1 flushCache config

zmprov s server-2 flushcache config

zmprov s server-3 flushcache config