Yadda ake Sanya iRedMail akan CentOS 7 don Haɗin Samba4 AD - Kashi na 10


Wannan jerin koyawa za su jagorance ku kan yadda ake haɗa iRedMail da aka sanya akan injin CentOS 7 tare da Samba4 Active Directory Domain Controller domin asusun yanki don aikawa ko karɓar wasiku ta abokin ciniki na tebur na Thunderbird ko ta hanyar Intanet na Roundcube.

Sabar CentOS 7 inda za a shigar da iRedMail zai ba da damar SMTP ko sabis na jigilar wasiku ta tashoshin jiragen ruwa 25 da 587 kuma za su yi aiki a matsayin wakili na isar da saƙo ta hanyar Dovecot, yana ba da sabis na POP3 da IMAP, duka suna amintattu tare da takaddun sa hannu da aka bayar akan shigarwa. tsari.

Za a adana akwatunan wasikun masu karɓa akan sabar CentOS ɗaya tare da wakilin mai amfani da saƙon yanar gizo wanda Roundcube ya bayar. iRedMail za ta yi amfani da Samba4 Active Directory don yin tambaya da tabbatar da asusun mai karɓa a kan yankin, don ƙirƙirar jerin wasiku tare da taimakon ƙungiyoyin Directory Active da kuma sarrafa asusun wasiku ta hanyar Samba4 AD DC.

  1. Ƙirƙiri Kayan Aikin Gida Mai Aiki tare da Samba4 akan Ubuntu

Mataki 1: Sanya iRedMail a cikin CentOS 7

1. Kafin farawa da shigarwar iRedMail da farko ka tabbata kana da sabon tsarin aiki na CentOS 7 da aka sanya akan injinka ta amfani da umarnin da wannan jagorar ta bayar:

  1. Sabon Shigarwar CentOS 7 Mafi Karanci

2. Har ila yau, tabbatar da cewa tsarin yana da sabuntawa tare da sababbin tsaro da sabuntawa ta hanyar ba da umarnin da ke ƙasa.

# yum update

3. Hakanan tsarin zai buƙaci sunan mai masaukin FQDN wanda aka saita ta hanyar ba da umarnin da ke ƙasa. Sauya m mail.tecmint.lan tare da FQDN naku na al'ada.

# hostnamectl set-hostname mail.tecmint.lan

Tabbatar da sunan mai masaukin tsarin tare da umarni na ƙasa.

# hostname -s   # Short name
# hostname -f   # FQDN
# hostname -d   # Domain
# cat /etc/hostname  # Verify it with cat command

4. Taswirar na'ura FQDN da gajeren suna a kan na'ura ta dawo da adireshin IP ta hanyar gyara fayil ɗin /etc/hosts da hannu. Ƙara ƙimar kamar yadda aka kwatanta a ƙasa kuma maye gurbin mail.tecmint.lan da ƙimar saƙo daidai.

127.0.0.1   mail.tecmint.lan mail  localhost localhost.localdomain

5. iRedMail technicians sun ba da shawarar cewa SELinux ya kamata a kashe gabaɗaya. Kashe SELinux ta hanyar gyara /etc/selinux/config file kuma saita siginar SELINUX daga mai izini zuwa nakasa kamar yadda aka kwatanta a ƙasa.

SELINUX=disabled

Sake kunna na'ura don amfani da sabbin manufofin SELinux ko aiwatar da setenforce tare da siga 0 don tilasta SELinux don kashe nan take.

# reboot
OR
# setenforce 0

6. Na gaba, shigar da fakiti masu zuwa waɗanda zasu zo da amfani daga baya don gudanar da tsarin:

# yum install bzip2 net-tools bash-completion wget

7. Domin shigar da iRedMail, da farko je zuwa shafin zazzagewa http://www.iredmail.org/download.html kuma ka ɗauki sabuwar sigar adana kayan aikin software ta hanyar ba da umarnin da ke ƙasa.

# wget https://bitbucket.org/zhb/iredmail/downloads/iRedMail-0.9.6.tar.bz2

8. Bayan an gama zazzagewa, sai a cire ma'ajin da aka matse sannan a shigar da iRedMail directory da aka ciro ta hanyar ba da umarni masu zuwa.

# tar xjf iRedMail-0.9.6.tar.bz2 
# cd iRedMail-0.9.6/
# ls

9. Fara tsarin shigarwa ta hanyar aiwatar da rubutun harsashi iRedMail tare da umarni mai zuwa. Daga yanzu jerin tambayoyin mai sakawa zai yi.

# bash iRedMail.sh

10. A farkon maraba da sauri buga kan Ee don ci gaba da shigarwa.

11. Na gaba, zaɓi wurin da za a adana duk wasiƙun. Tsohuwar kundin adireshin da iRedMail ke amfani da shi don adana akwatunan wasiku shine hanyar tsarin /var/vmail/.

Idan wannan kundin adireshi yana ƙarƙashin ɓangarorin tare da isassun ma'ajiya don ɗaukar wasiku don duk asusun yankinku sannan danna Next don ci gaba.

In ba haka ba, canza wurin tsoho tare da kundin adireshi na daban idan kun tsara babban bangare da aka keɓe don ajiyar wasiku.

12. A mataki na gaba zaɓi sabar gidan yanar gizo ta frontend ta inda za ku yi hulɗa da iRedMail. Kwamitin gudanarwa na iRedMail za a kashe gaba ɗaya daga baya, don haka za mu yi amfani da sabar gidan yanar gizo ta gaba kawai don samun damar wasikun asusun ta hanyar rukunin yanar gizon Roundcube.

Idan ba ku da dubban asusun wasiku a cikin sa'a guda kuna samun damar haɗin yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon yanar gizon Apache don yin sassauci da sauƙin gudanarwa.

13. A kan wannan mataki zaɓi bayanan bayanan baya na OpenLDAP don dalilai masu dacewa tare da Samba4 mai kula da yanki kuma danna Gaba don ci gaba, kodayake ba za mu yi amfani da wannan bayanan OpenLDAP ba daga baya da zarar mun haɗa iRedMail zuwa mai sarrafa yankin Samba.

14. Na gaba, saka sunan yankinku na Samba4 don kari na LDAP kamar yadda aka kwatanta akan hoton da ke ƙasa kuma danna Gaba don ci gaba.

15. A cikin hanzari na gaba shigar da sunan yankin ku kawai kuma danna Next don ci gaba. Sauya darajar tecmint.lan daidai.

16. Yanzu, saita kalmar sirri don [email  shugaba kuma danna Next don ci gaba.

17. Na gaba, zaɓi daga cikin jerin abubuwan zaɓin abubuwan da kuke son haɗawa da sabar saƙon ku. Ina ba da shawara mai ƙarfi don shigar da Roundcube don samar da hanyar yanar gizo don asusun yanki don samun damar wasiku, kodayake ana iya shigar da Roundcube kuma a daidaita shi akan na'ura daban don wannan aikin don yantar da albarkatun sabar saƙon imel idan akwai babban lodi.

Don yankunan gida tare da ƙuntataccen damar intanet kuma musamman yayin da muke amfani da haɗin gwiwar yanki sauran abubuwan ba su da amfani sosai, sai Awstats idan kuna buƙatar nazarin wasiku.

18. A kan allon bita na gaba rubuta Y don amfani da tsari da fara tsarin shigarwa.

19. A ƙarshe, karɓi iRedMail scripts don saita ta atomatik na injin Firewall da MySQL sanyi fayil ta buga eh ga duk tambayoyi.

20. Bayan shigarwa ya ƙare mai sakawa zai ba da wasu bayanai masu mahimmanci, irin su iRedAdmin credentials, adireshin gidan yanar gizon URL da wurin fayil tare da duk sigogi da aka yi amfani da su a tsarin shigarwa.

Karanta bayanan da aka nuna a sama a hankali kuma sake kunna injin don ba da damar duk sabis na saƙo ta hanyar ba da umarni mai zuwa.

# init 6

21. Bayan tsarin ya sake yi, shiga tare da asusu tare da tushen gata ko a matsayin tushen kuma jera duk sockets na cibiyar sadarwa da shirye-shiryen da ke da alaƙa da sabar sabar saƙon ku tana saurare ta hanyar ba da umarni mai zuwa.

Daga jerin soket za ku ga cewa sabar saƙon ku ta ƙunshi kusan duk ayyukan da uwar garken imel ke buƙata don yin aiki yadda ya kamata: SMTP/S, POP3/S, IMAP/S da riga-kafi tare da kariyar spam.

# netstat -tulpn

22. Domin duba wurin duk fayilolin sanyi iRedMail ya canza da kuma takardun shaidar da iRedMail ke amfani da shi yayin aiwatar da tsarin shigarwa don gudanar da bayanai, asusun gudanarwa na mail da sauran asusun, nuna abubuwan da ke cikin iRedMail.tips fayil.

Fayil ɗin yana cikin kundin adireshi inda ka fara fitar da tarihin shigarwa. Ku sani cewa yakamata ku matsa ku kare wannan fayil saboda ya ƙunshi mahimman bayanai game da sabar saƙon ku.

# less iRedMail-0.9.6/iRedMail.tips

23. Fayil ɗin da aka ambata a sama wanda ke ɗauke da cikakkun bayanai game da sabar saƙon ku kuma za a aika ta kai tsaye zuwa ga asusun mai kula da sabar wasiƙa, wanda asusun gidan waya ke wakilta.

Ana iya isa ga saƙon gidan yanar gizo amintacce ta hanyar HTTPS yarjejeniya ta buga adireshin IP na injin ku a cikin mazugi. Yarda da kuskuren da aka haifar a cikin mazuruftar ta hanyar iRedMail mai sa hannun sa hannu kan takardar shedar yanar gizo kuma shiga tare da kalmar sirri da aka zaɓa don asusun [email kare] _domain.tld yayin shigarwa na farko. Karanta kuma adana wannan imel ɗin zuwa akwatin saƙo mai aminci.

https://192.168.1.254

Shi ke nan! Zuwa yanzu, za ku sami cikakkiyar sabar saƙon da aka saita a wuraren da kuke aiki da kanta, amma har yanzu ba a haɗa ta da Samba4 Active Directory Domain Controller Services.

A bangare na gaba za mu ga yadda ake lalata ayyukan iRedMail (postfix, dovecot da roundcube fayilolin sanyi) don neman asusun yanki, aikawa, karɓa da karanta wasiku.