I guess that @lucag should be interested in
Sorry for the delay. Iâm quite full these days.
I am looking for a personal server for my family, with shared calendars and that can be accessed from different platforms: Android (Exchange at best, otherwise Dav) and Windows (Thunderbird, Outlook and Mail/Contact/Calendar of W10).
My remark was related to what I understood from Webtop, which is mainly designed to be used in a browser. I need to access my accounts from Thunderbird and Outlook (clients) and possibly Mail/Contact/Calendar of W10.
Did I understand well the capabilities of Webtop?
For the time being, I use Sogo, with is limited with the Exchange protocol.
I am also evaluating Webtop for the similar reasons stated above.
To that end, I have created a brand new load (NS 7 Beta 1). Loaded email and weptop. Went into the weptop admin, enabled webtop access for two test accounts. Logged into to the test accounts to create one contact, calendar and task. Enabled sync on the test accounts.
The Problem:
ActiveSync is not responding to Outlook or BB10. When I use the web url https://[myserver]/Microsoft-Server-ActiveSync the response is 403 - Forbidden.
Ideas?
Since
Iâm not an expert, but access is authenticated, the forbidden response could be correct.
Based on the preceding dialogue (see Feb 3 entries), the web browser test should at least prompt for user/password details and then fail with a âGET not supportedâ. I am getting a 403 immediately and it seems to me that it is because of a higher level setting that has not activated ActiveSync.
I am wondering whether there is a configuration setting that needs a tweak??
Youâre probably right, sorry.
WebTop has a switch on the Settings page, General tab, Sync tab at the bottom.
If you have sogo, Iâd also try with:
config setprop sogod ActiveSync disabled
signal-event nethserver-sogo-update
To clarify:
First there is no sogo. Wanted a totally clean / patched install.
Second, when you refer to Settings > General > Sync, I have signed on to both admin and the test account, gone into settings (first changed my language from Italian - the default - to English) and looked at the sync tab and ensured that sync is enabled.
I get the following entries in /var/log/httpd/ssl_error_log
[Wed Aug 17 09:20:45.814997 2016] [authz_core:error] [pid 18364] [client 142.55.232.246:60658] AH01630: client denied by server configuration: /usr/share/webtop/z-push/index.php
Not sure if that helps.
1 Like
Found! I replicated the problem, itâs an error in the httpd configuration.
--- /etc/httpd/nethserver.d/00default:443.vhost 2016-08-17 16:30:24.583107739 +0200
+++ 00default:443.vhost 2016-08-17 16:24:01.356257724 +0200
@@ -76,8 +76,7 @@
<Directory "/usr/share/webtop/z-push/">
AllowOverride None
Options None
- Order allow,deny
- Allow from all
+ Require all granted
</Directory>
</VirtualHost>
2 Likes
Thanks for the quick response.
I have found the nethserver file to edit. What is missing from my expertise is exactly how to use/read your cool code.
It appears to me to be output from a standard editing utility that I can likely feed it into â or â just make the changes directly to the file.
Do I remove âOrder allow,denyâ and âAllow from allâ and insert âRequire all grantedâ?
Do I then restart a particular service?
Yes (the output itâs a unified diff).
Then restart httpd:
systemctl reload httpd
We are making progress - not quite there yet.
Now I receive a â404 - Not Foundâ
Not Found
The requested URL /Mircosoft-Server-ActiveSync was not found on this server.
This seems to be impossible, you should have seen that line when you edited 00default:443.vhost.
And I canât reproduce this.
Could you post your edited version of 00default:443.vhost? In entirety?
# ================= DO NOT MODIFY THIS FILE =================
#
# Manual changes will be lost when this file is regenerated.
#
# Please read the developer's guide, which is available
# at https://dev.nethesis.it/projects/nethserver/wiki/NethServer
# original work from http://www.contribs.org/development/
#
# Copyright (C) 2013 Nethesis S.r.l.
# http://www.nethesis.it - support@nethesis.it
#
#
# ns7b1.neth.net:443
# Default virtual host
#
<VirtualHost *:443>
#
# 10base
#
ServerName ns7b1.neth.net
ErrorLog logs/ssl_error_log
TransferLog logs/ssl_access_log
LogLevel warn
<Files ~ "\.(cgi|shtml|phtml|php3?) >
SSLOptions +StdEnvVars
</Files>
<Directory "/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
BrowserMatch "MSIE [2-5]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
SSLCipherSuite DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:+3DES
AccessFileName .htaccess
#
# 10server-manager permanent redirect
#
RewriteEngine On
RewriteRule ^/server-manager(/.*)?$ https://%{HTTP_HOST}:980$1 [L,R=301]
#
# 20ibays_include -- Include ibay configurations specific to this virtual host
#
#
# 30letsencrypt
#
Alias "/.well-known/acme-challenge/" "/var/www/html/.well-known/acme-challenge/"
<Directory "/var/www/html/.well-known/acme-challenge/">
Order allow,deny
Allow from all
Options -Indexes -FollowSymLinks
AllowOverride None
</Directory>
Alias /Microsoft-Server-ActiveSync /usr/share/webtop/z-push/index.php
ProxyPass /webtop http://localhost:8080/webtop
ProxyPassReverse /webtop http://localhost:8080/webtop
<Directory "/usr/share/webtop/z-push/">
AllowOverride None
Options None
Require all granted
</Directory>
</VirtualHost>I just did a diff and the only difference that I get is the server names:
13c13
< # ns7b1.neth.net:443
---
> # swimail.stelleur.com:443
20c20
< ServerName ns7b1.neth.net
---
> ServerName swimail.stelleur.com
81a82
>
I have installed the following packages:
- Account provider: OpenLDAP
- Backup
- Basic firewall
- FTP server
- MariaDB (MySQL) server
- Roundcube web mail
- SMTP proxy
- Web filter
- Web proxy
- Web server
- WebTop groupware
Everything is current NS 7 beta 1 - out of the box.
What am I missing?
Eureka!
The problem on the 404 is that I do not know how to spell âMircosoftâ - look at the original message that I postedâŚ
It should be Microsoft-⌠not Mircosoft-âŚ
Oh well. After some brow beating I am now progressing to BB10 and Outlook testing.
Will post shortly their outcomes.
2 Likes
Hi all, Iâm reading the thread, though I see the issue has been identified as not being on the WebTop side but on NethServer configuration side, and youâre on your way to the soltion.
If you need any additional help, let me know.
Gabriele
1 Like
POP3 proxy, if you want to use POP3.
Thanks for jumping in. Just so it is clear what I am looking at doing:
evaluate web access - (BTW love the clean interface) - with focus on email/calendars/tasks/contacts
evaluate mobile access - (currently using BB10 on Blackberry Classic) - with the same focus
evaluate Outlook 2013 access
evaluate Thunderbird access
Not sure at this point, whether it should be a new/separate thread. Now that ActiveSync is working on BB10. It may be worthwhile to make the rest under âWebtop and Nethserverâ