I installed Rspamd for testing, but a login as AD Admin on the Configside is not possible, in Rouncube this is possible without problems. Where do you think the problem lies?
Here I can login as member of “Domain Admins” group. I can’t check the “admin” user, sorry. Could you provide some
Mar 23 11:05:04 webmail httpd: pam_succeed_if(rspamd:auth): requirement “user in admin” not met by user "administrator"
Mar 23 11:05:04 webmail httpd: pam_succeed_if(rspamd:auth): requirement “user ingroup domain admins” not met by user “administrator”
in messages there’s nothing in it
You can login with either “admin” or any member of the “domain admins” group. Administrator shoud be member of it, however, let’s check it. Please paste the output of:
uid=1689400500(uid=1689400500(firstname.lastname@example.org) gid=1689400513(domänenemail@example.com) groups=1689400513(domänenfirstname.lastname@example.org),1689400520(email@example.com),1689400519(firstname.lastname@example.org),1689403102(email@example.com),1689403104(firstname.lastname@example.org),1689400512(domänenadmins@astra.local),1689400518(email@example.com),1689400572(abgelehnte firstname.lastname@example.org),1689403613(email@example.com),1689407638(firstname.lastname@example.org),1689407655(email@example.com),1689403612(firstname.lastname@example.org
It seems AD has localized group names. Did you configure a remote MS AD accounts provider? Just out of curiosity, which version is it?
I don’t know if UTF-8 chars are well supported, but you should configure the
admins/group prop as documented here:
If a user or group with a similar purpose is already present in the remote account provider database, but it is named differently, NethServer can be configured to rely on it with the following commands…
Thanks, I created the “Admin” in the AD with user rights and now I can log in.