Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

HideElements
metastrue
commentstrue
breadcrumbtrue
childpagestrue
watchtrue
sharetrue
favoritetrue
likestrue

 


Table of Contents

Notice

Note

Important Notice

Because of the way SSO works the credentials are not available to WebApp.

This can stop plugins from working, or require manual setup of credentials.

The following plugins require WebApp credentials (additional 3rd party plugins might need them as well):

  • MDM, does not work with SSO.
  • Files, the "Use Kopano Credentials" options will not work, manual setup is still possible.

...

Code Block
languagebash
themeMidnight
$ sudo apt-get install apache2-mpm-prefork libapache2-mod-auth-kerb

 


Creatte a directory in /etc/apache2/keytab and move the mail.keytab 

...

Code Block
languagephp
themeMidnight
server_hostname = mail.kopano.local
enable_sso = yes

 


To enable the sso in Webapp  change the following in the config.php in the Webapp directory 

see https://documentation.kopano.io/kopanocore_administrator_manual/configure_kc_components.html?highlight=ssl#ssl-connections-and-certificates for more information about ssl  


Code Block
languagephp
themeMidnight
define("DEFAULT_SERVER", "https://localhost:237/kopano");
 
// When using a single-signon system on your webserver, but Kopano Core is on another server
// you can use https to access the Kopano server, and authenticate using an SSL certificate.
define("SSLCERT_FILE", /path/to/ssl/client/client-cert.pem);
define("SSLCERT_PASS", password-of-cert)
 
define("LOGINNAME_STRIP_DOMAIN", true);

...