Windows Active Directory Authentication

For any other discussion relating to MailEnable.
Post Reply
simspe
Posts: 8
Joined: Sat Oct 29, 2022 11:03 am

Windows Active Directory Authentication

Post by simspe »

Good morning,

Based on the information found here (https://www.mailenable.com/mail-server-features.asp), I believe that mailEnable Standard Edition should be capable of authenticating to a Windows AD server. I have installed mailEnable Standard v10.42 on Windows Server 2019 and configured the Post Office for AD authentication per the configuration guide (https://www.mailenable.com/documentation/10.0/Enterprise/General.html) and some searching on this forum (https://www.mailenable.com/forum/viewtopic.php?f=5&t=43857&p=117020&hilit=ldap#p117020). I would post a screenshot but I can't seem to figure out how to do that here without pointing to an external URL. Settings described below:

Use Integrated Windows Authentication: checked
Use Post Office name as Windows domain name: selected
Method: Authenticate against LDAP/Active Directory
LDAP Server: IP of my PDC (I've tried my backup DC and 'localhost' and the behavior is the same)
Port: 389
SSL: unchecked
BindDN: %m@%p
Automatically create mailbox...: checked
Users must authenticate...: checked

When I try to log into the webmail interface I get a (Unknown or Disabled User!) message. I want the login to be the full e-mail address, such as "user@domain.com" and have tried usernames of the form "user@domain.com" and "user@domain" and both produce the same message.

Could anyone provide me with guidance on what may be going wrong? I've tried to look at logs but see no log entries being made regarding failed login; though I'm not sure exactly what to look for yet, so may have overlooked something.

Respectfully,
Tom

Admin
Site Admin
Posts: 1127
Joined: Mon Jun 10, 2002 6:31 pm
Location: Melbourne, Victoria, Australia

Re: Windows Active Directory Authentication

Post by Admin »

Hi,

Is the name of the postoffice the same as the domain under AD you are trying to authenticate against? Is the mail server part of the domain or separate? Does it have connectivity through to port 389 on the LDAP IP? If it is part of the domain does using Windows Authentication instead of LDAP/AD then work?

Post Reply