Manuals / Apple / Computer Equipment / Server

Apple 10.6 manual Imap and POP Authentication, To allow secure Smtp authentication

Models: 10.6

1 134

Download 134 pages 4.38 Kb

Page 65

Enabling multiple methods allows a client to use any of the enabled methods. If you want to require any of these authentication methods, enable only one method.

To allow secure SMTP authentication:

1In Server Admin, select a computer in the Servers list, then select Mail.

2Click Settings.

3Select the Advanced tab.

4Select Security.

5Click the CRAM-MD5 or Kerberos checkbox in the SMTP section.

6Click Save.

To allow less secure authentication:

1In Server Admin, select a computer in the Servers list, then select Mail.

2Click Settings.

3Select the Advanced tab.

4Select Security.

5In the SMTP section, click the Plain or Login checkbox.

6Click Save.

If you use the Server Setup Assistant and make your server and Open Directory Master, Kerberos and CRAM-MD5 are enabled automatically. If you want to force only one of these methods to be used for authentication, deselect the one you do not want used.

IMAP and POP Authentication

Your IMAP/POP Mail service (Dovecot) can protect user passwords by requiring that connections use a require secure authentication using Kerberos, CRAM-MD5 (for IMAP), or APOP (for POP) or less secure authentication methods using plain text or login. When a user connects with secure authentication, the user’s mail client software encrypts the user’s password before sending it to your IMAP service.

Plain authentication sends mail passwords as plain text over the network. Login authentication sends a minimally secure crypt hash of the password over the network. You might allow these less secure authentication methods, which don’t encrypt passwords, if some users have mail client software that doesn’t support the secure methods.

Make sure your users’ mail applications and user accounts support the method of authentication you choose. If you configure Mail service to require CRAM-MD5, you must set mail accounts to use a Mac OS X Server Password Server that has CRAM-MD5 enabled.

Chapter 3    Mail Service Advanced Configuration

65

Image 65

Apple 10.6 manual Imap and POP Authentication, To allow secure Smtp authentication, To allow less secure authentication

Contents

Mac OS X Server Apple Contents Mail Service Advanced Configuration Troubleshooting Mail Service Monitoring and Maintaining Mail ServiceContents Preface What’s in This GuideTo see the most recent server help topics Using Onscreen HelpTo get the most recent onscreen help for Mac OS X Server Getting Started Document Road MapPreface About This Guide Getting Additional Information Getting Documentation UpdatesMail Service Architecture Understanding Mail ServiceMac OS X Server Mail Transfer AgentMail Screening Incoming Mail Location Where Mail Is StoredOutgoing Mail Location Dovecot Internet Message Access Protocol ImapLocal Delivery Agent Post Office Protocol POP User Interaction with Mail ServiceWiki-Based Mailing Lists Using Mailing Lists with Mail ServiceMailman-Based Mailing Lists Mail service uses DNS like this Using Network Services with Mail ServiceBefore You Begin Managing Mail ServiceTo enable MX records Using Mail Service ToolsConfiguring DNS for Mail Service How User Account Settings Affect Mail Service Setup OverviewConfigure outgoing Mail service To start the mail configuration assistantConfigure additional settings for Mail service Changing Mail Service Settings Administering Mail ServiceTo enable Mail Service for administration To change Mail service settings from the command lineViewing Mail Service Settings from the Command Line General SetupConfiguring Outgoing Mail Service Understanding Smtp AuthenticationRequiring Smtp Authentication Enabling Smtp AccessTo enable Smtp access To relay Smtp mail through another server Relaying Smtp Mail Through Another ServerCopying Undeliverable Incoming Mail To keep a copy of undeliverable incoming mailEnabling Imap Access Configuring Incoming Mail ServiceSaving Mail Messages for Monitoring and Archival Purposes To save all messagesEnabling POP Access To enable Imap accessTo enable POP access Choosing No Incoming Mail RetrievalTo restrict Smtp relay Restricting Smtp RelayTo change the local delivery directory Rejecting Smtp Connections from Specific Servers Restricted Smtp Relay and Smtp Authentication InteractionFiltering Smtp Connections Rejecting Mail from Blacklisted SendersTo reject mail from blacklisted senders To filter Smtp connectionsConnection Control Limiting Junk Mail and VirusesEnabling Junk Mail Screening Bayesian Filters Mail Service FilteringTo enable junk mail screening Training the junk mail filter with users’ help Training the Junk Mail FilterTo allow mail by language and locale Training the junk mail filter without user interactionFiltering Mail by Language and Locale Enabling Virus Screening To enable virus screeningServer-Side Mail Rules To enable Sieve supportFrom the command line Managing Mail Quotas To enable a user’s mail quotaLimiting Incoming Message Size Enabling Mail Quotas for UsersConfigure Quota Violation Responses Configuring Quota WarningsTo configure quota warnings To configure quota violation responsesMailing Lists Setting Up a Wiki-Based Mailing ListTo enable wiki-based mailing lists About Mailman Enabling Mailing Lists Setting Up a Mailman Mailing ListTo enable mailing lists To create a list Creating a Mailing ListTo set a list’s maximum message length Setting a List’s Maximum Message LengthCreating a Mailing List Description To create a list descriptionTo customize a welcome message Customizing the Mailing List Welcome MessageCustomizing the Mailing List Unsubscribe Message To customize the subscriber welcome messageSetting Mailing List Message Bounce Options To enable list moderationEnabling a Mailing List Moderator To set bounce optionsTo set privacy options Designating a Mailing List as PrivateAdding Subscribers To add subscribersViewing a Server’s Mailing Lists Administering Mailing ListsTo see the lists Viewing a Mailing List’s InformationTo designate a list administrator Designating a List AdministratorAccessing Web-Based Administrator Options To access a list’s web-based optionsTo designate a list moderator Designating a List ModeratorArchiving a List’s Mail To archive a list’s mailViewing Mailing List Archives Working with Mailing List SubscribersAdding a Subscriber to a List Removing a List SubscriberTo add or remove a subscriber’s posting privileges Changing Subscriber Posting PrivilegesSuspending a Subscriber To suspend a user’s subscription to a listSubscribing to a Mailing List Via Mail List Subscriber OptionsTo subscribe via mail Subscribing to a Mailing List Via WebUnsubscribing from a Mailing List Via Web Setting and Changing Your Mailing List PasswordUnsubscribing from a Mailing List Via Mail Changing Digest Mode To disable list deliveryDisabling List Mail Delivery To toggle digest modeSetting Additional Subscriber Options Where to Find More InformationTo access additional options Choosing Mime or Plain Text DigestsSetting the Mail Service Log Detail Setting Mail Service Logging OptionsArchiving Mail Service Logs by Schedule To set the Mail service log detailConfiguring Mail Client Applications Client-Specific Configuration for Mail ServiceVacation Notices Using WebmailTo use WebMail How a user modifies their vacation noticesDesignating Authorized Mail Service Users Use this chapter to tune Mail service beyond a basic setupSecuring User Access to Mail Service To enable a user’s mail access using Workgroup Manager Using Workgroup Manager for Mail Service AccessUsing Access Control Lists for Mail Service Access To enable mail access using ACLs Choosing Authentication for Mail ServiceSmtp Authentication To allow less secure authentication Imap and POP AuthenticationTo allow secure Smtp authentication To set less secure Imap and POP authentication To set secure Imap and POP authenticationConfiguring SSL for mail transport Securing Mail Service with SSLConfiguring SSL Transport for Imap and POP Connections Configuring SSL Transport for Smtp ConnectionsTo configure SSL transport for Smtp connections To configure SSL transport for Imap and POP connectionsEnter a key size, and then press Return Generate a Certificate Signing Request CSREnter s, and then press Return Following output appears Accessing Server Certificates from the Command Line Creating the Password File in the Keychain Creating a Password File from the Command LineEnabling Virtual Hosting Mail Service Virtual HostTo enable virtual hosting To add or remove virtual hosts Adding or Removing Virtual HostsAssociating Users to the Virtual Host Postmaster@server.com At the prompt, enter the following command To create a Mac OS X Server-style alias Creating Additional Mail Addresses for UsersTo forward a user’s mail Setting Up Forwarding Mail Addresses for a UserTo create a Postfix-style alias To specify where mail is stored on the server Working with Mail Service Data StorageViewing the Location of the Mail Store Specifying the Location of the Mail StoreTo split the mail store Creating Additional Mail Store LocationsBacking Up and Restoring Mail Messages Maximum Number of Mail Messages Per VolumeConfiguring Additional Mail Service Support for 8-Bit Mime Setting Up Mail Server Clustering with XsanConfiguring Mail Clustering To disable the default conversionTo start or stop the service Use this chapter to monitor and maintain Mail serviceStarting or Stopping Mail Service To reload Mail service from the command line Reloading Mail ServiceHolding Outbound Mail To hold outbound mailCreating an Administration Account Allowing Administrator Access to Mail FoldersTo create a mail administrator account Blocking Inbound Mail ConnectionsViewing an Overview of Mail Service Activity Monitoring Mail Service ActivityViewing Mail Service Logs To see an overview of Mail service activityReclaiming Disk Space Used by Mail Service Log Archives To view a Mail service logViewing the Mail Connections List To view a list of connected mail usersMonitoring the Outgoing Mail Queue Viewing Mail AccountsChecking the Outgoing Mail Queue Clearing Messages from the Outgoing Mail QueueTo try to resend an outgoing message Viewing Mail Service StatisticsRetrying Undelivered Outgoing Messages Computer responds with the following output Improving Performance Troubleshooting Mail ServiceWhen Mail Is Undeliverable When a Disk Is FullWhere to Find More Information Forwarding Undeliverable Incoming MailInternet BooksAppendix Service SettingsD87.cert.pem Mailimapsieveproxyservers Emptyarray D87.key.pem Default ALL+RC4@STRENGTH 100 Mailpostfixsendercanonicalmaps 101102 103 Strength104 ALL!EXPORT+RC4@STRENGTH105 106 Mailpostfixdisablemimeinput Processing107 Begin Certificate108 109 110 111 112 Options113 Connect GET Post114 115 116 117 118 119 120 121 TZ Mailconfig Lang122 123 Begin RSA Private KEY124 MAILER-DAEMON125 Ratedelay Mailpostfixsmtprandomize Yes Addresses126 127 128 Vacation Notification Script129 Self-Defined ForwardingBasic Sort and Antijunk Mail Filter 130 131 IndexDisks 132 133 See also Mailman, subscribers Mailman134