iPlanet Messaging Server是一个强大的、可靠的、大容量的Internet邮件服务器,是为企业和服务提供商设计的。Messaging Server采用集中的LDAP数据库存储用户、组和域的信息。它支持标准的协议、多域名和Webmail,具有强大的安全和访问控制。
iPlanet Messaging Server的安装0
安装iPlanet Messaging Server1
配置Directory Server Plug-ins7
安装iPlanet Web Server7
安装iPlanet Delegated Administrator7
服务自动启动文件/etc/rc3.d/S99iplanet10
转入原有的邮件用户及其邮件10
日常维护11
创建用户11
用户使用11
iPlanet Messaging Server的安装
下图显示了iPlanet各产品之间的关系:
在安装光盘的solaris目录下,有三个需要安装的产品的目录:
m ES - iPlanet Web Server
m iDA - iPlanet Delegated Administrator for Messaging
m iMS - iPlanet Messaging Server
安装的顺序是:iPlanet Messaging Server,iPlanet Web Server,iPlanet Delegated Administrator for Messaging。
安装iPlanet Messaging Server
安装前先建立一个系统用户mailsrv,首要组是60001。
进入iMS目录,输入如下命令:
./setup
安装程序运行后会依次问下列问题:
(1)欢迎界面
Welcome to the iPlanet Server Products installation program. This
program will install iPlanet Server Products and the iPlanet
Console on your computer.
It is recommended that you have "root" privilege to install the
software.
Tips for using the installation program:
- Press "Enter" to choose the default and go to the next screen
- Type "Control-B" to go back to the previous screen
- Type "Control-C" to cancel the installation program
- You can enter multiple items using commas to separate them.
For example: 1, 2, 3
Would you like to continue with installation? [Yes]:
直接敲回车键。
(2)许可协议
BY INSTALLING THIS SOFTWARE YOU ARE CONSENTING TO BE BOUND BY AND
ARE BECOMING A PARTY TO THE AGREEMENT FOUND IN THE LICENSE.TXT
FILE. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS AGREEMENT,
PLEASE DO NOT INSTALL OR USE THIS SOFTWARE.
Do you agree to the license terms? [No]:
输入“y”敲回车键。
(3)安装Netscape服务器
Select the items you would like to install:
1. iPlanet Servers
Installs iPlanet Servers with the integrated Netscape Console
onto your computer.
2. Netscape Console
Installs Netscape Console as a stand-alone Java application
on your computer.
To accept the default shown in brackets, press the Enter key.
Select the component you want to install [1]:
直接敲回车键。
(4)安装类型
Choose an installation type:
1. Express installation
Allows you to quickly install the servers using the most
common options and pre-defined defaults. Useful for quick
evaluation of the products.
2. Typical installation
Allows you to specify common defaults and options.
3. Custom installation
Allows you to specify more advanced options. This is
recommended for experienced server administrators only.
To accept the default shown in brackets, press the Enter key.
Choose an installation type [2]:
直接敲回车键。
(5)安装位置
This program will extract the server files and install them into
a directory you specify. That directory is called the server root
in the product documentation and will contain the server
programs, the Administration Server, and the server configuration
files.
To accept the default shown in brackets, press the Enter key.
Install location [/usr/iplanet/server5]:
直接敲回车键。
(6)iPlanet Server产品组件
iPlanet Server Products components:
Components with a number in () contain additional subcomponents
which you can select using subsequent screens.
1. Netscape Server Products Core Components (3)
2. Directory (Not for new installs, use iDS 5.1 instead) (2)
3. Administration Services (2)
4. iPlanet Messaging Suite (5)
Specify the components you wish to install [All]:
直接敲回车键。
(7)Netscape Server产品核心组件
Netscape Server Products Core Components components:
Components with a number in () contain additional subcomponents
which you can select using subsequent screens.
1. Netscape Server Products Core Components
2. Netscape Core Java classes
3. Java Runtime Environment
Specify the components you wish to install [1, 2, 3]:
直接敲回车键。
(8)Directory组件
Directory (Not for new installs, use iDS 5.1 instead) components:
Components with a number in () contain additional subcomponents
which you can select using subsequent screens.
1. Netscape Directory Server
2. Netscape Directory Server Console
Specify the components you wish to install [1, 2]:
直接敲回车键。
(9)管理服务组件
Administration Services components:
Components with a number in () contain additional subcomponents
which you can select using subsequent screens.
1. Netscape Administration Server
2. Administration Server Console
Specify the components you wish to install [1, 2]:
直接敲回车键。
(10)iPlanet Messaging suite组件
iPlanet Messaging Applications components:
Components with a number in () contain additional subcomponents
which you can select using subsequent screens.
1. iPlanet Message Store and Message Access
2. iPlanet Internet Message Transport Agent
3. iPlanet Messaging Multiplexor
4. Sun Cluster 2.2/Veritas HA for iPlanet Messaging Server
5. iPlanet Delegated Administrator Command Line Utilities
Specify the components you wish to install [1, 2, 5,]:
直接敲回车键。
(11)完整域名
Enter the fully qualified domain name of the computer on which
you’re installing server software. Using the form
<hostname>.<domainname>
Example: eros.airius.com.
To accept the default shown in brackets, press the Enter key.
Computer name [budgie.siroe.com]:
输入“mail.abc.com”后敲回车键。
(12)系统用户与组
Choose a Unix user and group to represent the iPlanet server in
the user directory. The iPlanet server will run as this user. It
is recommended that this user should have no privileges in the
computer network system. The Administration Server will give
this group some permissions in the server root to perform
server-specific operations.
If you have not yet created a user and group for the iPlanet
server, create this user and group using your native UNIX system
utilities.
To accept the default shown in brackets, press the Return key.
System User [nobody]:
直接敲回车键。
System Group [nobody]:
直接敲回车键。
(13)是否用一个已经存在的Directory Server登记?
Netscape server information is stored in the Netscape
configuration directory server, which you may have already set
up. If so, you should configure this server to be managed by the
configuration server. To do so, the following information about
the configuration server is required: the fully qualified host
name of the form <hostname>.<domainname>(e.g.
hostname.domain.com), the port number, the suffix, and the DN and
password of a user having permission to write the configuration
information, usually the Netscape configuration directory
administrator.
If you want to install this software as a standalone server, or
if you want this instance to serve as your Netscape configuration
directory server, press Enter.
Do you want to register this software with an existing Netscape
configuration directory server? [No]:
直接敲回车键。
(14)是否希望用另外一个Directory Server存储用户和组的数据?
If you already have a directory server you want to use to store
your data, such as user and group information, answer Yes to the
following question. You will be prompted for the host, port,
suffix, and bind DN to use for that directory server.
If you want this directory server to store your data, answer No.
Do you want to use another directory to store your data? [No]:
直接敲回车键。
(15)Directory Server端口
The standard directory server network port number is 389.
However, if you are not logged as the superuser, or port 389 is
in use, the default value will be a random unused port number
greater than 1024. If you want to use port 389, make sure that
you are logged in as the superuser, that port 389 is not in use,
and that you run the admin server as the superuser.
Directory server network port [389]:
直接敲回车键。
(16)Directory Server标识
Each instance of a directory server requires a unique identifier.
Press Enter to accept the default, or type in another name and
press Enter.
Directory server identifier [mail]:
直接敲回车键。
(17)Configuration Server管理员的登录名与密码
To write configuration information into the Netscape
configuration directory, you must bind to the server as an entity
with the appropriate permissions. Usually, the Netscape
configuration directory administrator is used for this purpose,
although you can give other directory accounts the proper access.
Netscape configuration directory server administrator ID [admin]:
直接敲回车键,然后输入两遍设定的密码。
(18)后缀
The suffix is the root of your directory tree. You may have more
than one suffix.
Suffix [o=siroe.com]:
输入“o=isp”后敲回车键。
(19)Directory管理员的DN与密码
Certain directory server operations require an administrative
user. This user is referred to as the Directory Manager and
typically has a bind Distinguished Name (DN) of cn=Directory
Manager. Press Enter to accept the default value, or enter
another DN. In either case, you will be prompted for the
password for this user. The password must be at least 8
characters long.
Directory Manager DN [cn=Directory Manager]:
直接敲回车键,然后输入两遍设定的密码。
(20)管理域
The Administration Domain is a part of the configuration
directory server used to store information about Netscape
software. If you are managing multiple software releases at the
same time, or managing information about multiple domains, you
may use the Administration Domain to keep them separate.
If you are not using administrative domains, press Enter to
select the default. Otherwise, enter some descriptive, unique
name for the administration domain, such as the name of the
organization responsible for managing the domain.
Administration Domain [abc.com]:
直接敲回车键。
(21)Directory Server复制
Replication is used to duplicate all or part of a directory
server to another directory server. This can be used for
failsafe purposes, to ensure that the directory data is always
online and up-to-date in case one server goes down. It is also
useful for distributing directory data from a central main
repository to remote directory servers.
Do you want to configure this directory server to use
replication? [No]:
直接敲回车键。
(22)例子入口
You may install some sample entries in this directory instance.
These entries will be installed in a separate suffix and will not
interfere with the normal operation of the directory server.
Do you want to install the sample entries? [No]:
直接敲回车键。
(23)Administration Server端口
The Administration Server is separate from any of your
application servers since it listens to a different port and
access to it is restricted.
Pick a port number between 1024 and 65535 to run your
Administration Server on. You should NOT use a port number which
you plan to run an application server on, rather, select a number
which you will remember and which will not be used for anything
else.
The default in brackets was randomly selected from the available
ports on your system. To accept the default, press return.
Administration port [1029]:
直接敲回车键。
(24)Administration Server的用户名
The Administration Server program runs as a certain user on your
system. This user should be different than the one which your
application servers run as. Only the user you select will be able
to write to your configuration files. If you run the
Administration Server as "root", you will be able to use the
Server Administration screen to start and stop your application
servers.
Run Administration Server as [root]:
直接敲回车键。
(25)Messaging Server的标识
The instance name is the unique identifier for this installed
Messaging Server. It is customary to use the host name as
instance name. However, you may choose any name you wish.
The instance name will be prefixed with "msg-" to identify the
installed server as a Messaging Server.
Instance Name [mail]:
直接敲回车键。
(26)Messaging Server的主机名和域名
The Messaging Server responds to requests for a particular host
and domain. It is recommended you use the host and domain name of
the machine on which you are installing the Messaging Server.
Host Name [mail.abc.com]:
直接敲回车键。
(27)Messaging Server的用户名
The Messaging Server runs as a privileged user. The account
should already exist on the system and should be a member of the
iPlanet Group.
User Name [mailsrv]:
直接敲回车键。
(28)Messaging Server的缺省域和组织
Please enter the default domain and the default organization DN
below. The default domain is the domain of unqualified user-id’s
that do not belong to any particular domain.
The default organization DN should represent the subtree under
which all users that belong to the default domain are located.
All users that belong to the default domain are managed under
this subtree.
Default Domain [abc.com]:
Default Organization DN [o=abc.com, o=isp]:
直接敲回车键。
(29)放置iPlanet Delegated Administrator for Messaging的Web Server的主机名和端口
The Messaging Server requires the use of a Delegated
Administration Server. The Delegated Administration Server is
used by administrators and endusers to manage user accounts and
their preferences.
A Delegated Administration Server does not have to exist at the
given host and port. It may be installed later.
Host Name [mail.abc.com]:
直接敲回车键。
(30)确认Messaging Server是否在防火墙后运行
The Messaging Server can route mail through a firewall. The
firewall controls access between the Internet and your internal
network.
If you choose to operate your Messaging Server behind a firewall,
you must specify the fully qualified host name of the Smart Host,
which has the Messaging Server routing information.
If your Messaging Server cannot route mail to a recipient’s
address, it forwards the message to its Smart Host.
[1] Yes, the Messaging Server is behind a firewall.
[2] No, the Messaging Server will not use a firewall.
Will the Messaging Server use a firewall [2]:
直接敲回车键。
(31)域组件树的根
Please specify the root of your domain component tree.
[o=internet]:
直接敲回车键。
(32)基本信息存储目录
The Messaging Server will use the directory shown below as its
primary message store.
Store Directory
[/usr/iplanet/server5/msg-budgie/store/partition/primary]:
直接敲回车键。
(33)POP3, IMAP, SMTP和 Messenger Express的端口
The Messaging Server uses TCP/IP ports for sending and receiving
messages.
POP3 Port [110]:
IMAP Port [143]:
SMTP Port [25]:
Messenger Express Port [80]:
直接敲回车键。
(34)Service Administrator的登录名和口令。
The Messaging Server requires a Service Administrator account to
exist in the Users Directory Server. The account has privileges
to manage the various services of the Messaging Server.
The account will be created and given the necessary privileges.
User ID [ServiceAdmin]:
直接敲回车键,然后输入两遍设定的密码。
(35)加入postmaster组的E-mail
A Postmaster alias will be created and used to distribute
administrative email related to the Messaging Server. Mail sent
to the Postmaster will be distributed to the members of the
postmaster group. An email address that will be the initial
member of the postmaster group is required. The given address
(e.g. admin@domain.com) must be a valid address (it will NOT be
created during the install).
Do not use an email address that begins with "Postmaster@". This
email address is already assigned to the Postmaster alias.
Email Address:
输入user1@abc.com后敲回车键。
配置Directory Server Plug-ins
编辑文件
/usr/iplanet/server5/slapd-mail/config/slapd.ldbm.conf
把下面两行的#去掉,
#plugin postoperation on "Class of Service" /usr/iplanet/server5/lib/cos-plugin.so cos_init o=iplanet.com
#plugin preoperation on "Class of Service init" /usr/iplanet/server5/lib/cos-plugin.so cos_preop_init
加入下面一行,
include "/usr/iplanet/server5/slapd-mail/config/counters.ldbm.conf"
重新启动Directory Server。
安装iPlanet Web Server
进入ES目录,输入如下命令:
./setup
按照提示向下安装就可以,但Web Server端口要改为8080。
安装iPlanet Delegated Administrator
进入iDA目录,输入如下命令:
./setup
安装程序运行后会依次问下列问题:
(1)(1) 提示
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging and Collaboration
Installation/Uninstallation
---------------------------------------------------------
Welcome to the iPlanet Delegated Administrator for Messaging and
Collaboration installation program. This program will install iPlanet Server
Products and the iPlanet Console on your computer.
It is recommended that you have "root" privilege to install the software.
Tips for using the installation program:
- Press "Enter" to choose the default and go to the next screen
- Type "Control-B" to go back to the previous screen
- Type "Control-C" to cancel the installation program
- You can enter multiple items using commas to separate them.
For example: 1, 2, 3
Would you like to continue with installation? [Yes]:
直接敲回车键。
(2)(2) 许可
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging and Collaboration
Installation/Uninstallation
---------------------------------------------------------
BY INSTALLING THIS SOFTWARE YOU ARE CONSENTING TO BE BOUND BY
AND ARE BECOMING A PARTY TO THE AGREEMENT FOUND IN THE
LICENSE.TXT FILE. IF YOU DO NOT AGREE TO ALL OF THE TERMS
OF THIS AGREEMENT, PLEASE DO NOT INSTALL OR USE THIS SOFTWARE.
Do you agree to the license terms? [n]:
输入“y”后敲回车键。
(3)(3) 安装位置
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging and Collaboration
Installation/Uninstallation
---------------------------------------------------------
This program will extract the iPlanet Delegated Administrator for Messaging
and Collaboration application from the distribution media and install it into a
directory you specify.
Install location [/usr/netscape/ida10]:_______________________________
输入“/usr/netscape/ida10”后敲回车键。
(4)相关信息
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
If you want iPlanet Delegated Administrator for Messaging to manage a
Messaging Server, you will be asked for the Messaging Server identifier
and it’s Administration Server URL.
Manage Messaging Server [Yes]:
Specify Host Name [mail.abc.com]: ______________________________
Specify Admin URL: ______________________________________________
Specify CGI Path [msg-mail/Tasks/operation]:________________________
Specify Default Domain[abc.com]:__________________________________
除Admin URL输入“http://mail.abc.com:1029”外,其他直接敲回车键。
(5)(5) Calenda Server
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
If you want iPlanet Delegated Administrator for Messaging to manage an
iPlanet Calendar Server, enter ’Yes’.
Manage Calendar Server [No]: __________________
直接敲回车键。
(6)Enterprise Server
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
iPlanet Delegated Administrator for Messaging requires the configuration
directory of the Enterprise server instance. The Enterprise server must
be installed locally on this computer system, and iPlanet Delegated
Administrator for Messaging will be accessible only for this Enterprise
server instance.
Example: /home/es/https-machine/config
Specify Enterprise server config directory: ________________________
Specify web server port [8080]: _________________________________
在Enterprise server config directory处输入“/usr/iplanet/servers/https-mail.abc.com/config”,在web server port处直接敲回车键。
(7)(7) LDAP Server注机与端口
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
iPlanet Delegated Administrator for Messaging requires the use of a
LDAP-based Directory Server for the administration of User/Group data.
This server is called the User/Group Directory.
Enter the non-SSL URL for the directory server:
ldap://<host>:<port>
Specify LDAP URL: ____________________________________
输入“ldap://mail.abc.com:389”。
(8)(8) Directory Manager与密码
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
In order to create the suffix for iPlanet Delegated Administrator for
Messaging, enter the base DN and password of the user who can access the
Directory Server.
Specify Directory Manager [cn=Directory Manager]: ________________
Password: [from above]_________________________________________
对于Directory Manager直接敲回车键,在Password处输入原来设定的密码。
(9)(9) 用户数据后缀
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
iPlanet Delegated Administrator for Messaging requires a suffix to store
it’s user data. If this base suffix does not exist the Installation
program will attempt to create it.
Example: o=isp
Exmaple: dc=isp, dc=com
Specify Suffix: ________________________________________
输入“o=isp”后敲回车键。
(10)(10) DC后缀
---------------------------------------------------------
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
This suffix is already present in the directory.
Continue without installing iDA information in the directory? [No]: Yes
Specify DC Suffix [o=internet]:_____________________________
直接敲回车键。
(11)(11) 配置后缀
Sun-Netscape Alliance
iPlanet Delegated Administrator for Messaging Installation/Uninstallation
---------------------------------------------------------
iPlanet Delegated Administrator for Messaging requires a suffix to store
it’s configuration data. If this base suffix does not exist the
Installation program will attempt to create it.
Example: o=isp
Exmaple: dc=isp, dc=com
Specify Suffix [o=abc.com]:
直接敲回车键。
服务自动启动文件/etc/rc3.d/S99iplanet
编写文件/etc/rc3.d/S99iplanet,内容如下:
/usr/iplanet/server5/start-admin
/usr/iplanet/server5/msg-mail/start-ens
/usr/iplanet/server5/msg-mail/start-msg
/usr/iplanet/server5/slapd-mail/start-slapd
/usr/iplanet/servers/https-mail.abc.com/start
保存后,执行下面的命令增加执行权限。
chmod +x /etc/rc3.d/S99iplanet
转入原有的邮件用户及其邮件
编写一个shell程序/export/home/a/shell/create_sh.sh,用来生成转用户和邮件的shell程序,内容如下:
echo “” > create_user.sh
echo “CONFIGROOT=/usr/iplanet/server5/msg-mail/config” > create_mbox.sh
echo “export CONFIGROOT” >> create_mbox.sh
echo “cd /usr/iplanet/server5/bin/msg/store/bin” >> create_mbox.sh
for i in `ls /export/home/a/mail|more|awk ‘{ print $1 }’`
do
echo “/usr/iplanet/server5/ndacli/bin/imadmin user create –D ServiceAdmin –w abc123 –l $i –W $i –F $i –L $i –p 8080” >> create_user.sh
echo “./imsimport –u $i –s /export/home/a/mail/$i –d INBOX” >> create_mbox.sh
done
echo “/usr/iplanet/server5/msg-mail/imsimta dirsync –F” >> create_user.sh
保存后,执行下面的命令增加执行权限。
chmod +x create_sh.sh
把原来邮件服务器上/var/mail下的所有文件传到/export/home/a/mail目录下。进入/export/home/a/shell目录,执行create_sh.sh生成转用户的shell程序create_user.sh和转邮件的shell程序create_mbox.sh。
./create_sh.sh
执行下面的命令增加执行权限。
chmod +x create_user.sh
chmod +x create_mbox.sh
执行create_user.sh生成邮件用户。
./create_user.sh
执行create_mbox.sh转入原邮件。
./create_mbox.sh
日常维护
创建用户
打开浏览器,访问http://mail.abc.com:8080/nda/start.htm,点机“登录”,以ServiceAdmin登录。登录成功后,依次点击“com”、“abc”,进入“abc.com”后,点击“创建新用户”,在创建用户的页面里输入用户信息,点击“启动其他服务”,选中“邮件”。
用户使用
通过浏览器使用
打开浏览器,访问http://mail.abc.com,用自己的用户名和密码登录。登录成功后,可以点击“选项”来修改个人信息和密码;可以点击“获取邮件”来收邮件;可以点击“撰写邮件”撰写并发送邮件。
通过Outlook使用
“外发邮件服务器”要选中“我的服务器要求身份认证”。
|
|
