NativeMicrosoftOutlookConfiguration Guide. forversion2.3.1

NativeMicrosoftOutlookConfiguration Guide forversion2.3.1

NativeMicrosoftOutlookConfigurationGuide Version2.3.1-July2015 Permissionisgrantedtocopy,distributeand/ormodifythisdocumentunderthetermsoftheGNUFreeDocumentationLicense,Version 1.2oranylaterversionpublishedbytheFreeSoftwareFoundation;withnoInvariantSections,noFront-CoverTexts,andnoBack-Cover Texts.Acopyofthelicenseisincludedinthesectionentitled"GNUFreeDocumentationLicense". ThefontsusedinthisguidearelicensedundertheSILOpenFontLicense,Version1.1.ThislicenseisavailablewithaFAQat:http:// scripts.sil.org/ofl Copyright ŁukaszDziedzic,http://www.latofonts.com,withReservedFontName:"Lato". Copyright RaphLevien,http://levien.com/,withReservedFontName:"Inconsolata".

TableofContents AboutthisGuide... 1 Introduction... 2 Architecture... 3 Requirements... 4 LDAPServer... 4 MicrosoftActiveDirectory... 4 OtherorNoSolution...5 IMAPServerandTrust... 5 Installation... 7 RedHatEnterpriseLinuxv6x86_64... 7 Debian7(Wheezy)andUbuntu12.04(PrecisePangolin)... 8 Debian8(Jessie)andUbuntu14.04(TrustyTahr)... 9 Configuration... 10 SOGoConfiguration...10 Samba4Configuration...10 OpenChangeConfiguration... 11 ApacheConfigurationforWebServices... 13 NameServiceConfigurationforWebServices... 16 AddingUsers...18 MicrosoftOutlookConfiguration... 19 KnownIssuesorLimitations... 20 CurrentLimitations... 20 AdditionalInformation... 22 CommercialSupportandContactInformation... 23 iii

Chapter1 AboutthisGuide ThisguidewillwalkyouthroughtheinstallationandconfigurationofthenativeMicrosoftOutlook compatibilitylayersogooffers. Priorgoingoverthisguide,youshouldhaveaworkingSOGoinstallation.PleaserefertotheSOGo InstallationandConfigurationGuideformoreinformationoninstallingandconfiguringSOGo. ThisguidealsoincludesinstructionsforconfiguringMicrosoftOutlookwithSOGo. Theinstructionsarebasedonversion2.3.1ofSOGo. Thelatestversionofthisguideisavailableathttp://www.sogo.nu/downloads/documentation.html. AboutthisGuide 1

Chapter2 Introduction SOGoisafreeandmodernscalablegroupwareserver.Itofferssharedcalendars,addressbooks,and emailsthroughyourfavouritewebbrowserandbyusinganativeclientsuchasmozillathunderbird andlightning. SOGoisstandard-compliant.ItsupportsCalDAV,CardDAV,GroupDAV,iMIPandiTIPandreuses existingimap,smtpanddatabaseservers makingthesolutioneasytodeployandinteroperable withmanyapplications. SOGofeatures: Scalablearchitecturesuitablefordeploymentsfromdozentomanythousandusers Rich Web-based interface that shares the look and feel, the features and the data of Mozilla ThunderbirdandLightning ImprovedintegrationwithMozillaThunderbirdandLightningbyusingtheSOGoConnectorand thesogointegrator NativecompatibilityforMicrosoftOutlook2003,2007,2010,and2013 Two-waysynchronizationsupportwithanyMicrosoftActiveSync-capabledevice,andOutlook 2013 SOGoisdevelopedbyacommunityofdeveloperslocatedmainlyinNorthAmericaandEurope. Moreinformationcanbefoundonhttp://www.sogo.nu/. Introduction 2

Chapter3 Architecture ThefollowingdiagramdemonstratesthearchitectureofthenativeOutlookcompatibilitylayerof SOGo. WithSamba4andOpenChange,MicrosoftOutlookclientscancommunicatenativelywithSOGo usingthemicrosoftexchangeprotocol,withoutrequiringcostlyandhard-to-maintainthird-party MAPIconnectorsforMicrosoftOutlook. Architecture 3

Chapter4 Requirements OrganizationsgenerallyhavesolutionstoauthenticateuserssuchasLDAPserversorMicrosoft ActiveDirectoryservers. ThesolutionbeingusedwillinfluencehowusersareprovisionedinSamba4,akeycomponentfor nativeoutlookcompatibilityinsogo. LDAPServer IfyourorganizationusesaLDAPserversuchOpenLDAP,NovelleDirectory,ApacheDirectoryor any other solution, you must use Samba 4 s internal directory server and synchronize the data betweenboth. Synchronizationscriptsarenotprovidedandunlessyouhaveclear-textpasswordsofyourexisting users,theywillhavetobechangedduringyourinitialsynchronizationsothatyourldap sserver passwordsareidenticaltotheonesfromsamba4. AnymodificationstoyourexistingLDAPserver(passwordchange,useradditionordeletion,etc.) willhavetobereplicatedtosamba4 sinternaldirectoryserver. NotethatifyouinstallSamba4onaserverthatisalreadyrunningaLDAPservice,youwillhave tochangetotcpportonwhichyourldapserverlistensto.samba4willusethetcpport389 anditcan tbechanged. Forexample,withOpenLDAP,youcanusethe-hparameterforslapdtomakeitlistenonanother TCPport. MicrosoftActiveDirectory IfyourorganizationusesMicrosoftActiveDirectory,Samba4willneedtobejoinedtoyourActive Directorydomain,asaDC. Samba4willbeabletoreusealltheinformationcontainedinMicrosoftActiveDirectoryandno synchronization process needs to be put in place as information will get replicated to Samba 4 automatically. FormoreinformationonjoiningSamba4toanexistingMicrosoftActiveDirectorydomain,please refertothesamba4documentationavailableatthefollowingurl: Requirements 4

Chapter4 http://wiki.samba.org/index.php/samba4 Morespecifically,havealookatthesamba-tool domain joincommand.notethatjoiningsamba 4 to your Active Directory domain as a member will currently not work. An authentication bug ispresentinsamba4whichthenpreventsalloutlookuserstosuccessfullyauthenticatethrough Samba4.ThisissuehasbeenreportedtotheSambateamandisbeingworkedon. OtherorNoSolution IfyourorganizationneitherusesaLDAPserverorMicrosoftActiveDirectory,youcanstartusing Samba4asyourdirectoryserver. Samba4 sdirectorycanbequeriedoverldapjustlikemicrosoftactivedirectoryandcanalso serveasadomaincontrollerforwindows-basedenvironments. Forexample,SOGocanverywelluseSamba4 sbuilt-indirectoryservertoauthenticateusers.a SOGoUserSourcesentrytoachievethiswoldlooklikethis: su sogo defaults write sogod SOGoUserSources '( { CNFieldName = displayname; IDFieldName = cn; UIDFieldName = samaccountname; basedn = "cn=users,dc=example,dc=com"; binddn = "cn=administrator,cn=users,dc=example,dc=com"; bindfields = ( samaccountname ); bindpassword = "%1OpenChange"; canauthenticate = YES; displayname = "Shared Addresses"; hostname = "127.0.0.1"; id = samba; isaddressbook = YES; port = 389; } )' PleaserefertotheSOGoInstallationandConfigurationGuideformoreinformationregarding SO- GoUserSources. IMAPServerandTrust AnIMAPserversupportingtheACL,UIDPLUSandQRESYNCIMAPextensionsisrequired,suchas CyrusIMAPversion2.4orlater,orDovecotversion2.1orlater.IfyourcurrentIMAPserverdoes Requirements 5

Chapter4 notsupporttheseextensions,youcanusedovecot sproxyingcapabilities.thefollowconfiguration examplemakesdovecotproxyallimaprequesttoanexistingserver: auth_mechanisms = plain login imapc_host = inverse.ca imapc_port = 993 imapc_ssl = imaps imapc_ssl_verify = no mail_gid = imapproxy mail_home = /home/imapproxy/%u mail_location = imapc:~/imapc mail_uid = imapproxy passdb { args = host=inverse.ca ssl=imaps port=993 ssl_ca_dir=/etc/pki/tls/certs default_fields = userdb_imapc_user=%u userdb_imapc_password=%w driver = imap } protocols = imap ssl = no userdb { driver = prefetch } SOGowouldthenbeconfiguredtouseDovecot sproxyastheimapserver. Moreover,theauthenticationmodeinusebyWindowswithSambaandExchangeserversprevent thebackendfromknowingtherealpasswordbeingusedbytheuser.thisimpliesthattheimap servermustacceptanypasswordsfromthehostonwhichsambaisrunning. To accomplish this with Cyrus IMAP Server, set sasl_pwcheck_method to alwaystrue in/etc/ imapd.conf.youshouldrestrainthistoanimapdinstancededicatedtosogo. ForDovecot,useanauthenticationsourcesimilarto: passdb { driver = static args = nopassword=y allow_nets=127.0.0.1/32 } YoushouldalsomakesurethatyourestrainthisonlytotheSOGoprocesses. ForanyotherIMAPserver,refertotheproduct sdocumentation.ifsuchcapabilityisnotoffered, youcanalternativelydefinethecleartextpasswordforeachuser.pleaserefertotheaddingusers sectionfromthisdocument. Requirements 6

Chapter5 Installation ThissectionwillguideyouthroughtheinstallationofthenativeMicrosoftOutlookcompatibility layersogooffers. RedHatEnterpriseLinuxv6x86_64 IfyouareusingRedHatEnterpriseLinuxversion6x86_64,packagesforSamba4,OpenChange andsogoandthesogoopenchangebackendareavailablefromsogo swebsite.pleasefollow theinstructionsfromhttp://www.sogo.nu/english/downloads/backend.html. In order to satisfy certain dependencies, you should also add the EPEL source corresponding to your distribution and architecture. More information on this is available here: http://fedoraproject.org/wiki/epel or more specifically, http://fedoraproject.org/wiki/epel/ FAQ#How_can_I_install_the_packages_from_the_EPEL_software_repository.3F. Onceready,installtheOpenChangepackagesontopofanexistingSOGoinstallation: yum clean all && yum makecache yum install samba \ openchange \ sogo-openchange-backend \ openchange-ocsmanager \ openchange-rpcproxy \ mysql-server \ MySQL-python Oncethepackagesareinstalled,refertotheConfigurationchapterfromthisguide. Note Samba4/OpenChangearenotavailablefornowonCentOS5i386/x86_64,and CentOS7.OnDebian-basedsystems,packagesareavailableonlyonthex86_64 platform. Installation 7

Chapter5 Debian7(Wheezy)andUbuntu12.04(PrecisePangolin) SOGo,OpenChangeandtheSOGoOpenChangebackendarenowavailablefromSOGo swebsite. Pleasefollowtheinstructionsfromhttp://www.sogo.nu/english/downloads/backend.htmltosetup youraptsources. OnDebian7,forsomeSamba4dependencies,youneedtousethewheezy-backportsrepository. Todoso,create/etc/apt/sources.list.d/backports.listwiththefollowingcontent: deb http://http.debian.net/debian wheezy-backports main TheninstallSamba4ontopofanexistingSOGoinstallation: apt-get update apt-get install samba samba-dev Oncecompleted,installthepackagesrelatedtoOpenChangeandtheSOGoprovider: apt-get install openchangeserver \ sogo-openchange \ openchangeproxy \ python-ocsmanager \ mysql-server \ python-mysqldb \ openchange-ocsmanager \ openchange-rpcproxy \ python-sievelib \ python-spyne \ python-rpclib Oncethepackagesareinstalled,refertotheConfigurationchapterfromthisguide. Note On Ubuntu 12.04, the Samba init scripts need to be modified to disable the upstartcheck.formoredetails,referto:https://wiki.samba.org/index.php/samba4/initscript Installation 8

Chapter5 Debian8(Jessie)andUbuntu14.04(Trusty Tahr) Pleasefollowtheinstructionsfromhttp://www.sogo.nu/english/downloads/backend.htmltosetup youraptsources. TheninstallSamba4ontopofanexistingSOGoinstallation: apt-get update apt-get install samba samba-dev Oncecompleted,installthepackagesrelatedtoOpenChangeandtheSOGoprovider: apt-get install openchangeserver \ sogo-openchange \ openchangeproxy \ python-ocsmanager \ mysql-server \ python-mysqldb \ openchange-ocsmanager \ openchange-rpcproxy \ python-sievelib \ python-spyne \ python-rpclib Oncethepackagesareinstalled,refertotheConfigurationchapterfromthisguide. Note Theocsmanager.confandrpcproxy.confarecurrentlylocatedin/etc/apache2/ conf.d.theseshouldbemovedto/etc/apache2/conf-available.thisisapackagingerrorthatwillsoonbefixed. Note Youmighthavetoadjusttherpcproxy.confconfigurationfiletoaddtheRequire all granted permission if you get Apache errors such as client denied by server configuration. Installation 9

Chapter6 Configuration Inthissection,you lllearnhowtoconfigurethenativemicrosoftoutlookcompatibilitylayerthat SOGooffers. SOGoConfiguration FirstthingtodoistoconfigureSOGotouseyourcurrentservices,whichareyourIMAP,SMTPand SQLdatabaseservers.TheconfigurationinstructionsforthisareavailableintheSOGoInstallation andconfigurationguideavailablefromhttp://www.sogo.nu/. Pleaserefertothatdocumentationbeforecontinuingwiththeinstructionsincludedinthisguide. Samba4Configuration Runthefollowingcommandsasroot: samba-tool domain provision --realm=example.com \ --domain=openchange \ --adminpass='%1openchange' \ --server-role='domain controller' samba-tool user setexpiry administrator --noexpiry Youmightconsiderchangingtherealmanddomainused,tosuityourenviroment. Youmightalsohavetoremove/etc/samba/smb.confpriorrunningthiscommand. Addthefollowingparameterstothe[global]sectionofthe/etc/samba/smb.confconfiguration file: Configuration required by OpenChange server dsdb:schema update allowed = true dcerpc endpoint servers = epmapper, mapiproxy, dnsserver dcerpc_mapiproxy:server = true dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp, exchange_ds_rfr Configuration required by OpenChange server Configuration 10

Chapter6 YourSamba4configurationfileshouldlooklikethis: Global parameters [global] server role = active directory domain controller workgroup = EXAMPLE realm = example.com netbios name = sogo passdb backend = samba4 Configuration required by OpenChange server dsdb:schema update allowed = true dcerpc endpoint servers = +epmapper, +mapiproxy dcerpc_mapiproxy:server = true dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp, exchange_ds_rfr Configuration required by OpenChange server [netlogon] path = /var/lib/samba/sysvol/example.com/scripts read only = No [sysvol] path = /var/lib/samba/sysvol read only = No OpenChangeConfiguration OpenChange2.2storesitsmetadatainMySQLsoyouneedtohaveitinstalled. First,createtheOpenChangeMySQLuser: $ mysql -u root -p mysql> CREATE USER 'openchange-user'@'localhost' IDENTIFIED BY 'openchange$123'; mysql> GRANT ALL PRIVILEGES ON `openchange`.* TO 'openchange-user'@'localhost' WITH GRANT OPTION; mysql> FLUSH PRIVILEGES; TheSambaADschemaneedstobefilledwithadditionalobjectdefinitionsbyrunningthefollowing commands: Configuration 11

Chapter6 openchange_provision --standalone NOTE: This operation can take several minutes [+] Step 1: Register Exchange OIDs [+] Step 2: Add Exchange attributes to Samba schema [+] Step 3: Add Exchange auxiliary classes to Samba schema [+] Step 4: Add Exchange objectcategory to Samba schema [+] Step 5: Add Exchange containers to Samba schema [+] Step 6: Add Exchange *sub* containers to Samba schema [+] Step 7: Add Exchange CfgProtocol subcontainers to Samba schema [+] Step 8: Add Exchange mailgateway subcontainers to Samba schema [+] Step 9: Add Exchange classes to Samba schema [+] Step 10: Add posssuperior attributes to Exchange classes [+] Step 11: Extend existing Samba classes and attributes [+] Step 12: Generic Exchange configuration objects [+] Step 13: Finalize generic Exchange configuration objects [SUCCESS] Done! [+] Step 1: Exchange Samba registration [SUCCESS] Done! [+] Step 1: Register Exchange Samba as the main server [SUCCESS] Done! CreatetheOpenChangedatabase: Setting up openchange db [+] Public Folders =================== * Public Folder Root : 0x0100000000000001 (72057594037927937) * IPM_SUBTREE : 0x0200000000000001 (144115188075855873) * NON_IPM_SUBTREE : 0x0300000000000001 (216172782113783809) * EFORMS REGISTRY : 0x0400000000000001 (288230376151711745) * OFFLINE ADDRESS BOOK : 0x0500000000000001 (360287970189639681) * /o=first Organization/cn=addrlists/cn=oabs/cn=Default Offline Address Book: 0x0600000000000001 (432345564227567617) * SCHEDULE+ FREE BUSY : 0x0700000000000001 (504403158265495553) * EX:/o=first organization/ou=first administrative group: 0x0800000000000001 (576460752303423489) * Events Root : 0x0900000000000001 (648518346341351425) openchange_provision --openchangedb --openchangedb-uri 'mysql://openchangeuser:openchange$123@localhost/openchange' Finally,modify/etc/samba/smb.conftospecifyOpenChangeconnectioninformationforitsindexingdatabase.Addthefollowingattheendofthe[global]section: Configuration 12

Chapter6 mapistore:namedproperties = mysql namedproperties:mysql_user = openchange-user namedproperties:mysql_pass = openchange$123 namedproperties:mysql_host = localhost namedproperties:mysql_db = openchange mapistore:indexing_backend = mysql://openchange-user:openchange$123@localhost/ openchange mapiproxy:openchangedb = mysql://openchange-user:openchange$123@localhost/ openchange OnRHEL,makesureSELinuxisdisabled: setenforce 0 Next,youcanstartSambausingtheusualcommand: /etc/init.d/samba start Onupstart-baseddistributions,use: start samba-ad-dc YoucanalsolaunchtheOpenChangewebservices: /etc/init.d/openchange-ocsmanager start ApacheConfigurationforWebServices TheOpenChangewebservicesconsistoftwocomponents: 1. OCS Manager which is used for autodiscovery and freebusy lookups on Outlook 2007 and 2010.Thisservicerunsinitsownapplicationserverwhichlistenson127.0.0.1:5000bydefault.Apacheneedstobeconfiguredtoforwardcertainrequeststoittomakeitaccessiblefrom theoutside.notethatthisservicemustbeaccessibleover*https*,otherwiseoutlookwon t useit. 2. RPCProxywhichisusedforRPCoverHTTP("OutlookAnywhere").ThisservicerunsasaWSGI applicationunderapache(mod_wsgi).whilehttpsisnotrequiredtoaccessthisservice,itis stronglyrecommended. OnRHEL-baseddistributions,theapacheconfigurationrequiredbytheseservicescanbefoundin /etc/httpd/conf.d/ocsmanager.confand/etc/httpd/conf.d/rpcproxy.conf. For Debian-based distributions, these files can be found in/etc/apache2/conf.d/ or/etc/ apache2/conf-available. Configuration 13

Chapter6 TheconfigurationrequiresthreeApachemodules:mod_proxy,mod_proxy_httpandmod_wsgi.These areusuallyalreadyinstalledbutmightneedtobeactivatedondebian-basedinstallations: a2enmod proxy proxy_http wsgi TheOCSManagerandRPCProxyconfigurationmodulecanbeenabledusing: a2enconf ocsmanager a2enconf rpcproxy OnRHEL-baseddistributions,makesuretheLoadModuledirectiveisuncommentedin/etc/httpd/ conf.d/wsgi.conf. Thereqtimeoutapachemoduleisknowntocauseproblemswhenusingthedefaultconfiguration shippedwithdebian-basedsystems.onsuchdistributions,apachewillclose(http/1.1500)any HTTPrequestforwhichtheHTTPbodyhasn tarrivedin10seconds. Toavoidthisproblem,useamuchhighertimeoutordisablethemodule: a2dismod reqtimeout YoushouldnowrestarttheApacheserviceandmakesureitwillstartonboot.OnRHEL-based distributions,do: chkconfig httpd on && /etc/init.d/httpd restart OnDebian-baseddistributions,do: update-rc.d apache2 defaults && /etc/init.d/apache2 restart WhilethisisarguablygoodpracticewithregularHTTP,itwilldisrupttheRPCoverHTTPprotocol implementedbyrpcproxy:outlookwillcontinuouslydisconnectandreconnectleadingtosuboptimalperformance. Finally,youmustadjusttheOCSManagerconfigurationfile,whichislocatedin/etc/ocsmanager/ocsmanager.ini.YoushouldenableLDAP-basedauthenticationinthemainsectionandconfigureitaccordingly.Youshouldalsoenablerpcproxy.Youfileshouldbesimilartothisone: Configuration 14

Chapter6 [DEFAULT] debug = true email_to = you@yourdomain.com smtp_server = localhost error_email_from = paste@localhost [main] auth = ldap mapistore_root = /var/lib/samba/private mapistore_data = /var/lib/samba/private/mapistore debug = yes [auth:file] [auth:ldap] host = ldap://127.0.0.1 port = 389 bind_dn = cn=administrator,cn=users,dc=example,dc=com bind_pw = %1OpenChange basedn = cn=users,dc=example,dc=com [auth:single] username = openchange password = {SSHA}I6Hy5Wv0wuxyXvMBFWFQDVVN12_CLaX9 [server:main] use = egg:paste http host = 127.0.0.1 port = 5000 protocol_version = HTTP/1.1 [app:main] use = egg:ocsmanager full_stack = true static_files = true cache_dir = %(here)s/data beaker.session.key = ocsmanager beaker.session.secret = SDyKK3dKyDgW0mlpqttTMGU1f app_instance_uuid = {ee533ebc-f266-49d1-ae10-d017ee6aa98c} NTLMAUTHHANDLER_WORKDIR = /var/cache/ntlmauthhandler SAMBA_HOST = 127.0.0.1 [rpcproxy:ldap] host = localhost port = 389 basedn = CN=Users,DC=example,DC=com set debug = true Configuration 15

Chapter6 [autodiscover] [autodiscover:rpcproxy] enabled = true [outofoffice] [outofoffice:file] sieve_script_path = /var/vmail/$domain/$user/sieve-script sieve_script_path_mkdir = false [outofoffice:managesieve] secret = secret [loggers] keys = root [handlers] keys = console [formatters] keys = generic [logger_root] level = INFO handlers = console [handler_console] class = StreamHandler args = (sys.stderr,) level = NOTSET formatter = generic [formatter_generic] format = %(asctime)s %(levelname)-5.5s [%(name)s] [%(threadname)s] %(message)s Oncecompleted,starttheOCSManagerservice: /etc/init.d/openchange-ocsmanager start NameServiceConfigurationforWebServices Theautodiscoveryservicemustbemadeaccessibleinordertoadvertisethewebservicesprovided byopenchange.thiscanbedoneintwoways. 1. ThefirstistoassociatetheFQDNautodiscover.example.com.withthemachinethathosts Samba4/OpenChange,byaddingaCNAMEentryinyourDNSconfiguration.Notethat,instead Configuration 16

Chapter6 orchangingyourdnsserverconfiguration,youcansimplyaddasimilarentrytothehostsfile ofthewindowsmachinefromwhereyou llrunoutlook,whichishandyfortestingpurposes. 2. ThesecondoptionistoaddaSRVentrytoyourDNSconfigurationwherethe_servicevalue wouldbeautodiscoverandthe_protocolwouldbe_tcp. Forexample: _autodiscover._tcp.example.com. IN SRV 0 0 443 sogo.example.com. Again,theautodiscoveryservicemustbeaccessibleoverHTTPS. Configuration 17

Chapter7 AddingUsers UsersthatwishtoconnectnativelytoSOGomustbeprovisionedinSamba4andinOpenChange eveniftheyalreadyexistinyourcurrentldapormicrosoftactivedirectoryserver. Toaddauser,executethefollowingcommands: add user to samba samba-tool domain passwordsettings set --complexity=off samba-tool domain passwordsettings set --min-pwd-length=1 samba-tool user add <username> samba-tool user setexpiry <username> --noexpiry create user in openchange openchange_newuser --create <username> Ifyoudon thaveatrustbetweenyourimapserverandsogo,youmustatthispointsetthecleartextpasswordofthenewlycreateduserin/var/lib/samba/private/mapistore/<username/password. Thisper-userfilecontainsthecleartextpasswordoftheuserasaUTF-8string,onasingleline.This passwordwillbeusedtoauthenticatesogo/openchangestorageprovidertoyourimapserver. AddingUsers 18

Chapter8 MicrosoftOutlookConfiguration To connect Microsoft Outlook, you can either use the IP address of the server or its DNS name. If you prefer using the DNS name, add an entry like the following to the c:\windows\system32\drivers\etc\hostsfileinordertoassociatetheipaddresswiththerightdns names: 192.168.1.1 sogo.example.com autodiscover.example.com Next,youmustconfigureMicrosoftOutlook. OpentheControlPanel Mail EmailAccounts. SelectAddanewe-mailaccount ChooseMicrosoftExchangeServer Filltherequiredinformation.EntertheDNSnameortheIPaddressofyourSOGoserverinthe MicrosoftExchangeServerfield LeavetheUseCachedExchangeModecheckboxenabled EnteryourusernameintheUserNamefield ClickonMoreSettingsandignorethewarning,ifany,aboutExchangebeingofflinebyclicking oncancel FromtheSecuritytab,enableAlwayspromptforusernameandpassword FromtheConnectiontab,enable"OutlookAnywhere"ifyouplantouseOutlookoutsideofyour LAN.Moreover,clickontheExchangeProxySettings buttontoenableitforslowandfastnetworks.specifyalsothehost,whichshouldbethesamevalueyouspecifiedinthemicrosoftexchangeserverfield. Finally,clickonCheckNameandconfirmyourusernameandpassword StartMicrosoftOutlookandenteryourusernameandpassword.Itwillstarttosynchronizeyour mailbox.thiscouldtakealongtimeifyouhavemanyemails,events,tasksandcontacts.oncethis stepiscompleted,checktheautodiscoveryservicewithoutlook2007or2010bysimultaneously holdingthectrlkeyonyourkeyboardandright-clickingontheoutlookiconinthenotification toolbar.aspecialentrynamed"teste-mailautoconfiguration "willappearandwillenableyou tochecktheservice. MicrosoftOutlookConfiguration 19

Chapter9 KnownIssuesorLimitations MakesureyouperiodicallybackupallyourdataregardingSOGo. MakesureyouhavenofirewallsactivatedbetweenyourMicrosoftOutlookclientsandtheSOGo serverwithnativeoutlookcompatibilitymodule.ifyoudo,use"outlookanywhere"toconnect OutlooktoSOGo/OpenChange. CurrentLimitations ThecurrentversionoftheNativeMicrosoftOutlookcompatibilitylayerhassomelimitations. Thoselimitationswillbeovercomeintheupcomingreleases.Ifyouareinterestedinhavingthose limitationsfixedmorerapidly,pleasecontactinversebysendinganemailtosupport@inverse.ca. General If you can t see any email s content with Microsoft Outlook 2007, install the latest Service Pack available from Microsoft s website for this specific version. Microsoft Outlook 2007 (12.0.6423.100)SP2MSO(12.0.6425.1000)isknowntowork. WhenyoucreateanewMicrosoftOutlookprofile,notallfoldersmightbesynchronizedduring thefirststart.simplyselecttheappropriatefolderandclick"sendandreceive".synchronizinga foldermaytakesometime.forexample,afolderwith1000emailmessagesmighttakearound 5minutesbasedontheunderlyinghardware. Errorswhensynchronizingthe"OfflineAddressBook"arenormalandcanbeignoredfornow. Thisfeatureiscurrentlynotsupported. IfyoufacestrangeissuesfromMicrosoftOutlook,youmightwanttoremoveanydataassociated withtheuserfromthesogoserverandrecreateamicrosoftoutlookprofile.toremoveany dataassociatedtoauser,usetheopenchange_user_cleanupscriptdistributedwithsogo.the scriptcanbefoundin/usr/share/doc/sogo/(/usr/share/sogo-version/onrhel).toreseta user,runthescriptasroot:python openchange_user_cleanup username.seetheusageoutput foradditionaloptions. The"OutofOfficeAssistant"willnotcurrentlywork.Thisfeaturehasnotbeenimplemented. CreatingfoldersbelowINBOX(whennotnormallypermittedbytheIMAPserver),belowthePersonalCalendarorPersonalAddressBookwillworkinOutlookcachedmodebuttheserver-side operationwillfailandthesefolderswillneverbecreated.potentiallydatalosscanoccurifthe Outlookprofileisdestroyed.Ifyouwantocreateadditionaltop-levelmailfolders,calendarsor KnownIssuesorLimitations 20

Chapter9 addressbooks,openoutlook sfolderlist,selectthetoplevelnode(usually,"email@example.com") andchoose"newfolder "fromthecontextualmenu.choosetherelevantitemtypes. Mail Sharingmailfoldersisnotsupported. ToavoidpossiblylossyconversionfromRTFtoHTML,Outlookshouldbeconfiguredtosendall mailsashtml(orplaintext)insteadofoutlookrichtextformat. Calendar Labelswillnotwork. Itmightbeimpossibletovieweventdetailsfromasharedcalendar.Thisissueisbeingworkedon. Tasks Taskswithstart/duedatescreatedfromOutlookmightnotappearcorrectlyinSOGoduetoa timezoneissue. Remindersarenotyetsupported. Assigningtaskswillnotwork. Contacts Categorieswillnotwork. Distributionlistswillnotwork. UnderMicrosoftOutlook2010,thespecialfolder"SuggestedContacts"willnotwork. The"OfflineAddressBook"willnotwork.Thisfeatureisnotyetsupported. Notes NotesarenotsynchronizedinanywayswithSOGo.ThecurrentversionofSOGolackssupport fornotes. Ifyounoticeanythingelse,pleasesendcontactInversebysendinganemailtosupport@inverse.ca. KnownIssuesorLimitations 21

Chapter10 AdditionalInformation Formoreinformation,pleaseconsulttheonlineFAQs(FrequentlyAskedQuestions): http://www.sogo.nu/english/support/faq.html Youcanalsoreadthemailingarchivesorpostyourquestionstoit.Fordetails,see: https://lists.inverse.ca/sogo AdditionalInformation 22

Chapter11 CommercialSupportandContact Information Foranyquestionsorcomments,donothesitatetocontactusbywritinganemailto: support@inverse.ca Inverse(http://inverse.ca)offersprofessionalservicesaroundSOGotohelporganizationsdeploy thesolutionandmigratefromtheirlegacysystems. CommercialSupport andcontactinformation 23