I have configured account autoprovision against MS AD with several domain controller on Zimbra9
Code: Select all
Release 9.0.0.ZEXTRAS.20211118.UBUNTU18.64 UBUNTU18_64 FOSS edition.
Code: Select all
zimbraAutoProvAccountNameMap: someattribute
zimbraAutoProvAttrMap: distinguishedName=zimbraAuthLdapExternalDn
zimbraAutoProvAttrMap: displayName=displayName
zimbraAutoProvAttrMap: givenName=givenName
zimbraAutoProvAttrMap: cn=cn
zimbraAutoProvAttrMap: sn=sn
zimbraAutoProvAttrMap: description=description
zimbraAutoProvAuthMech: LDAP
zimbraAutoProvBatchSize: 1000
zimbraAutoProvLastPolledTimestamp: 20220803134343.953Z
zimbraAutoProvLdapAdminBindDn: ldapstring
zimbraAutoProvLdapAdminBindPassword: pass
zimbraAutoProvLdapBindDn: zimbra@domain.example
zimbraAutoProvLdapSearchBase: dc=domain,dc=example
zimbraAutoProvLdapSearchFilter: (memberOf=CN=group,DC=domain,DC=example)
zimbraAutoProvLdapURL: ldap://192.168.1.1:3268
zimbraAutoProvMode: EAGER
So my question are:
1. How do Zimbra determine wheher account new or not?
2. Is this some kind of bug or LDAP constraints?
3. Can i set multiple zimbraAutoProvLdapURL values?
Thanks in advance.