Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Active Directory naming convention: what's best for KMS?
  •  
winkelman

Messages: 2119
Karma: 3
Send a private message to this user
I'm about to switch from Novell NDS to Microsoft Active Directory. Once that is up and running I want to migrate my ~120 KMS users from the internal database to AD.

To avoid unwanted difficulties I know it's best to let the user name be the same as the email address name. No problemo there.

Does the same go for the AD domain name itself?
Our email domain is okura.nl. Should I name the AD domain also okura.nl? Or can I name the AD domain okura.local and specify somewhere that the email domain is okura.nl?

I'd like to have this be automatic and not something I have to set/change for every new user.

Any wise words? Thanks!
  •  
anthony.somerset

Messages: 144

Karma: 0
Send a private message to this user
if you are able to i would always reccomend using the real domain rather than .local whenever possible as this will give you the least problems, just remember to get your internal DNS sorted for the mail server as well as external, and also for your website if you host one

Mac Xserve Intel - 2x 2.7GHz Dual Core Xeon
Leopard 10.5.8
4GB Ram
1.25 TB HDD Raid 5
Kerio 6.7.1
~60 Users (varying windows and mac Exchange or IMAP)
18 iPhones
  •  
RHarmsen.nl

Messages: 189

Karma: 0
Send a private message to this user
You can map the .local to .nl in the mailserver.

At the settings for the domain in the Mailserver, you can set on the Directory Service tab, that the AD name is different.

When adding users, they will get the domain set in the mailserver as e-mail address.

Next to this, if I remember correctly for AD it is best to use a .local address, to not have conflicts with DNS services which are outside of your office.

[Updated on: Tue, 07 October 2008 15:03]

  •  
winkelman

Messages: 2119
Karma: 3
Send a private message to this user

anthony.somerset wrote on Tue, 07 October 2008 12:28

if you are able to i would always reccomend using the real domain rather than .local whenever possible

RHarmsen.nl wrote on Tue, 07 October 2008 15:02

if I remember correctly for AD it is best to use a .local address


Funny Smile
And it's mostly like this wherever you look. Some say "use the 'real' domain cause it's easier" and others say "don't use the real domain cause it may open up security issues with the outside world". I think my consultants doing the implementation would tend to agree slightly more with the latter... We'll see how it ends up.

Anyways: as you point out with regard to KMS it doesn't matter and it works both ways. Good!

Thanks for your valued feedback!
Previous Topic: Kerio WEBMAIL - Archiving users Archive folders
Next Topic: out-office with a Domain Mailboxratorp
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sat Nov 18 17:06:14 CET 2017

Total time taken to generate the page: 0.00444 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.