Topic: Webmail Restrictions

[stdean]

I figure this is a shot in the dark, but perhaps someone on here might have done this before, or may have an idea on how to implement this.

I am currently running SME 7.4 as our companies mail server. Users use mail clients to download their mail in the office over IMAPS while we also use Kronolith/Webmail for shared calendars etc.

We have 3 office locations with the physical server being hosted in a separate data centre.

What I have been asked to do is restrict access to Webmail to certain users when they are outside of the office.

One solution I can think of is to use apache to restrict access to certain IP addresses, but this does not really work so well when 'approved' users attempt to connect.

I cannot think of any other approach to this other than just turning off webmail altogether, which is not really an option.

Any ideas? I could potentially go with the apache approach but have no idea on how to configure a .htaccess for horde (I am familiar with apache, but always get wary when it comes to directly editing config files on SME).

Any thoughts are much appreciated.

Conor

[Stefano]

please define "What I have been asked to do is restrict access to Webmail to certain users when they are outside of the office".. think I'm a 5 years old baby

thank you

Ciao
Stefano

[stdean]

please define "What I have been asked to do is restrict access to Webmail to certain users when they are outside of the office".. think I'm a 5 years old baby

All users should be able to access Webmail (horde) when they are in our offices.

UserX, UserY and UserZ should not be able to access Webmail when they are at home/outside the office.

All other users should be able to access Webmail when they are at home/outside the office.

[cactus]

All users should be able to access Webmail (horde) when they are in our offices.

UserX, UserY and UserZ should not be able to access Webmail when they are at home/outside the office.

All other users should be able to access Webmail when they are at home/outside the office.

You best bet is to disable external webmail access and allow it internally and allow the users that are allowed to access webmail from the outside to connect using VPN. This ties in their outside machine into the local network of your server when enabled so they can access the server as they normally do, including webmail (even IMAPS if required, so it might be you could disable webmail completely)