Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: jo53ph on March 21, 2002, 08:48:55 PM

Title: Chpasswd program
Post by: jo53ph on March 21, 2002, 08:48:55 PM

http://chpasswd.sourceforge.net/
Has anyone installed this program or a program similiar to this where it enables users to change their password over the web?  Most of my users are not on the local network therefore I want to provide them a way to change there password without giving them vpn access as well.  The problem with this is that they require make, which i don't have.

any thoughts?

Title: Re: Chpasswd program
Post by: ryan on March 23, 2002, 12:37:50 AM

Joe, I am interested to know how you block your SME users from VPN access?  All users on a SME server have VPN access if you have enabled PPTP.  Please post how you control this.

Thanks,

RS

Title: Re: Chpasswd program
Post by: Terry Brummell on March 23, 2002, 02:06:07 AM

From the FAQ section:

Can I define which users have PPTP access?
Yes. By default, all users (whose accounts are activated) can establish PPTP access to the server, if the number of allowed PPTP connections allows it. See section 4.1 of the e-smith user manual for a description of the Point-to-Point Tunnelling Protocol (PPTP).

In order to disallow PPTP access for a specific user, say "pauln", perform the following commands as root:

Turn PPTP Access off for pauln:
/sbin/e-smith/db accounts setprop pauln PPTPAccess off

Update remote access:
/sbin/e-smith/signal-event remoteaccess-update

The user pauln is no longer able to establish a PPTP connection to the e-smith server.

It's amazing what this website has to offer when you poke around and read everything.  :)

Terry

ryan wrote:
>
> Joe, I am interested to know how you block your SME users
> from VPN access?  All users on a SME server have VPN access
> if you have enabled PPTP.  Please post how you control this.
>
> Thanks,
>
> RS

Title: Re: Chpasswd program
Post by: trevorb on March 23, 2002, 02:56:21 AM

There is a HowTo and associated rpm's at Darrell May's site to enable a Web page to:
- manage their email forwarding
- be able to set up and use an auto-response vacation message
- manage their server-based IMAP e-mail store more effectively using procmail
- be able to change their user password
- perform designated 'admin' server-manager functions
 
I believe that it is OK for 5.1.2 (says 4.x & 5.x in the README).

http://myezserver.com/downloads/mitel/contrib/user-manager/

Trevor B

jo53ph wrote:
>
> http://chpasswd.sourceforge.net/
> Has anyone installed this program or a program similiar to
> this where it enables users to change their password over the
> web?  Most of my users are not on the local network therefore
> I want to provide them a way to change there password without
> giving them vpn access as well.  The problem with this is
> that they require make, which i don't have.
>
> any thoughts?

Title: Re: Chpasswd program
Post by: Jeff C on March 23, 2002, 06:06:39 PM

The problem with this suggested solution is the user-manager panel will not allow access from outside the local net.   If I remember correctly the original requirement was access without either vpn or defining additional local networks.

User-manager works great, but not for this application.  Any other ideas out there?  This is a common requirement.

-jeff

Title: Re: Chpasswd program
Post by: Jon Blakely on March 24, 2002, 02:43:11 PM

User-manager works very well outside the local network. I use it all the time.
The other option is to enable SSL as per

http://www.e-smith.org/docs/howto/remote-mgr-access-howto.html

and then you can use user-password

https://your_domain/user-password

Jon

Title: Re: Chpasswd program
Post by: simpleone on March 25, 2002, 08:46:26 AM

Download the rpm, if you cant find it send me an email and i will email it back to you. I have installed it and it works fine

Title: external access to user-manager
Post by: alain on April 13, 2002, 05:53:51 AM

Hello,

I followed instruction given at :
http://www.e-smith.org/docs/howto/remote-mgr-access-howto.html
It works perfectly for server-manager but does not give external access to user-manager which remains reachable only from inside.

Any idea ?

thks

Alain

Title: Re: external access to user-manager
Post by: Jason Judge on May 10, 2002, 01:37:19 AM

Did you get this sorted? I still can't get user-manager access from outside the network either. I need my webmail users to be able to manage their e-mail and passwords.

-- Jason

Title: Re: external access to user-manager
Post by: ryan on May 10, 2002, 02:54:18 AM

Jason,

Do your webmail users use PPTP vpn client?  That will put them on the local lan which will allow them to do anything they can do when physically connected to lan.

good luck

Ryan

Title: Re: external access to user-manager
Post by: Jim on May 23, 2002, 01:08:10 AM

I am having this problem as well. I need to have access to user-manager from the outside. The option of vpn isn't a possibility becuase some email users aren't allowed access to the internal network. I get a you are not autorized to view this page when trying to acess it. Im sure its a simple configuration/setting that will enable access from public. Its not a firewall issue becuase I have rechecked its configuration and really 443 is only port really which I have going to the server for secure email.

I will continue to go threw all config files and try and stumble accross a setting but any help would be greatly appreciated.

Thanks

Jim