Hi Djigzo community,
I was wondering if there is a faster way to create Users in my Ciphermail.
Is there a Interface to include many users from an database or to use a
active directory like LDAP. Or is someone knowing what database Ciphermail
is using and how I can access it from the Server on which Ciphermail is
running? Where do I find my created users and where can I find the keys and
certificates.
Thx in advantage
Hi,
I was wondering if there is a faster way to create Users in my Ciphermail.
Is there a Interface to include many users from an database or to use a
active directory like LDAP. Or is someone knowing what database Ciphermail
is using and how I can access it from the Server on which Ciphermail is
running? Where do I find my created users and where can I find the keys and
certificates.
May I ask why you want to create users? In most cases you do not have to
add users. Users will be added when needed (the exception is when you
want to use PDF encryption with static passwords).
The best option to interface with the back-end is via SOAP.
There is a command line tool which connects to the back-end via the SOAP
interface.
The CLI tool can be executed as follows:
cd /usr/share/djigzo
java -cp djigzo.jar mitm.application.djigzo.tools.CLITool
This will show the available commands:
usage: mitm.application.djigzo.tools.CLITool [--add-domain <DOMAIN>]
[--add-user <EMAIL>] [--delete-domain <DOMAIN>] [--delete-user
<EMAIL>]
[--domain <DOMAIN>] [--email <EMAIL>] [--encode-password <PASSWORD>]
[--encrypt] [--get-property <PROPERTY NAME>] [--global] [--help]
[--host
<HOSTNAME | IP>] [--import-xml <XML FILE>] [--logging] [--port
<PORT>]
[--salt <SALT>] [--set-property <PROPERTY NAME>] [--soap-password
<SOAP
>] [--soap-user <SOAP USER>] [--value <VALUE>]
--add-domain <DOMAIN> Add a domain
--add-user <EMAIL> Add a user
--delete-domain <DOMAIN> Delete a domain
--delete-user <EMAIL> Delete a user
--domain <DOMAIN> The domain
--email <EMAIL> The email address of the user
--encode-password <PASSWORD> Encodes a portal password
--encrypt If set, the property is an encrypted
property
--get-property <PROPERTY NAME> Returns a property value
--global Set/Get the global options
--help Show help
--host <HOSTNAME | IP> The host to connect to (127.0.0.1)
--import-xml <XML FILE> Import users and domains from XML
--logging If set, debug logging will be
enabled
--port <PORT> The port to use (9000)
--salt <SALT> Optional salt used for encoding a
portal password
--set-property <PROPERTY NAME> Sets a property
--soap-password <SOAP PASSWORD> the user password for SOAP interface
--soap-user <SOAP USER> the user for SOAP interface
--value <VALUE> The value to set
To set a property you can use --set-property. Some properties are
encrypted. For example the password, portal password, client secret and
server secret are encrypted. You therefore need to add the --encrypt
property when you set/get any of these encrypted properties
for example to set the password property (for PDF encryption) of user
test at example.com use the following command:
java -cp djigzo_2.4.0-2.jar mitm.application.djigzo.tools.CLITool
--set-property user.password --email test at example.com --value test
--encrypt
You can import users and domains (and any property) in bulk from an XML
file using the --import-xml command.
An example XML import file can be downloaded from
http://www.djigzo.com/downloads/djigzo-import.xml
WARNING: you can screw up the gateway (not beyond repair though) when
using the CLI tool.
the CLI tool does not validate any user input. You can set property
values to any value even if that value doesn't make sense. For example
the only legal values for the locality property are "internal" or
"external". You can however set it to any value, even to values which
are not valid. If you set an encrypted property value but forget to
provide the --encrypt parameter, the next time the property is read by
the system, decrypting the value will fail (which will result in
undefined behaviour).
Kind regards,
Martijn Brinkers
ยทยทยท
On 01/23/2015 06:28 PM, 289 wrote:
--
CipherMail email encryption
Open source email encryption gateway with support for S/MIME, OpenPGP
and PDF messaging.
Twitter: http://twitter.com/CipherMail