iRedMail/SOGo (TLS) Sieve Scripting

To enable the great Sieve scripting features it's better to update Dovcote to 1.2 to get use of the new mangesieve plugin (only needed for iRedMail installations before 0.7.0).

Tweak /etc/dovecote.conf

ssl = required  #allow ssl access only
disable_plaintext_auth = yes

Check if Sieve is working properly.

Enable some SOGo features:

su - sogo
defaults write sogod SOGoSieveServer "sieve://localhost:2000/?tls=YES"
defaults write sogod SOGoSieveScriptsEnabled "YES"
defaults write sogod SOGoForwardEnabled "YES"

Comment out the “Vacation messages expiration” in /etc/cron.d/sogo. Tip: The Sieve admin is “postmaster”.

# Vacation messages expiration
# Make sure to set authname and authpassword with the credentials of a sieve admin
0 0 * * *       sogo    /usr/sbin/sogo-tool expire-autoreply postmaster:SECRET

If you want to use the Sieve plugin in Thunderbird or any other external Sieve client/plugin, you also have to open the TCP port 2000 in your firewall settings.

SOGo session timeout in webinterface

This happens after an 1.3.5 update. Add the following setting:

su - sogo
defaults write sogod OCSSessionsFolderURL 'mysql://sogo:PASSWORD@localhost:3306/sogo/sogo_sessions_folder'

Disallow public Calendar

If you don't want to share your calender, add this to your SOGo config:

su - sogo
defaults write sogod SOGoCalendarDefaultRoles "None"

iPhone Calendar Setting

Make sure you have “WOUseRelativeURLs = YES;” in sogo configuration file. Make sure it's set to “sync all tasks” – any other setting will not work.

Add a calendar to Lightning

Add a calendar to iCal App

iCal will not accept certs if self signed, you tell it to accept, but it still won't connect. To correct this open safari on the machine in question and navigate to the SOGo login using https. This should provide you with the security warning. When you get the warning use the drop down to add the certificate to the “Trust” ring. iCal should work after that.

Add an addressbook to Apples Adressbook App

You have to add a new config to your apache conf.d directory

Listen *:8843
<VirtualHost *:8843>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/SOGo_CA.pem
SSLCertificateKeyFile /etc/pki/tls/private/SOGo.key

RewriteEngine Off
ProxyRequests Off
SetEnv proxy-nokeepalive 1
ProxyPreserveHost On
ProxyPassInterpolateEnv On
ProxyPass /principals interpolate
ProxyPass /SOGo interpolate
ProxyPass / interpolate
<Location />
Order allow,deny
Allow from all
RequestHeader set "x-webobjects-server-port" "8843"
RequestHeader set "x-webobjects-server-name" ""
RequestHeader set "x-webobjects-server-url" ""
RequestHeader set "x-webobjects-server-protocol" "HTTP/1.0"
RequestHeader set "x-webobjects-remote-host" ""
AddDefaultCharset UTF-8
ErrorLog /var/log/httpd/sogo_ab-error.log
CustomLog /var/log/httpd/sogo_ab-access.log combined

Make sure your port 8843 is accessible through your firewall.

Rachid, 2012/02/23 11:29

I'm clrtenruy putting together a blog for my sister who is a missionary in Japan and came across your site. Great information on here I really appreciate you taking the time to share all this great stuff!

Sue, 2014/07/04 09:59

Really nice many thanks for your howto. I've used the SOGo-Connector to exnghcae data between SOGo and Thunderbird on a windows machine.I've tried egroupware, zimbra and davical but this is the best and easiest solution.Greetings,Tobias

Philipp Schellworth, 2014/07/07 08:06

You're welcome.

Enter your comment. Wiki syntax is allowed:
   ___   __  __ __  __   ____   __  ___  __  __   ____   ____  ____    ____
  / _ | / / / / \ \/ /  / __/  /  |/  / / / / /  / __/  / __/ / __ \  / __/
 / __ |/ /_/ /   \  /  / _/   / /|_/ / / /_/ /  / _/   / _/  / /_/ / / _/  
/_/ |_|\____/    /_/  /_/    /_/  /_/  \____/  /_/    /___/  \___\_\/_/