|
Contents
|
| | | |
|
|
Preface
|
1.
|
|
|
Defining SIMS Operational Processes and Procedures
|
|
From Installation to Going On-line
|
|
Initial Configuration
|
|
Full Configuration
|
|
Preparing for Deployment
|
|
Going Live
|
|
Ongoing SIMS Administration
|
|
SIMS Quick Task and Reference List
|
2.
|
|
|
Admin Console Tips and Information
|
|
 |
To Start the SIMS Admin Console
|
|
Admin Console Topics and Tasks
|
|
Admin Console Buttons
|
|
SIMS Component Status
|
|
Creating and Removing SIMS Administrators
|
|
|
Creating SIMS Administrators
|
|
|
Changing the SIMS Administrator Password
|
|
|
Viewing SIMS Administrators
|
|
|
Removing SIMS Administrator Privileges
|
|
Stopping SIMS, Logging Out, and Version Information
|
|
|
To Stop SIMS Components
|
|
|
To Start SIMS Components
|
|
|
To Log Out of the Administration Console
|
|
|
To Access SIMS Version Information
|
3.
|
|
|
User Management Topics and Tasks
|
|
User/Group Management Commands and Attributes
|
|
Admin Console User Management
|
|
|
To Create a User Entry
|
|
|
To Create a Group Entry
|
|
|
View a Domain
|
|
|
To Find and View User/Group Entries
|
|
|
To Delete a User or Group Entry from the Directory
|
|
|
To Modify a User Entry
|
|
|
To Modify a Group Entry
|
4.
|
|
|
Mail Client Login to Hosted Domains
|
|
|
Changing the Default Separator
|
|
|
Allowing Users in Subdomains to Log In Using the Domain Name
|
|
Creating, Viewing, Deleting, and Modifying a Hosted Domain
|
|
|
To Create an Hosted Domain
|
|
|
To Create Hosted Domain Alias
|
|
|
To Delete a Hosted Domain
|
|
|
Modifying a Hosted Domain
|
|
|
To Set Up the System So that Users Can Log in Without Entering their Domain Name
|
|
Creating, Viewing and Removing Delegated Administrators and Postmasters
|
|
|
Creating Delegated Administrators
|
|
|
Viewing Delegated Administrators
|
|
|
Removing Delegated Administrator Privileges
|
|
|
Creating Domain Postmaster Mailboxes
|
|
User Administration
|
|
Delegated Management Console Customization
|
|
Structural Tables to Organize the User Interface
|
|
Background Image
|
|
Customization Tips
|
|
Navigation Buttons
|
|
Customization Tips
|
|
Product Name and Logos
|
|
Customization Tip
|
|
Graphics Available For Customization
|
|
General Design Tips
|
5.
|
|
|
IMTA Topics and Tasks
|
|
IMTA Maintenance Tasks
|
|
Stopping, Starting, and Restarting a Channel or the IMTA
|
|
|
To Stop And Start the IMTA
|
|
|
To Restart the IMTA
|
|
Backing Up and Restoring the IMTA Configuration
|
|
|
To BackUp and Restore the IMTA Configuration
|
|
Monitoring Channel Status
|
|
|
To Monitor Channel Status
|
|
Alternative Delivery Programs
|
|
|
To Make Delivery Programs Available to Users
|
|
Alias Synchronization Schedule
|
|
Cache Synchronization Schedule Planning
|
|
|
To Reconfigure the Alias Synchronization Schedule
|
|
|
To Disable Full and Incremental Synchronization
|
|
IMTA Location Relative to Public Internet
|
|
|
To Configure IMTA Position Relative to the Internet
|
|
Routability Scope
|
|
|
To Configure Routability Scope
|
|
Channels
|
|
Configuring Channels
|
|
|
To Create a Channel
|
|
|
To Delete a Channel
|
|
|
To Access a Channel's Property Book
|
|
|
To Configure a Channel Description
|
|
|
To Configure a Router Host
|
|
|
To Configure Character Set Labels
|
|
Message Limitation
|
|
|
To Configure Message Limitation
|
|
Delivery Status Notification
|
|
|
To Configure Delivery Status Notification
|
|
Notary Message Locale
|
|
|
To Change the Notary Message Locale
|
|
|
To Configure Report Failures to the Postmaster
|
|
Diagnostics Output
|
|
|
To Configure Diagnostics Output
|
|
|
To Set Recipient Limitation
|
|
Message Logging
|
|
|
To Configure Message Logging
|
|
Reassembling MIME Messages
|
|
|
To Enable Reassembly of Message Fragments
|
|
Rewrite Rules
|
|
|
To Add, Delete, or Modify a Rewrite Rule
|
|
Monitoring Channel Queues
|
|
|
To Monitor the IMTA Channel Queues on Admin Console
|
|
|
To Monitor the IMTA Channel Queues Using xsta
|
|
Viewing Enqueued Messages
|
|
|
To View Messages Stored In the IMTA Channel Queues
|
|
DNS-based Canonicalization
|
|
DNS-based Canonicalization Algorithm
|
|
Literal to Domain Canonicalization
|
|
Setting Up DNS-based Canonicalization
|
6.
|
|
|
SMTP Access and Relay Restrictions
|
|
SMTP Access Restrictions by IP Address and Port Number
|
|
SMTP Access Restrictions by Source and Destination Email Address
|
|
SMTP Access Restrictions by IP Address, Port, and Email Address
|
|
Limiting the Number of Recipients Per Message or the Number of Messages Per Session
|
|
DNS-based Email Access Control
|
|
Setting up dns_verify
|
|
dns_verify Arguments
|
|
Using dns_verify to Lookup Realtime Spam Sites
|
|
Limitations
|
|
Known Limitations
|
|
|
Access and Relay Restrictions with the Admin Console
|
|
Conflicting Access Restriction Rules
|
|
Optimizing Access and Relay Restrictions
|
|
Rules Optimization
|
|
|
To Optimize Access and Relay Restrictions Performance
|
|
SMTP AUTH Configuration
|
|
SMTP AUTH Example 1
|
|
SMTP AUTH Example 2
|
|
Important Warning:
|
|
Controlling SMTP Connections and Transactions
|
|
Identifying the Source of Incoming SMTP Messages
|
|
Logging Messages Passing Through IMTA
|
|
Extra Logging Detail
|
|
Snapshot of Message Traffic Through IMTA
|
|
Controlling Delivery by Email Content and Message Priority
|
|
Imposing Message Size Limits
|
|
Message Priority Limits
|
|
Imposing Message Sensitivity Limits
|
|
Checking or Filtering Message Content
|
|
Firewall Configuration
|
|
Separating External and Internal Message Traffic
|
|
Restricting or Controlling Published Information
|
|
Restricting SMTP Probe Commands
|
|
Removing Internal Names in Received Headers
|
|
Controlling External Stimulation of Message Delivery
|
7.
|
|
|
Sun Message Store Topics and Tasks
|
|
Enabling APOP
|
|
Enabling POP Before SMTP
|
|
Message Store Support for Failover LDAP Hosts
|
|
Message Store Configuration Backup and Restore
|
|
|
To Back Up and Restore the Sun Message Store Configuration
|
|
Monitoring the Sun Message Store
|
|
|
To Monitor Mail Store Space Usage and Settings
|
|
|
To View Sun Message Store Paths
|
|
Message Store Quotas
|
|
Mail Store Usage Calculation
|
|
|
To Activate Message Store Quota Enforcement on an Installed System
|
|
|
To Set a User's Mail Store Quota
|
|
|
To Monitor User Quotas
|
|
|
To Warn Users When Their Mail Store Usage Is Approaching Their Mail Store Quota
|
|
|
Setting Soft Quotas
|
|
Configuring Advanced Options
|
|
User Quota Enforcement
|
|
Mail Server Client Type
|
|
Maximum Connections Permitted
|
|
Warning Threshold for Space Remaining
|
|
/var/mail Support
|
|
Sun Message Store Increase
|
|
|
To Configure Advanced Options
|
|
Message Purge
|
|
Configuring Purge Options
|
|
Customized Purge
|
|
|
To Configure Purge Options
|
|
|
To Configure the Purge Schedule
|
|
Message Access Protocol Connections
|
8.
|
|
|
Sun Directory Services Topics and Tasks
|
|
Specifying Current and Backup LDAP Servers for SIMS
|
|
Starting and Stopping the Sun Directory Services
|
|
Viewing Sun Directory Services Configuration for SIMS
|
|
General Properties Configuration
|
|
Data Store Configuration Settings
|
9.
|
|
|
Populating the Directory from NIS, NIS+, or /etc Files Entries
|
|
Setting the Environment for Directory Population
|
|
|
Saving and Restoring Existing Data in the Directory
|
|
Using ldif2ldbm and ldbmcat to Initially Populate Local Directories
|
|
Populating the Directory Via the LDAP Server
|
|
Starting and Stopping SIMS Components
|
|
Gathering Data Used to Populate the Directory
|
|
|
Gathering Directory Data on Systems Using /etc Files
|
|
|
Gathering Directory Data on Systems Using NIS
|
|
|
Gathering Directory Data on Systems Using NIS+
|
|
Formatting Data Used to Populate the Directory
|
|
|
passwd File Format Rules for imldifsync(1M)
|
|
|
aliases File Format for imldifsync
|
|
Converting the Data to LDIF Format
|
|
|
Converting the Data to LDIF Format Using imldifsync(1M), and
|
|
LDAP Data Interchange Format
|
|
LDIF Examples
|
10.
|
|
|
SSL Overview
|
|
Authentication by Certificate
|
|
Secure Public-Key Management Infrastructure (SKI) Overview
|
|
The skiserv Daemon
|
|
The keypkg Command
|
|
The skilogin -h Command
|
|
The skilogout -h Command
|
|
The skicert Command
|
|
The certreq -h Command
|
|
The skistore Command
|
|
SSL Installation
|
|
|
Choose an Appropriate Certificate Authority (CA)
|
|
|
Create the UNIX Account for the Internal Root CA
|
|
|
Create the Internal Root CA Credentials
|
|
|
Create the Server Key Package and Register it with SKI Key Server
|
|
Using SSL in a Multiple IP Address Environment
|
|
|
Create the Certificate Signing Request
|
|
|
Submit the Certificate Signing Request to the Chosen CA
|
|
|
Install the Server Certificate Produced by the CA
|
|
|
Install the Root CA Certificate Provided by the CA
|
|
Enable SSL Operation
|
|
SSL Examples
|
|
Example of Creation of Self-signed Server Certificate
|
|
Example of Creation of Externally Signed Server Certificate:
|
|
SSL Troubleshooting
|
|
How to Uninstall Server Credentials
|
|
How to Uninstall a Root CA Certificate on a Server Machine
|
|
How to Quit SSL Installation and Start Over
|
11.
|
|
|
IMTA Maintenance
|
|
Adjusting Post Job Frequency
|
|
Adjusting the Frequency of the Return Old Messages Program
|
|
Sun Message Store Maintenance
|
|
Recommended Maintenance Schedule
|
|
Message Purge
|
|
Message Store Backup and Restore
|
|
Message Store Backup and Restore--Theory of Operation
|
|
|
Full Message Store Backups Using Solstice Backup
|
|
|
Full Message Store Backups Using imbackup
|
|
|
Incremental Message Store Backup Using Solstice Backup
|
|
|
Restoring the Message Store
|
|
Message Store Data Check
|
|
Importing /var/mail Users
|
|
Deleting Old Messages
|
|
|
To Disable Automatic Quota Synchronization
|
|
Deleting the User
|
|
Periodic Maintenance for the Sun Directory Services
|
|
Maintaining the Data Store Attribute Indexes
|
|
Backing Up the Directory Data Base
|
|
Backing Up and Restoring Directory Service Configuration
|
12.
|
|
|
Logging Facilities
|
|
Message Store/Message Access Log Files
|
|
Sun Directory Service Log Files
|
|
IMTA Log Files
|
|
Logging and Tracking Messages in the IMTA
|
|
Identifying the Source of Incoming SMTP Messages
|
|
Logging Messages Passing Through the IMTA
|
|
Extra Logging Detail
|
|
Snapshots of Message Traffic through the IMTA
|
|
Purpose and Use of Counters
|
|
Example of counters interpretation
|
|
SIMS Monitoring Utilities
|
|
SIMS Monitoring Plan
|
|
SIMS Monitoring Examples
|
|
Scenario 1: SIMS and LDAP Server Configured on a Single Machine
|
|
Scenario 2: The SIMS and LDAP Server on Different Machines
|
|
SNMP Monitoring
|
13.
|
|
|
Troubleshooting the Admin Console
|
|
Netscape Applet Loading Problem
|
|
Admin Server Crash Recovery
|
|
Preventing the "Warning Applet" Banner
|
|
Forgetting the Admin Password
|
|
Troubleshooting the Administration Server
|
|
Java Exceptions When Administration Server Starts
|
|
java.lang.OutOfMemoryError While Administration Services Starts
|
|
Admin Console Displays "Failed to locate SIMS Administration Server"
|
|
Troubleshooting the Message Store
|
|
User Not Able to Access INBOX
|
|
Verifying Password and Login
|
|
Problems Turning Message Store Quota Enforcement Off and On
|
|
Message Purge Failure
|
|
User Can't Perform Internationalized String Search on Mail Messages
|
|
Troubleshooting the IMTA
|
|
Standard IMTA Troubleshooting Procedures
|
|
Check the IMTA Configuration
|
|
Check Message Queue Directories
|
|
Check the Ownership of Critical Files
|
|
Checking that the Job Controller and Dispatcher are Present
|
|
Check Processing Log Files
|
|
Running a Channel Program Manually
|
|
|
To Start and Stop Individual Channels
|
|
Changes to Configuration Files or IMTA Databases Do Not Take Effect
|
|
IMTA Sends Outgoing Mail But Does Not Receive Incoming Mail
|
|
Time Outs on Incoming SMTP Connections
|
|
Message Queue Growing Because a Recipient Address is Slow Accepting Email
|
|
SMTP Connection Aborted
|
|
Sent Message Can't Find Server Name
|
|
Message Queue Problems
|
|
Unjamming a Message Queue
|
|
Message Not Being Dequeued
|
|
IMTA Messages are Not Delivered
|
|
.HELD Messages
|
|
Messages are Looping
|
|
Received Message is Encoded
|
|
From: Address Missing in Notifications from the IMTA
|
|
Address Unknown to IMTA
|
|
Multiple Reprocess Jobs Generated
|
|
Addresses Not Reversed
|
|
SMTP Access Restrictions Not Working As Expected
|
|
Troubleshooting the Directory Service
|
|
Diagnosing SIMS Problems Caused by Improper Directory Entries
|
|
General Hints
|
|
Users Can't Log In to Their IMAP Mail Server
|
|
Mail Inbound to the SIMS MTA Bounces
|
|
Mail Delivered Does Not Arrive
|
|
Mail Forwarded between SIMS and Other Servers Isn't Received
|
|
Re-generating the Sun Directory Service Directory Index
|
|
Crash Recovery
|
|
|
SIMS Crash Recovery
|
|
|
Message Store Crash Recovery
|
|
|
Admin Console Crash Recovery
|
A.
|
|
|
Proxy Message Access Servers Overview
|
|
Proxy Server Models
|
|
Proxy Servers for Horizontal Scalability
|
|
Proxy Servers for the Internet Mail Access
|
|
Proxy Servers for Migrating Users
|
|
How to Deploy a SIMS Message Access Proxy
|
|
Setting Up a Pure Proxy
|
|
|
To Configure a Pure Proxy
|
|
|
To Configure IMAP Capabilities in the Proxy
|
|
Setting Up a Proxy+Mail Server
|
|
|
To Migrate Users by Converting a Mail Server to a Proxy+Mail
|
B.
|
|
|
|
Example 1: Converting/var/mail to the Sun Message Store--Simplest
|
|
|
Example 2: Converting/var/mail to the SIMS Message Store Using an SMTP Choke Router or .forward
|
|
|
Example 3: Converting /var/mail to SIMS Using a Proxy
|
C.
|
|
|
Populating the Directory with User Data--Sample Session
|
|
Populating the Directory with User Aliases Data and Distribution Lists --Sample Session
|
|
Migrating /var/mail Mailboxes
|
D.
|
|
|
User Management Error Messages
|
|
Log Manager Error Messages
|
|
IMTA Error Messages
|
|
IMTA Channel Property Book Error Messages
|
|
IMTA Start-up Failure Error Messages
|
|
Errors in mm_init
|
|
Log File Error Messages
|
|
Queue Monitor Error Messages
|
|
Message Access Protocols Error Messages
|
|
Message Store Error Messages
|
| | | |
|
|
Glossary
|