Hide last authors
gru 6.2 1 [[**Plugin download**>>url:https://customer.formcycle.eu/index.php/apps/files/?dir=/FORMCYCLE%20-%20Plugins%20Customer/fc-plugin-ldap-mail-encryption&fileid=13400||target="_blank"]] (requires login)
awa 1.1 2
3 {{content/}}
4
gru 6.2 5 {{figure image="plugin_ldap_mail_encryption_config_en.png" width="600"}}
6 You need to enter an {{smallcaps}}Ldap{{/smallcaps}} server that contains the certificate of the recipient. You also need to specify which attributes contain the email address and the binary data of the certificate.
awa 1.1 7 {{/figure}}
8
gru 6.2 9 The [[email action>>doc:Formcycle.Designer.Workflow.Actions.EMail]] lets you send encrypted emails via the S/MIME protocol. This requires a certificate of the recipient that contains the encryption key. This plugin lets you read that certificate from an {{smallcaps}}Ldap{{/smallcaps}} server. It looks for an entry (person) in the {{smallcaps}}Ldap{{/smallcaps}} directory based on the email of the recipient. If an entry is found, the certificate is read from a freely configurable attribute of that entry. This plugin is subject to additional charge.
awa 1.1 10
gru 6.2 11 Once this plugin is installed, you need to configure an {{smallcaps}}Ldap{{/smallcaps}} server and also specify the attributes that contain the email and certificate.
awa 1.1 12
gru 6.2 13 When necessary, you can also configure multiple {{smallcaps}}Ldap{{/smallcaps}} servers. To do so, you need to add additional configuration parameters with an appropriate index, such as //connection.data.2.base.dn// or //connection.data.3.base.dn//.
awa 1.1 14
gru 6.2 15 == Configuration ==
awa 1.1 16
gru 6.2 17 The following configuration parameters are available:
awa 1.1 18
gru 6.2 19 ; connection.data.<INDEX>.host (required)
20 : The host name of the {{smallcaps}}Ldap{{/smallcaps}} server, without the port and protocol.
awa 1.1 21 : Beispiel: {{code language="none"}}directory.bayern.de{{/code}}
gru 6.2 22 ; connection.data.<INDEX>.port (required)
23 : The port of the {{smallcaps}}Ldap{{/smallcaps}} server.
awa 1.1 24 : Beispiel: {{code language="none"}}389{{/code}}
gru 6.2 25 ; connection.data.<INDEX>.base.dn (required)
26 : The base domain for the {{smallcaps}}Ldap{{/smallcaps}} search.
awa 1.1 27 : Beispiel: {{code language="none"}}ou=pki-teilnehmer,dc=pki,dc=bayern,dc=de{{/code}}
gru 6.2 28 ; connection.data.<INDEX>.attribute.email (required)
29 : The attribute of an entry in the active directory that contains the email address.
awa 1.1 30 : Beispiel: {{code language="none"}}mail{{/code}}
gru 6.2 31 ; connection.data.<INDEX>.attribute.certificate (required)
32 : The attribute of an entry in the active directory that contains the certificate. It must be an X-509 certificate.
awa 1.1 33 : Beispiel: {{code language="none"}}userCertificate{{/code}}
34 ; connection.data.<INDEX>.auth.name
gru 6.2 35 : The username for establishing a connection to the {{smallcaps}}Ldap{{/smallcaps}} server. Leave empty if no authentication is required.
awa 1.1 36 ; connection.data.<INDEX>.auth.password
gru 6.2 37 : The password for establishing a connection to the {{smallcaps}}Ldap{{/smallcaps}} server. Leave empty if no authentication is required.
38 ; connection.data.<INDEX>.referral.hop.count (required)
39 : Maximum number of referrals that are followed.
awa 1.1 40 ; connection.data.<INDEX>.use.ssl
gru 6.2 41 : Either //true// or //false//. Whether the connection to the {{smallcaps}}Ldap{{/smallcaps}} server is encrypted and uses {{smallcaps}}Ssl{{/smallcaps}} or rather {{smallcaps}}Tls{{/smallcaps}}.
awa 1.1 42
gru 6.2 43 == Changelog ==
gru 6.1 44
gru 4.1 45 === 1.0.0 ===
awa 1.1 46
gru 6.2 47 * Initial release.