The Contact Book Service

The Contact Book Service
This function, which is a component of the Mobile module, offers an LDAP Address Book to which Outlook clients may connect in order to access the GAL of the system, the user’s personal address books, and other address books specified by the Administrator.
As the point of connection for the Outlook clients, this service serves as the foundation of the LDAP Address Book functionality.
All mailbox services’ exposed port 8636 is used by the service, which employs the SSL encryption protocol.

In order to increase system security, this endpoint is read-only.

Using LDAP to access the address book
Only Outlook clients may access the LDAP Address Book using the same login information used for the Exchange ActiveSync connection (email address and either their password or a specific Mobile Password).
Customers can use the service by dialling the mailbox server that hosts their mailbox’s port 8636.
Another alternative would be to create unique firewall rules, as described in the technique below, to route port 8636 from the proxy to the AppServer.


Since it is not possible to route requests through the NGINX web server installed on Carbonio, the connection must be established to the exact server and not the system’s general FQDN.

This procedure necessitates editing a few system files and assuming the mailbox server is situated at the local IP
  1. Switch on IPv4 IP forwarding
  2. Add the following firewall rules to your proxy’s iptables script:
-t nat -A PREROUTING -p tcp --dport 8636 -j DNAT --to-destination
-A FORWARD -p tcp --dport 8636 -m state --state -NEW,ESTABLISHED,RELATED -j ACCEPT


The second rule is only needed if your default is rejected.

Address and Contact Books
The LDAP Address book gives users access to the following things by default:
  • contacts and address books that belong to the user.
  • The GAL of the user.
The LDAP Address Book does not display the address books of other users, including shared address books.
List every Address Book that is now visible in the LDAP Address Book.
multiple Address Books: Using the carbonio mobile addressBook subcommands, an administrator can control multiple Address Books at the domain and global levels.
zextras$ carbonio mobile addressBook list

List every Address Book that is now visible in the LDAP Address Book.

zextras$ carbonio mobile addressBook add

Update the LDAP Address Book with a fresh Address Book.

zextras$ carbonio mobile addressBook remove
Delete a contact book from the LDAP contact book
The address book will be available to either Global or Domain users depending on the value of the first argument of the add and remove sub-command.
Both sub-commands also need the FolderID of the address book that is being added and the email address or UUID of the address book owner.
zextras$ carbonio mobile addressBook add global 7

This command adds the user’s folder 7 (the default /Contacts folder) to the LDAP Address Book of every user in the system.

zextras$ carbonio mobile addressBook add domain 7

This command adds the user’s folder 7 (the default /Contacts folder) to the LDAP Address Book of every user in the domain.

Outlook’s LDAP Search will reveal additional Address Books by separating the owner’s reveal Name and the Address Book name with a slash, for example, “John Doe/EMEA Distributors”.

Setup for Outlook
Simply follow these procedures to access the LDAP Address Book from Outlook:

1.  Go to the Address Books tab in the Account Settings section and click Add.

2. Press Next after selecting Internet Directory Service (LDAP).


3. after entering the mailbox server’s direct URL, select the Check the “This server requires me to log in” box, then enter your email address and password (or current mobile password, if applicable).


4. Choose “More Settings”

5. The Use Secure Socket Layer option should be selected after entering the server’s URL as the Display Name and port 8636 in the Connection tab.


6. Leave the input box empty and choose Custom as the search basis in the Search tab.


7. To finish the procedure, click Ok to exit the More Options window and Next to open the Add Account window.

Contact Book Naming
Own Address Books in Outlook that are accessed over LDAP are titled with a slash character before the name of the folder, for example, “/Contacts”.
The name of the datasource is also included in GAL entries and Address Books, for example, “InternalGAL/_zextras”.
The folder name, such as “John Doe/EMEA Partners,” and the owner’s Display Name are included in other users’ Address Books.