This function, which is a component of the Mobile module, offers an LDAP Address Book that Outlook clients may connect to in order to access the GAL of the system, the user’s personal Address Books, and other Address Books set by the administrator.
As the point of connection for the Outlook clients, this service serves as the foundation of the LDAP Address Book functionality.
All mailbox services expose the service on port 8389, and it employs the TLS encryption standard.
In order to increase system security, this endpoint is read-only.
Using LDAP to access the address book
Only Outlook clients may access the LDAP Address Book using the same login information used for the Exchange ActiveSync connection (email address and either their password or a specific Mobile Password).
Clients can access the service by dialling the mailbox server that hosts their mailbox’s port 8389.
Another alternative would be to create unique firewall rules to direct port 8389 from the proxy to the mailbox server, as described in the process below. This procedure assumes the mailbox server is located at local IP 10.129.67.1 and involves some system file modification.
- Switch on IPv4 IP forwarding
- Add the following firewall rules to your proxy’s iptables script:
Address and Contact Books
The LDAP Address book gives users access to the following things by default:
- contacts and address books that belong to the user.
- The GAL of the user.
The LDAP Address Book does not display the address books of other users, including
shared address books.
other Address Books: Using the zxsuite mobile addressBook subcommands, the Administrator can make other Address Books visible at the domain and global levels.
- To add a new Address Book to the LDAP Address Book, use the zxsuite mobile addressBook add command.
- Address for zxsuite mobileLists all Address Books that are currently visible in the LDAP Address Book.
- To delete an address book from the LDAP Address Book, use the zxsuite mobile addressBook remove command.
The scope to which the Address Book will be displayed is the first parameter of the addressBook add command and can be either “Global” or “Domain”:
Both instructions additionally need the FolderID of the address book being added and the owner of the address book, either in the form of an email address or a ZimbraID, for example:
Add the global user@example.com addressbook in ZX Suite for Mobile. 7
This will add user@example.com’s folder 2 (the usual /Contacts folder) to every user in the system’s LDAP Address Book.
Add the domain example.com and user@example.com to your address book on your phone.
The LDAP Address Book of every user in the “example.com” domain will now include folder 7 (the default /Contacts folder) of the user@example.com user.
To remove an Address Book from the LDAP Address Book through the proper scope, the addressBook delete command employs the same syntax and inputs.
Outlook’s LDAP Search will reveal additional Address Books by separating the owner’s reveal Name and the Address Book name with a slash, for example, “John Doe/EMEA Distributors”.
Setting up Outlook
Simply follow these procedures to access the LDAP Address Book from Outlook:
- Click “Add” under the “Address Books” tab in the “Account Settings” section.
- Press “Next” after selecting “Internet Directory Service (LDAP)”.
- If the “This server requires me to log in” checkbox is selected, enter your email address and password (or mobile password, if applicable) after entering the direct URL of the mailbox server.
- Select “More Settings”
- Enter the server’s URL as the Display Name, 8389 as the port, and check the “Use Secure Socket Layer” box in the “Connection” tab.
- Select “Custom” as the search base in the “Search” tab and leave the input field empty.
To finish the procedure, click “Ok” to exit the “More Options” window and “Next” to open the “Add Account” page.
Names in the address book
Own Address Books in Outlook that are accessed over LDAP are titled with a slash character before the name of the folder, for example, “/Contacts”.
The name of the datasource is also included in GAL entries and Address Books, for example, “InternalGAL/_zimbra”.
The folder name, such as “John Doe/EMEA Partners,” and the owner’s Display Name are included in other users’ Address Books.