In this article you will learn how to implement Custom Authentication using a Zimbra extension. The Java project and source code can be found at https://github.com/Zimbra/zimbra-custom-authentication. Take a look at https://github.com/Zimbra/zm-extension-guide if you are new to Java or building Zimbra extensions. The zm-extension-guide covers all the things needed to build the Custom Authentication extension. Zimbra […]
Archive | Zimbra SkillZ
Zimbra Email Security Webinar Series: DNSSEC (register now!)
Hello Zimbra Customers, Partners & Friends, Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra security. In this fourth episode of the Zimbra Email Security Webinar Series, join […]
Zimbra SkillZ: How to use Zimbra with multiple HTTPS domains (Server Name Indication)
By Barry de Graaff on June 1, 2022 in Community, PowerTips – Admins, Security & Privacy, Zimbra Server, Zimbra SkillZ
This article is a short how-to on making your Zimbra reachable via multiple HTTPS domains. This will allow your users to reach Zimbra using different URL’s such as: https://mail.zimbra.com and https://mail.zimbra.org. Set-up initial TLS certificate Set-up Zimbra to work with the fist HTTPS domain. Install the certificate obtained from your Certificate Authority by using one […]
Zimbra SkillZ: How to create the certificate chain
Hello Zimbra Customers, Partners & Friends, This video is a practical how to on creating the certificate chain file. The certificate chain file usually named commercial_ca.crt and it is needed to deploy TLS certificates on Zimbra. If you’re interested, you can also read our Wiki article about Creating the Certificate Chain. Thanks, Your Zimbra Team
Implementing a CSRF check on a Zimbra extension
By Barry de Graaff on May 18, 2022 in Community, Open Source, Security & Privacy, Zimbra SkillZ, Zimlets
Hello Zimbra Customers, Partners & Friends, In this article you will learn how to implement a CSRF check in a Zimbra extension. The Java project and source code can be found at https://github.com/Zimbra/zm-extension-guide. In many cases the Cross-Origin-Resource-Policy in the web browser and the setting of the SameSite=Strict attribute on the authentication cookie will provide […]
Email security webinar about MTA STS, TLS RPT, and BIMI
Hello Zimbra Customers, Partners & Friends, Zimbra’s Barry de Graaff and Randy Leiker from Skyway Networks team up for a new webinar series focused on Email Security. These hands-on webinars will include practical how-to information and best practices to help you maximize Zimbra. Learn how to fine-tune key security standards like SPF, DKIM, DMARC, MTA-STS, […]