8.10  User Account Templates

Templates simplify creation of a large number of user accounts (typically for users of one domain). In a template you can define all account parameters except the user name and password (if internal authentication is used). User accounts can be defined using a created template by simply filling in the Name, Full Name and Description fields (plus perhaps Password and Confirm Password). The Full Name and Description fields are not obligatory. In the simplest case you only need to fill in one field — the user name.

Defining a Template

You can define a template in the Configuration → Definitions → User Templates section. The dialog window for creating or editing a template is almost identical to the dialog window for creating a user account.

Defining a template

Figure 8.23. Defining a template


Name

Name of the template (unique name used for the template identification).

Description

This field has two meanings. First, it is the template's description that will be displayed next to its name in the template list and, second, it is copied to the Description field in the user account created with this template.

Authentication

The authentication method to be performed (for details, see chapter 8  Users).

Domain

Selection of the domain for which the template will be used. Here you can choose one of the local domains defined in Kerio MailServer or you can decide not to specify any domain. If no domain is specified, the template can be used for creating and editing user accounts in any domain (general template).

Enable a default spam filter ...

Check this option to move all recognized spam messages to the junk email folder.

Publish in Global Address List

The user's full name and address will be published in the default public Contacts folder which is used as an internal source of company contacts (full names and email addresses). The contact is added to the public folder only if Full Name is specified.

If users are mapped from Active Directory or Apple Open Directory, the entire LDAP database is synchronized every hour automatically. If you do not wish to synchronize a user to public contacts, uncheck this option.

Store password in highly secure SHA format

By default, user passwords are encrypted by DES. The Store password in highly secure SHA format allows for a more secure encryption (SHA string). This option has one disadvantage — some methods of Kerio MailServer access authentication (APOP, CRAM-MD5 and Digest-MD5) cannot be applied. The only methods available for this option are LOGIN and PLAIN (it is highly recommended to use only SSL connection for authentication).

If this option is enabled, it is necessary to change the user password. This can be done either by administrator or the user (e.g. by Kerio WebMail or by another email client).

The other fields in the dialog window are the same as the fields in the user account dialog window. The values entered here will be automatically entered into corresponding fields in the created account. For details, see chapter 8.2  Creating a user account.

Using the Template

A created template can be used immediately for creation of a user account in the Domain Settings → Users section. If at least one template is defined, the first step of a wizard is displayed when you click on Add that prompts you to choose a template.

Only templates created for the particular domain or templates with an unspecified domain (general domains) will be displayed in the wizard dialog. The No template option means that no template will be used for creating the account (most fields will be blank or default values will be entered).

Once you choose a template a user account creation guide will be opened where appropriate values will be entered into individual fields. For details, see chapter 8.2  Creating a user account.