To change the system account, under which IceWarp runs on a Linux environment, follow these steps:
If you are using NFS, it is necessary to create a user with the same UID on the NFS server and on the client (we are using 1001, but you can use different - it must be same on the server and the client).
1. On the IceWarp server, create group and user for IceWarp services
groupadd -g 1001 icewarp
adduser -r -u 1001 -g 1001 icewarp
2. Do a check
3. Stop IceWarp services, do a chown on the directories which IceWarp uses (if you are using a different path for mail, archive, log, etc. don't forget to change chown as well)
chown -R icewarp:icewarp /opt/icewarp
4. Set icewarp user as sudoer for executing icewarpd.sh
Cmnd_Alias IW = /opt/icewarp/icewarpd.sh
icewarp ALL= NOPASSWD: IW
5. Change user in /etc/icewarp/icewarp.conf from root to icewarp
6. If you are using Yoda (Fulltext Search) do not forget to change user in the files below:
/etc/systemd/system/mundi.service /etc/systemd/system/yoda-scan.service /etc/systemd/system/yoda.service
7. Remount storage (if it's needed) and restart IceWarp services
when following your advisory and trying to create the group icewarp we get: "group 'icewarp' already exists"
What should we do now?
Please sign in to leave a comment.