# MDaemon Integration
# **Synchronizing User Accounts with an MDaemon User Database**
In addition to adding users manually (which is described in chapter [User Management](http://support.quikbox.com/article.php?id=314)), MailStore Server can synchronize its internal user database with an MDaemon user database on the basis of the USERLIST.DAT of your MDaemon server.
During synchronization user information such as user names and email addresses are read from the MDaemon user database and recorded in MailStore Server's user database. MailStore Server makes no changes to the MDaemon user database itself. Synchronization can be limited to individual or multiple domains and groups.
## **Accessing the Directory Service Integration**
- Log on to MailStore Client as a MailStore Server administrator.
- Click on *Administrative Tools* > *Users and Privileges* and then on *Directory Services*.
- In the *Integration* section, change the directory service type to *MDaemon USERLIST.DAT*.
## **Connection to the MDaemon**
For synchronization MailStore Server requires information on how to access the MDaemon App directory.
- **MDaemon App Directory**
Enter the path to the App directory of your MDaemon installation. The App directory contains the files *Userlist.dat* and *Groups.dat*. If MailStore Server is installed on the same computer as the MDaemon Server, the MDaemon App directory is detected automatically.
If MailStore Server is not installed on the same machine, share the App directory of the MDaemon server with the MailStore Server computer and enter the share's UNC path into the field *MDaemon App Directory* (e.g. MDAEMONMDApp).
To access the MDaemon App directory through a network share it may be necessary to configure a [startup script](http://support.quikbox.com/article.php?id=276#ss) for the MailStore Server Service.
- **Code Page**
You only have to change this option if the encoding of the files*Userlist.dat* and *Groups.dat* differs from the standard encoding of the MailStore Server computer.
## **User Database Synchronization**
After configuring the connection settings as described above, you can specify filter criteria for the MDaemon user database synchronization in this section.
- **MDaemon Groups**
Choose one or more groups to let only their members be created as MailStore Server Users. If no groups are selected, all users will be synchronized.
## **Options**
- **Automatically delete users in MailStore Server**
Here you can choose whether users whose accounts have been deleted in the MDaemon will also be deleted in MailStore Server's user database by the synchronization. If the archive folder of such a user already contains archived emails, only the user entry but not its archive folder will be deleted in MailStore Server. Additionally, only MailStore Server users that have their authentication method set to *Directory Services* will be deleted.
## **Assign Default Privileges**
By default, users that have been synchronized to MailStore Server from an MDaemon have the privilege to log on to MailStore Server as well as read access to their own user archive.
You can configure those default privileges before synchronization, for example, to assign the privilege *Archive E-mail* to all new users. To do this, click on *Default Privileges...*
More information on managing user privileges and their effects is available in the chapter [Users, Folders and Settings](http://en.help.mailstore.com/Users,_Folders_and_Settings "Users, Folders and Settings") which also has details on editing existing privileges.
## **Run Directory Services Synchronization**
Click on *Test Settings* to check synchronization configuration and the results returned by the MDaemon without any changes to the MailStore Server user database being actually committed.
To finally run the synchronization, click on *Synchronize now*. The results are shown with any changes committed to the MailStore Server user database.
- - - - - -
# **Login with MDaemon Credentials**
By default, each user created in MailStore Server has a local password. The MailStore Server administrator can specify this password during creation of a new user account. The respective user can later change this password in MailStore Client's *Quick Access* section if he or she has ample privileges.
Alternatively, if an MDaemon is available, you can configure MailStore Server to allow users to log on to MailStore Server using their MDaemon credentials. To achieve this, you have to configure the following settings in the *Authentication* section:
- **MDaemon IMAP Server**
Enter the IP address or the DNS name of the MDaemon server against which authentication should be performed.
- **IMAP Server Access**
Configure whether the connection to the MDaemon IMAP server should be unencrypted or IMAP-TLS/IMAP-SSL encrypted.
- **Ignore SSL Security Warnings (only when using IMAP-TLS or IMAP-SSL)**
Activate this option if a self-signed or non-public certificate is used on the MDaemon IMAP server. Otherwise the authentication will permanently fail.
**Important Notice**
If your MDaemon users authenticate against an Active Directory, you must disable *... honor APOP & CRAM-MD5* under *Setup* > *Default Domain / Servers* > *Default Domain & Servers* > *Servers* in your MDaemon Server. Otherwise users will not be able to log on to MailStore Server.
## **Procedure for Users Created by Synchronization with MDaemon**
If you have created MailStore Server users by MDaemon synchronization as described in the previous section, no further action is required. In this case, MailStore Server has already configured all necessary settings automatically for you.
## **Procedure for Manually Created Users**
If you have created MailStore Server users manually and want them to be able to log on using their MDaemon credentials, please proceed as follows:
- Configure the MDaemon integration as described in chapter [Synchronizing User Accounts with an MDaemon User Database](#sua).
- Verify that the names of the MailStore Server users match those of the corresponding MDaemon users.
- In the *General Information* section of the user properties select *Directory Services* for *Authentication*.