[Dovecot] virtual domains with SQL auth + ntlm (winbind) auth for one of them...

Timo Sirainen tss at iki.fi
Thu Apr 16 03:29:40 EEST 2009


On Mon, 2009-04-06 at 14:35 +0200, Tomasz Lutelmowski wrote:
> Hello !
> 
> Is it possible to configure dovecot so it can use SQL authentication
> for set of domains, and ntlm authentication for one domain? In other
> words, I would like to authenticate all users (with user at domain.com as
> login) in SQL server, and if not found, then strip @windomain.com from
> login and fallback to pam->winbind authentication. 

I don't think it's going to work in any easy way. Two ideas:

a) Create a pam plugin that drops the @domain part (maybe there already
exists one?)

b) Switch to using passdb checkpassword and have your script do the SQL
check, then call PAM with the @domain part dropped.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20090415/42ff6b35/attachment.bin 


More information about the dovecot mailing list