[Dovecot] Is it possible to authenticate against Active Direcotry using the whole e-mail?

Patrick Domack patrickdk at patrickdk.com
Wed Oct 7 14:13:27 EEST 2009


Yes, it's possible to do this. But not possible using auth_bind.
You are going have to login using an administrator account, then do an  
ldap search for the email address, then authenicate against it. Using  
auth_bind requires you to know the username before you login.

http://wiki.dovecot.org/AuthDatabase/LDAP/PasswordLookups

Just need to change passfilter to do a ?proxy_email? or what it's  
called for ad

Quoting ????????? ??????????? <dimkar at thessaloniki.gr>:

> Hi all!
>
> Is it possible to authenticate against Active Directory, using the  
> whole e-mail address and not
> the user part (%n), so that if you support mutiple domains, all  
> users should authenticate with their e-mail addresses.
>
> I use
> auth_bind_userdn = DOMAIN \ %u
> but somehow the *mail* attribute of Active/LDAP should be employed.
>
>
> thanks in advance
> Dimitrios Karapiperis
>
>





More information about the dovecot mailing list