[Dovecot] CAS Authentication
b m
stocton12 at yahoo.com
Thu Oct 18 11:33:25 EEST 2012
Thanks for the configuration files. I have a question. In pam_cas.conf I don't know what to put in "proxy <cas proxy url>". In some examples I have seen something like http://<webmail address>/proxy.php
Do I need a php file in my webmail to handle the cas tickets and if so where can I find it?
________________________________
From: Angel L. Mateo <amateo at um.es>
To: dovecot at dovecot.org
Sent: Wednesday, October 17, 2012 10:24 AM
Subject: Re: [Dovecot] CAS Authentication
El 16/10/12 20:12, b m escribió:
> Thanks for the reply. I have already tried successfully the setup without proxing the cas tickets and setting dovecot to login with a master password. The problem is that I need a password file with all the users and also I need the proxy feature for other applications.
>
This is my config. In /etc/pam.d/dovecot I have:
auth sufficient pam_cas_ssh.so -simap://localhost -f/etc/pam_cas.conf
account sufficient pam_permit.so
session sufficient pam_permit.so
and /etc/pam_cas.conf
host <cas server>
port 443
uriValidate /cas/proxyValidate
ssl on
debug off
proxy <cas proxy url>
trusted_ca <pem cert file>
in dovecot, I have these users dbs:
userdb {
driver = prefetch
}
userdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
passdb {
args = session=yes cache_key=%n dovecot
driver = pam
}
With this, it works fine.
-- Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información
y las Comunicaciones Aplicadas (ATICA)
http://www.um.es/atica
Tfo: 868889150
Fax: 868888337
More information about the dovecot
mailing list