25 Jan
2026
25 Jan
'26
5:24 p.m.
On January 25, 2026 4:42:24 PM GMT+02:00, ByteWave via dovecot <dovecot@dovecot.org> wrote:
Do you also know how to retrieve the user's sAMAccountName instead of the cn? Because when I do sAMAccountName=user,cn=Users,dc=gr4,dc=lan, it doesn't find the user...
dovecot mailing list -- dovecot@dovecot.org To unsubscribe send an email to dovecot-leave@dovecot.org
Yes. And it requires service user because bind_dn can only bind by distinguishedName (dn).
This works by looking up user's dn with filter and then doing bind, which requires that service user.
You can utilize the same service user in userdb to avoid problem of getting mail for nonexistent accounts.
You could also get a properly signed cert from your AD, or switch to gssapi.
Aki