On Fri Apr 2 18:17:50 2004 redjar at redjar.org (Jared) wrote:
[...]
So I'd like to try to not use stunnel with dovecot. But how do I configure dovecot-ldap.conf to connect directly to the LDAP server with SSL/TLS?
I've tried:
hosts = ldaps://ldap.server.com and hosts = ldap.server.com:636
But neither work.
I didn't see another directive to use to turn SSL/TLS on in the conf file or in the docs.
There is no way in current dovecot source. I hit the same issue when I tested dovecot. I'm attaching the patches that I have in my local pkgsrc tree.
What they do is:
Change default value for 'hosts' to NULL instead of 'localhost'. That way, libldap will choose the default list of server as specified in OpenLDAP's ldap.conf configuration file.
Add a new configuration stance, 'uris', which you can set to a list of URIs that will be passed directly to libldap, which understands them.
I hope the patches will be included in dovecot tree, however it might be best to fall back on 'hosts' value if using'uris' fails. In my patch, 'hosts' is ignored if 'uris' is filled in.
Quentin Garnier.