On Thu, 2010-11-25 at 19:31 +0100, Andreas Ntaflos wrote:
Is it possible to have a static user database along with an LDAP password database and *not* be forced to set "allow_all_users=yes" for the userdb?
Yes.
dovecot: auth: Error: static(not-a-user@test01.example.com): passdb doesn't support lookups, can't verify user's existence
Set auth_debug=yes and see what it logs. passdb ldap should support it, as long as you don't set auth_bind=yes. I just verified that it works:
Nov 26 16:28:57 auth: Debug: master in: USER 1 tss service=lda Nov 26 16:28:57 auth: Debug: ldap(tss): pass search: base=ou=people,dc=example,dc=com scope=subtree filter=(&(objectClass=posixAccount)(uid=tss)) fields=uid,userPassword Nov 26 16:28:57 auth: Debug: ldap(tss): result: uid(user)=tss userPassword(password)=pass