On Tue, 2006-08-15 at 00:12 -0400, Jim Horner wrote:
and a dovecot-acl file
owner user=jdoe@arinbe.com lrwstiekxa user=jsmith@arinbe.com lrwstiekxa user=jdoe rwstiekxa user=jsmith lrwstiekxa
I am not exactly sure what username to use. All users are in LDAP.
Most likely jdoe@arinbe.com, assuming the username doesn't get changed somewhere.
The "cmpymail" group shows
# getent group cmpymail:*:5555:jdoe,jsmith
This is the problem. Since your users come from LDAP, Dovecot never even reads the /etc/group. There are a couple of ways to handle this:
Make LDAP return jdoe's and jsmith's default GID as cmpymail instead of whatever they now return (users?).
Make LDAP return system_user. That makes Dovecot get the groups for that user. So something like:
pass_attrs = uid=user,uid=system_user,userPassword=password
Although if your uid is in user@domain format, then you'll need to use the user@domain format in /etc/group also. Or alternatively use some other field from LDAP which has only the user.
Some day in future I might get rid of the system_user though and instead make it possible to return multiple GIDs from LDAP (and SQL and others).