16 Apr
2009
16 Apr
'09
3:29 a.m.
On Mon, 2009-04-06 at 14:35 +0200, Tomasz Lutelmowski wrote:
Hello !
Is it possible to configure dovecot so it can use SQL authentication for set of domains, and ntlm authentication for one domain? In other words, I would like to authenticate all users (with user@domain.com as login) in SQL server, and if not found, then strip @windomain.com from login and fallback to pam->winbind authentication.
I don't think it's going to work in any easy way. Two ideas:
a) Create a pam plugin that drops the @domain part (maybe there already exists one?)
b) Switch to using passdb checkpassword and have your script do the SQL check, then call PAM with the @domain part dropped.