-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Tue, 28 May 2013, Evgeny Basov wrote:
With LDAP tree like
ou=mail |
- dc=example1.com,ou=Mail |
- mail=box1@example1.com,dc=example1.com,ou=Mail |
- mail=box2@example1.com,dc=example1.com,ou=Mail … |
- dc=example2.com,ou=Mail |
- mail=box1@example2.com,dc=example2.com,ou=Mail |
- mail=box2@example2.com,dc=example2.com,ou=Mail
Hmm, IMHO, the recommended use of dc= (by OpenLDAP) would be:
mail=box2@example2.com,dc=example2,dc=com
maybe,
mail=box2@example2.com,ou=mail,dc=example2,dc=com
But my soul of perfectionist do not like this configuration because in every mailbox record duplicated information about domain:
mail=box1@example2.com and dc=example2.com
I want to set next LDAP tree
|
- dc=example2.com,ou=Mail |
- mail=box1,dc=example2.com,ou=Mail |
- mail=box2,dc=example2.com,ou=Mail
the LDAP mail attribute is to contain a mail address, not just a part of it. Actually, your LDAP server should reject mail=box2. You could use another attribute though.
but I don't understand how to limit query to box1@example1.com in dc=example1.com,ou=mail without using base=dc=%d,ou=Clients,o=m and how to get working iterate query for all boxes to get list
box1@example1.com box2@example1.com box1@example2.com box2@example2.com
in some command like doveadm quota recalc -A.
Is it possible? How to take it?
In my opinion, you try make LDAP more complicate is it is designed as.
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBUaS5513r2wJMiz2NAQL41Af+PMFN0YiLJCsAnDVpGYPkBbnVWsG6YH7N KdcYDWqd5o67xy1u3dhOAfPtlmJWkAog3icN0/lUC/GD+5go5lnK1ZA1kAKyMgQ+ a4SpRnUdOWxoB2820KxHZB7WPHFLvTu/Kgmup8qPleAX/JuO90Xt1w2+dMDEJA6G a697Zo/tHGnraAf4Nn8YESHcHCBPI/Uf6D8AphBaevCb6gfT8kQSBXNI6vQc62Hp thQlsLnB/L0JsGveGTxX4a8E16rgo3MHmo+gKjcsbImM00tOK1nv4pXulco6KzRf W1itCjbDFON8JDrQAUCDi/y99pfOks5CIzc1lMmDFU152B4nODuDqQ== =rn/V -----END PGP SIGNATURE-----