[Dovecot] auth with kerberos
Hello,
I am running dovecot 1.0RC2 and I'd like to know if there is a way to make dovecot provide PLAIN, LOGIN, CRAM-MD5, NTLM authentications from a kerberos database. GSSAPI works great, but I currently have to have two password databases, one for GSSAPI and one for all the others. What I'd like is to have only one password database (namely kerberos). I know that cyrus-sasl (which most of you don't like I think ;)) can provide such authentications, but I haven't found the way to configure dovecot to do the same.
Any input welcome.
PAM seems the trivial solution.
On July 15, 2006 12:08:47 PM +0200 Renaud Allard <renaud@llorien.org> wrote:
Hello,
I am running dovecot 1.0RC2 and I'd like to know if there is a way to make dovecot provide PLAIN, LOGIN, CRAM-MD5, NTLM authentications from a kerberos database. GSSAPI works great, but I currently have to have two password databases, one for GSSAPI and one for all the others. What I'd like is to have only one password database (namely kerberos). I know that cyrus-sasl (which most of you don't like I think ;)) can provide such authentications, but I haven't found the way to configure dovecot to do the same.
Any input welcome.
Indeed, except I work on a system where PAM is unavailable (OpenBSD). I tried to work with bsd-auth where I configured krb5_or_pwd in /etc/login.conf, but when trying dovecot, it told me that the kind of authentication I wished (whatever it was PLAIN, LOGIN, CRAM,...) was not available with this kind of database (don't remember of the exact error code but it looked like what I wrote).
Frank Cusack wrote:
PAM seems the trivial solution.
On July 15, 2006 12:08:47 PM +0200 Renaud Allard <renaud@llorien.org> wrote:
Hello,
I am running dovecot 1.0RC2 and I'd like to know if there is a way to make dovecot provide PLAIN, LOGIN, CRAM-MD5, NTLM authentications from a kerberos database. GSSAPI works great, but I currently have to have two password databases, one for GSSAPI and one for all the others. What I'd like is to have only one password database (namely kerberos). I know that cyrus-sasl (which most of you don't like I think ;)) can provide such authentications, but I haven't found the way to configure dovecot to do the same.
Any input welcome.
participants (2)
-
Frank Cusack
-
Renaud Allard