Hello, With dovecot 2.3 it was clear to me, how I should set up ldap: Include conf.d/auth-ldap.conf.ext in conf.d/10-auth.conf and include dovecot-ldap.conf.ext with the usual parameters like hosts, uris, dn, etc.

In dovecot 2.4 I am a little bit confused about whats the best practice. I heard about that .ext files being outdated and examples in the documentation saying I should put everything in dovecot.conf?

So If in 2.3 my config would look like this:

# auth-ldap.conf.ext
passdb {
   driver = ldap
   args = /etc/dovecot/dovecot-ldap.conf.ext
}
userdb {
   driver = ldap
   args = /etc/dovecot/dovecot-ldap.conf.ext
}

# dovecot-ldap.conf.ext
hosts = ldap.something.org:636
uris = ldaps://smoething.org
dn = cn=something,ou=something,dc=something,dc=org
dnspass = somethingsomething
auth_bind = yes
auth_bind_userdn = uid=%u,ou=something
...

I would put something like this in dovecot.conf? Or in auth-ldap.conf.ext?

ldap_uris = ldap://ldap.example.org
ldap_auth_dn = cn=admin,dc=example,dc=org
ldap_auth_dn_password = secret
ldap_base = dc=example,dc=org

passdb ldap {
   bind = yes
   filter = (&(objectClass=posixAccount)(uid=%{user}))
   fields {
     user = %{ldap:uid}
   }
}

(https://doc.dovecot.org/2.4.3/core/config/auth/databases/ldap.html#dn-lookup)