[Dovecot] ldap auth (with user and domain a different places)
Timo Sirainen
tss at iki.fi
Mon Jan 10 20:09:38 EET 2005
On Mon, 2005-01-10 at 18:28 +0100, Timo Boettcher wrote:
> >> But that would only work, if dc was an attribute of my user (which it
> >> is not), wouldn't it?
> > Yes, that would probably have to be the case. Theoretically, this kind of
> > problem could be solved by being more specific in your base dn (specifying
> > "base = dc=domain.tld, o=myorganization" but I don't think that Dovecot
> > allows things like %d in the "base" option of dovecot-ldap.conf, so you
> > couldn't have "base = dc=%d, o=myorganization". (Someone correct me if I'm
> > wrong.)
>
> As I read the sourcecode, thats not possible just now. But unless I am
> wrong (which I could quite possible be) the change to make this
> possible would be about one line to do variable expansion on the
> search-base.
I guess this would fall into same category with authentication binds.
When they are supported, supporting %d in base is simple. I don't have
plans to do auth binds anytime soon though. pam_ldap might help you.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://dovecot.org/pipermail/dovecot/attachments/20050110/dac2c7c9/attachment-0001.bin>
More information about the dovecot
mailing list