[Dovecot] Dovecot and ActiveDirectory
Chris Wakelin
c.d.wakelin at reading.ac.uk
Wed Jul 13 18:08:16 EEST 2005
I've got it working via PAM and pam_ldap on Solaris. I think Dovecot's
LDAP support can't do LDAP bind-style authentication; it wants password
fields.
Best Wishes,
Chris
Hoffmann, Oliver wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi!
>
> Is there a solution to auth dovecot against an windows active directory?
> i've tried this config:
>
> - ---
> # Space separated list of LDAP hosts to use. host:port is allowed too.
> hosts = dc.foo.bar
>
> # Distinguished Name - the username used to login to the LDAP server
> dn = cn=oh,cn=Users,dc=foo,dc=bar
>
> # Password for LDAP server
> dnpass = password
>
> # LDAP protocol version to use. Likely 2 or 3.
> ldap_version = 3
>
> # LDAP base
> base = cn=Users,dc=foo,dc=bar
>
> # Dereference: never, searching, finding, always
> #deref = never
>
> # Search scope: base, onelevel, subtree
> scope = subtree
>
> # User attributes in order:
> user_attrs = uid,homeDirectory,,,uidNumber,gidNumber
>
> # Filter for user lookup. Some variables can be used:
> #user_filter = (&(objectClass=posixAccount)(uid=%u))
>
> # Password checking attributes in order:
> pass_attrs = uid,userPassword
>
> # Filter for password lookups
> #pass_filter = (&(objectClass=posixAccount)(uid=%u))
>
> # Default password scheme. "{scheme}" before password overrides this.
> #default_pass_scheme = CRYPT
>
> # You can use same UID and GID for all user accounts if you really want
> # to.
> # If the UID/GID is still found from LDAP reply, it overrides these values.
> #user_global_uid =
> #user_global_gid =
> - ---
>
>
> but got this error:
>
> - ---
> dovecot-auth: Jul 13 16:42:09 Error: ldap(oh): unknown user
> - ---
>
> thx & greets
> oliver
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.1 (MingW32)
>
> iD8DBQFC1S162+wHtX4o3oARAo+SAJ9EGVQPXBG+gtZmcbkOjMiy0xF2JACgigDs
> +6q+EW0zjsICqME310Ky41M=
> =sMRS
> -----END PGP SIGNATURE-----
>
--
--+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+-
Christopher Wakelin, c.d.wakelin at reading.ac.uk
IT Services Centre, The University of Reading, Tel: +44 (0)118 378 8439
Whiteknights, Reading, RG6 2AF, UK Fax: +44 (0)118 975 3094
More information about the dovecot
mailing list