[Dovecot] CAS Authentication
Angel L. Mateo
amateo at um.es
Wed Oct 17 10:24:42 EEST 2012
El 16/10/12 20:12, b m escribió:
> Thanks for the reply. I have already tried successfully the setup without proxing the cas tickets and setting dovecot to login with a master password. The problem is that I need a password file with all the users and also I need the proxy feature for other applications.
>
This is my config. In /etc/pam.d/dovecot I have:
auth sufficient pam_cas_ssh.so -simap://localhost -f/etc/pam_cas.conf
account sufficient pam_permit.so
session sufficient pam_permit.so
and /etc/pam_cas.conf
host <cas server>
port 443
uriValidate /cas/proxyValidate
ssl on
debug off
proxy <cas proxy url>
trusted_ca <pem cert file>
in dovecot, I have these users dbs:
userdb {
driver = prefetch
}
userdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
passdb {
args = session=yes cache_key=%n dovecot
driver = pam
}
With this, it works fine.
--
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información
y las Comunicaciones Aplicadas (ATICA)
http://www.um.es/atica
Tfo: 868889150
Fax: 868888337
More information about the dovecot
mailing list