Dovecot and IPA

Kanwar Ranbir Sandhu m3freak at thesandhufamily.ca
Mon Sep 7 16:02:04 UTC 2015 

On Mon, 2015-09-07 at 09:14 -0600, Manuel Delgado wrote:
> Hi Ranbir
> 
> I've worked with freeIPA a little, but without your doveconf or some other
> context information, it is difficult to identify the issue.

Crap...I meant to include that. Here's what it looks like when I enable
GSSAPI:


# 2.2.10: /etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-229.11.1.el7.x86_64 x86_64 CentOS Linux release 7.1.1503 (Core)  
auth_default_realm = theinside.rnr
auth_gssapi_hostname = mailman02.theinside.rnr
auth_krb5_keytab = /etc/imap.keytab
auth_mechanisms = gssapi
auth_realms = theinside.rnr
hostname = imap.thesandhufamily.ca
listen = 1.1.0.0
mail_gid = virtual
mail_location = maildir:~/Maildir
mail_plugins = quota acl
mail_uid = virtual
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
mbox_write_locks = fcntl
namespace {
  location = maildir:/var/spool/mail/thesandhufamily.ca/public
  prefix = Public.
  separator = .
  subscriptions = no
  type = public
}
namespace inbox {
  inbox = yes
  location = 
  mailbox Drafts {
    special_use = \Drafts
  }
  mailbox Junk {
    special_use = \Junk
  }
  mailbox Sent {
    special_use = \Sent
  }
  mailbox Trash {
    special_use = \Trash
  }
  prefix = 
}
plugin {
  acl = vfile
  quota = maildir:User quota
  quota_rule = *:storage=500M
  sieve = ~/.dovecot.sieve
  sieve_dir = ~/sieve
}
postmaster_address = postmaster@%d
protocols = imap lmtp
service auth-worker {
  user = $default_internal_user
}
service auth {
  inet_listener {
    address = 1.1.0.0
    port = 17900
  }
  unix_listener auth-userdb {
    group = virtual
    mode = 0600
    user = virtual
  }
}
service imap-login {
  process_min_avail = 5
}
service imap {
  process_limit = 10
}
service lmtp {
  inet_listener lmtp {
    address = 1.1.0.0
    port = 24
  }
}
ssl = required
ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
ssl_key = </etc/pki/dovecot/private/dovecot.pem
userdb {
  args = uid=virtual gid=virtual home=/var/spool/mail/%d/%n/
  driver = static
}
verbose_proctitle = yes
protocol lmtp {
  mail_plugins = quota acl sieve
}
protocol lda {
  mail_plugins = quota acl sieve
}
protocol imap {
  mail_plugins = quota acl imap_quota imap_acl
}



-- 
Kanwar R.S. Sandhu

More information about the dovecot mailing list