Sandeep, > Am 08.07.2024 um 07:37 schrieb hkhk_exact10 via Postfix-users > <postfix-users@postfix.org>: > > Hi All, > > I want to setup SMTP authentication in such a way that the user should first > be looked locally (/etc/passwd) and then in AD. Is it possible to do so? I > was able to configure AD auth via sasl (cyrus), but couldn't do both.
Cyrus SASL is able to use saslauthd in order to authenticate users in
/etc/passwd. I don’t know what you did with Cyrus SASL to configure AD
authentication, but assuming it would be a method called foobar you would
configure Cyrus SASL to use the following list of password verification methods:
smtpd.conf:
pwcheck_method: saslauthd foobar
mech_list: PLAIN LOGIN
In my example Cyrus SASL would first try to authenticate an identity using
saslauthd (/etc/passwd) and then foobar (AD). The mech_list must be limited to
PLAIN and LOGIN, since these are the only mechanisms saslauthd supports.
HTH
Patrick
[*] sys4 AG
http://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG, 80333 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer
Aufsichtsratsvorsitzender: Florian Kirstein
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
