On Thu, Mar 18, 2010 at 09:10:18PM -0300, Ronie Gilberto Henrich wrote:
> If the LDAP object needs to expans to all user addresses, make it an
> LDAP-URI valued group. If the group is large (thousands of recipients), do
> the expansion on a dedicated list server, not your primary Postfix queue.
>
>
>
> You mean something like the ldap object below?
> [6]mail=every...@example.com,ou=Mail,o=example,c=com
> ObjectClass=referral
> ref=ldaps://localhost/ou=Mail,o=example,c=com
No, not a referral, an LDAP query URI (aka "dynamic group"). The above
does not appear to have the syntax of a stored query, there is no
"filter part".
> I did that and it does list all ou=Mail,o=example,c=com mail accounts.
What does this mean? What tool did you use?
> Then I modified my [7]ldap:everyone mappings to the folowing:
> virtual_alias_maps = [8]ldap:everyone
> everyone_server_host = ldaps://localhost
> everyone_version = 3
> everyone_search_base = ou=Mail,o=example,c=com
> everyone_query_filter = (mail=%s)
> everyone_result_attribute = mail
Where is the "special_result_attribute" definition? Did you read
the ldap_table(5) documentation?
> But it does not work.
> 550 [9]<every...@example.com>: Recipient address rejected: User unknown;
>
> Any ideas of what I am doing wrong?
Pretty much everything, so far...
--
Viktor.
P.S. Morgan Stanley is looking for a New York City based, Senior Unix
system/email administrator to architect and sustain our perimeter email
environment. If you are interested, please drop me a note.
