On Tue, Dec 7, 2010 at 12:45 PM, Wietse Venema <wie...@porcupine.org> wrote: > Jason Voorhees: >> Hi: >> >> For personal reasons I'm planning to migrate a Zimbra installation to >> a Postfix+Cyrus IMAP based schema. My Zimbra server has two domains: >> domain1.com and domain2.com. Users from domain1.com authenticate via >> Active Directory and domain2.com authenticate via Zimbra (using its >> own OpenLDAP server). >> >> As you know Zimbra has postfix embedded with a custom version of >> saslauthd. Now I have to keep the same double authentication schema >> when migrate to postfix so the question is: How could configure >> Postfix to authenticate users from one domain (domain1.com) to a >> backend A (Active Directory) and users from other domain (domain2.com) >> to a backend B (OpenLDAP, MySQL, PAM, etc)? Is it possible? Any ideas? >> >> I hope someone can help me with some ideas. > > Postfix does not implement any SASL authentication - SASL > is implemented entirely by the back-end (Cyrus or Dovecot). > > Wietse >
Yes, I know, but maybe I made the question incorrectly (sorry my native language isn't english). I could configure saslauthd to authenticate to MySQL/LDAP/Active Directory and I was planning to run (maybe) two instances of saslauthd with different backend authentications each one. I know that postfix delegates authentication to saslauthd so the question I really wanted to do is: Could postfix choose more than 1 different instance of saslauthd based on some criteria (maybe listening IP address, or u...@domain account, etc)? Or do I need to solve this issue necessarily at saslauthd level with some hacks?
