On Thu, 2010-02-18 at 16:38 +0200, Timo Sirainen wrote:
> How about if it worked like:
>
> pass_attrs = member=bind_dn, ...
> pass_filter = ..
Have already solved it via PAM. But will nevertheless try this solution
too. But this has to wait until weekend :-)
Thanks for support!
-stefan-
Hi,
On Thu, 2010-02-18 at 11:36 -0200, Marcio Merlone wrote:
> I use LDAP on PAM, and dovecot uses PAM as auth method, ...
Thanks for the tip. This way (dovecot -> PAM -> LDAP (with a
dedicated ldap-configuration for the "dovecot" PAM service))
works for me.
Regards
-stefan-
Attached updated patch that actualy uses bind_dn, as pointed out by
Edgar Fuß.
On Thu, 2010-02-18 at 16:38 +0200, Timo Sirainen wrote:
> On Thu, 2010-02-18 at 09:19 +0100, Stefan Palme wrote:
> > base="ou=groups,dc=kapott.org"
> > filter="(&(cn=dovecot)(member=cn=%u,ou=users,dc=kapott,dc=org))
On Thu, 2010-02-18 at 09:19 +0100, Stefan Palme wrote:
> base="ou=groups,dc=kapott.org"
> filter="(&(cn=dovecot)(member=cn=%u,ou=users,dc=kapott,dc=org))"
> result_attribute="member"
>
> After finding a DN this way (via attribute "member"), I want to use
> auth_bind to use this DN for passw
Em 18/2/2010 06:19, Stefan Palme escreveu:
In LDAP, I have users like this:
dn:cn=user1,ou=users,dc=kapott,dc=org
dn:cn=user2,ou=users,dc=kapott,dc=org
etc.
(...)
My problem: not ALL users from the LDAP system should be allowed to
use the IMAP server. Currently, I have defined an aut
On 02/18/2010 09:45 AM, Oliver Eales wrote:
> Isn't it possible to just give the each allowed IMAP Users a attribute
> like imap=1 ?
Yes, it would. But this would also require me to use PASSWORD LOOKUP
(e.g. with a filter like '(&(objectclass=person)(imap=1))'), but I
do not want to use password
Stefan Palme schrieb:
> Hi all,
>
> Using dovecot-1.2.6, I use dovecot with an LDAP backend for user
> authentication. In general this works ok, but I have some issues
> with this...
>
> In LDAP, I have users like this:
>
> dn:cn=user1,ou=users,dc=kapott,dc=org
> dn:cn=user2,ou=users,dc=kapott,
