That's something you probably want to do on the edge instead of message store,
so a better place might be relocated_maps if you use Postfix. With that you can
easily customize your ldap search base for accounts-to-be-deleted OU...
T.
On Mon, Jan 29, 2018 at 06:53:20PM +0100, lists wrote:
> Hi,
Hello,
just want to report a slightly confusing log entry on auth-debug level I have
encountered while setting up Kerberos auth.
Users are stored in ldap, Kerberos makes use of the same ldap as its backend,
goal was to enable users to use their principals in addition to simple login
with mailAd
Hello,
I have a working setup with Roundcube using OAuth2 -- introspection works
without any problem, unfortunately local validation does not as tokens are
missing "typ" header (seems that one is indeed optional per RFC7519 and
therefore not present in the implementation in place).
Is there any
to be scripted, but
don't want to spend much time reinventing the wheel since I have no other
mechanism to prevent outage in case of planned/unplanned/emergency signing key
change...
Thanks!
Tomas
On Mon, Jun 28, 2021 at 08:43:09AM +0300, Aki Tuomi wrote:
>
> > On 24/06/2021 09:19 T
Hi,
been running Dovecot 2.2.27 against OpenLDAP 2.4.40 normally over the
unix socket on the same machine, but tried over inet with STARTTLS and
it's working ok...
I would suggest double-checking key/certs setup on OpenLDAP side; for
the test I have used LE certs, utilizing following cn=config at
y openldap server.
> The components are postfix, openxchange, apache (phpldapadmin).
>
> My installated software is:
> Debian 8
> OpenLDAP 2.4.40
> Dovecot 2.2.13
>
> I hope you can find the issue.
>
> Thanks,
> Tobias
>
> Am 2017-03-17 22:48, schrieb Tomas
of the problem.
>
> One of the steps in the sslhandshaking is not success but in the
> debugging output I can't find any line with a hit to it.
>
> Tobias
>
> Am 2017-03-18 12:30, schrieb Tomas Habarta:
>> Well, if ldapsearch works, try to replicate its settin
s "TLS negotiation failure"
> after the connect.
> and dovecot says direct "Connect error"
>
> I've also delete the TLSCipherSuite from openldap.
>
> Tobias
>
> Am 2017-03-18 14:01, schrieb Tomas Habarta:
>> Increase log level on server side as we
psearch under dovecot:
> https://gwarband.de/openldap/ldapsearch-dovecot.log
>
> Tobias
>
> Am 2017-03-20 11:00, schrieb Tomas Habarta:
>> I've finally managed that running on Debian 8 test machine by commenting
>> tls_ca_cert_file =
>> option from dovec
Hello,
my IdP is kind of progressive and implemented RFC9068, where all access tokens
now come with typ "at+JWT".
Since the setup has used local validation, I had to switch and currently use
introspection endpoint. Looked around at the src and there seems to be
relatively simple check of the to
If you want to do that on Dovecot's side, look for sieve and vnd.dovecot.filter.
See https://doc.dovecot.org/configuration_manual/sieve/plugins/extprograms/ and
corresponding RFC for details.
Doing that directly in Dovecot might not be the most effective way but depends
on your needs... Anyway,
11 matches
Mail list logo
