Mercurial > dovecot > original-hg > dovecot-1.2
annotate doc/dovecot-ldap-example.conf @ 5883:526d1a860b13 HEAD
user_global_uid/gid no longer exist.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Tue, 03 Jul 2007 04:43:45 +0300 |
| parents | 2a6ff0bbc932 |
| children | bc5fdab698e3 |
| rev | line source |
|---|---|
|
5384
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
1 # This file is opened as root, so it should be owned by root and mode 0600. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
2 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
3 # http://wiki.dovecot.org/AuthDatabase/LDAP |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
4 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
5 # NOTE: If you're not using authentication binds, you'll need to give |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
6 # dovecot-auth read access to userPassword field in the LDAP server. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
7 # With OpenLDAP this is done by modifying /etc/ldap/slapd.conf. There should |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
8 # already be something like this: |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
9 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
10 # access to attribute=userPassword |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
11 # by dn="<dovecot's dn>" read # add this |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
12 # by anonymous auth |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
13 # by self write |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
14 # by * none |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
15 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
16 # Space separated list of LDAP hosts to use. host:port is allowed too. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
17 #hosts = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
18 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
19 # LDAP URIs to use. You can use this instead of hosts list. Note that this |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
20 # setting isn't supported by all LDAP libraries. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
21 #uris = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
22 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
23 # Distinguished Name - the username used to login to the LDAP server |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
24 #dn = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
25 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
26 # Password for LDAP server |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
27 #dnpass = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
28 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
29 # Use SASL binding instead of the simple binding. Note that this changes |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
30 # ldap_version automatically to be 3 if it's lower. Also note that SASL binds |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
31 # and auth_bind=yes don't work together. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
32 #sasl_bind = no |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
33 # SASL mechanism name to use. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
34 #sasl_mech = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
35 # SASL realm to use. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
36 #sasl_realm = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
37 # SASL authorization ID, ie. the dnpass is for this "master user", but the |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
38 # dn is still the logged in user. Normally you want to keep this empty. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
39 #sasl_authz_id = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
40 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
41 # Use TLS to connect to the LDAP server. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
42 #tls = no |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
43 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
44 # Use authentication binding for verifying password's validity. This works by |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
45 # logging into LDAP server using the username and password given by client. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
46 # The pass_filter is used to find the DN for the user. Note that the pass_attrs |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
47 # is still used, only the password field is ignored in it. Before doing any |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
48 # search, the binding is switched back to the default DN. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
49 #auth_bind = no |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
50 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
51 # If authentication binding is used, you can save one LDAP request per login |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
52 # if users' DN can be specified with a common template. The template can use |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
53 # the standard %variables (see user_filter). Note that you can't |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
54 # use any pass_attrs if you use this setting. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
55 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
56 # If you use this setting, it's a good idea to use a different |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
57 # dovecot-ldap.conf for userdb (it can even be a symlink, just as long as the |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
58 # filename is different in userdb's args). That way one connection is used only |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
59 # for LDAP binds and another connection is used for user lookups. Otherwise |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
60 # the binding is changed to the default DN before each user lookup. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
61 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
62 # For example: |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
63 # auth_bind_userdn = cn=%u,ou=people,o=org |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
64 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
65 #auth_bind_userdn = |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
66 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
67 # LDAP protocol version to use. Likely 2 or 3. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
68 #ldap_version = 2 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
69 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
70 # LDAP base. %variables can be used here. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
71 base = uid=someone, dc=foo, dc=bar, dc=org |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
72 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
73 # Dereference: never, searching, finding, always |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
74 #deref = never |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
75 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
76 # Search scope: base, onelevel, subtree |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
77 #scope = subtree |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
78 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
79 # User attributes are given in LDAP-name=dovecot-internal-name list. The |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
80 # internal names are: |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
81 # uid - System UID |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
82 # gid - System GID |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
83 # home - Home directory |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
84 # mail - Mail location |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
85 # |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
86 # There are also other special fields which can be returned, see |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
87 # http://wiki.dovecot.org/UserDatabase/ExtraFields |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
88 #user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
89 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
90 # Filter for user lookup. Some variables can be used (see |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
91 # http://wiki.dovecot.org/Variables for full list): |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
92 # %u - username |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
93 # %n - user part in user@domain, same as %u if there's no domain |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
94 # %d - domain part in user@domain, empty if user there's no domain |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
95 #user_filter = (&(objectClass=posixAccount)(uid=%u)) |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
96 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
97 # Password checking attributes: |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
98 # user: Virtual user name (user@domain), if you wish to change the |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
99 # user-given username to something else |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
100 # password: Password, may optionally start with {type}, eg. {crypt} |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
101 # There are also other special fields which can be returned, see |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
102 # http://wiki.dovecot.org/PasswordDatabase/ExtraFields |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
103 #pass_attrs = uid=user,userPassword=password |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
104 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
105 # If you wish to avoid two LDAP lookups (passdb + userdb), you can use |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
106 # userdb prefetch instead of userdb ldap in dovecot.conf. In that case you'll |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
107 # also have to include user_attrs in pass_attrs field prefixed with "userdb_" |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
108 # string. For example: |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
109 #pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,uidNumber=userdb_uid,gidNumber=userdb_gid |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
110 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
111 # Filter for password lookups |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
112 #pass_filter = (&(objectClass=posixAccount)(uid=%u)) |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
113 |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
114 # Default password scheme. "{scheme}" before password overrides this. |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
115 # List of supported schemes is in: http://wiki.dovecot.org/Authentication |
|
2a6ff0bbc932
Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
116 #default_pass_scheme = CRYPT |