annotate doc/dovecot-ldap-example.conf @ 9222:f850d37fae04 HEAD

Added tag 1.2.1 for changeset 557eb84a64ae
author Timo Sirainen <tss@iki.fi>
date Thu, 09 Jul 2009 22:56:51 -0400
parents e2251b0bd12b
children 7fa454048160
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
1 # This file is opened as root, so it should be owned by root and mode 0600.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
2 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
3 # http://wiki.dovecot.org/AuthDatabase/LDAP
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
4 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
5 # NOTE: If you're not using authentication binds, you'll need to give
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
6 # dovecot-auth read access to userPassword field in the LDAP server.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
7 # With OpenLDAP this is done by modifying /etc/ldap/slapd.conf. There should
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
8 # already be something like this:
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
9
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
10 # access to attribute=userPassword
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
11 # by dn="<dovecot's dn>" read # add this
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
12 # by anonymous auth
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
13 # by self write
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
14 # by * none
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
15
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
16 # Space separated list of LDAP hosts to use. host:port is allowed too.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
17 #hosts =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
18
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
19 # LDAP URIs to use. You can use this instead of hosts list. Note that this
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
20 # setting isn't supported by all LDAP libraries.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
21 #uris =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
22
8706
e2251b0bd12b dovecot-ldap-example.conf: Updated dn and dnpass comments.
Timo Sirainen <tss@iki.fi>
parents: 8704
diff changeset
23 # Distinguished Name - the username used to login to the LDAP server.
e2251b0bd12b dovecot-ldap-example.conf: Updated dn and dnpass comments.
Timo Sirainen <tss@iki.fi>
parents: 8704
diff changeset
24 # Leave it commented out to bind anonymously (useful with auth_bind=yes).
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
25 #dn =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
26
8706
e2251b0bd12b dovecot-ldap-example.conf: Updated dn and dnpass comments.
Timo Sirainen <tss@iki.fi>
parents: 8704
diff changeset
27 # Password for LDAP server, if dn is specified.
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
28 #dnpass =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
29
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
30 # Use SASL binding instead of the simple binding. Note that this changes
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
31 # ldap_version automatically to be 3 if it's lower. Also note that SASL binds
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
32 # and auth_bind=yes don't work together.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
33 #sasl_bind = no
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
34 # SASL mechanism name to use.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
35 #sasl_mech =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
36 # SASL realm to use.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
37 #sasl_realm =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
38 # SASL authorization ID, ie. the dnpass is for this "master user", but the
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
39 # dn is still the logged in user. Normally you want to keep this empty.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
40 #sasl_authz_id =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
41
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
42 # Use TLS to connect to the LDAP server.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
43 #tls = no
7191
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
44 # TLS options, currently supported only with OpenLDAP:
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
45 #tls_ca_cert_file =
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
46 #tls_ca_cert_dir =
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
47 #tls_cert_file =
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
48 #tls_key_file =
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
49 #tls_cipher_suite =
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
50 # Valid values: never, hard, demand, allow, try
1cbaa724aba8 Added support for OpenLDAP-specific TLS settings.
Timo Sirainen <tss@iki.fi>
parents: 6146
diff changeset
51 #tls_require_cert =
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
52
7397
8a4ecf4c2ca1 Added ldaprc_path setting.
Timo Sirainen <tss@iki.fi>
parents: 7396
diff changeset
53 # Use the given ldaprc path.
8a4ecf4c2ca1 Added ldaprc_path setting.
Timo Sirainen <tss@iki.fi>
parents: 7396
diff changeset
54 #ldaprc_path =
8a4ecf4c2ca1 Added ldaprc_path setting.
Timo Sirainen <tss@iki.fi>
parents: 7396
diff changeset
55
7396
a61102ad418f Added debug_level LDAP option to specify OpenLDAP's debug level.
Timo Sirainen <tss@iki.fi>
parents: 7191
diff changeset
56 # LDAP library debug level as specified by LDAP_DEBUG_* in ldap_log.h.
a61102ad418f Added debug_level LDAP option to specify OpenLDAP's debug level.
Timo Sirainen <tss@iki.fi>
parents: 7191
diff changeset
57 # -1 = everything. You may need to recompile OpenLDAP with debugging enabled
a61102ad418f Added debug_level LDAP option to specify OpenLDAP's debug level.
Timo Sirainen <tss@iki.fi>
parents: 7191
diff changeset
58 # to get enough output.
a61102ad418f Added debug_level LDAP option to specify OpenLDAP's debug level.
Timo Sirainen <tss@iki.fi>
parents: 7191
diff changeset
59 #debug_level = 0
a61102ad418f Added debug_level LDAP option to specify OpenLDAP's debug level.
Timo Sirainen <tss@iki.fi>
parents: 7191
diff changeset
60
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
61 # Use authentication binding for verifying password's validity. This works by
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
62 # logging into LDAP server using the username and password given by client.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
63 # The pass_filter is used to find the DN for the user. Note that the pass_attrs
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
64 # is still used, only the password field is ignored in it. Before doing any
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
65 # search, the binding is switched back to the default DN.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
66 #auth_bind = no
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
67
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
68 # If authentication binding is used, you can save one LDAP request per login
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
69 # if users' DN can be specified with a common template. The template can use
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
70 # the standard %variables (see user_filter). Note that you can't
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
71 # use any pass_attrs if you use this setting.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
72 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
73 # If you use this setting, it's a good idea to use a different
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
74 # dovecot-ldap.conf for userdb (it can even be a symlink, just as long as the
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
75 # filename is different in userdb's args). That way one connection is used only
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
76 # for LDAP binds and another connection is used for user lookups. Otherwise
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
77 # the binding is changed to the default DN before each user lookup.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
78 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
79 # For example:
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
80 # auth_bind_userdn = cn=%u,ou=people,o=org
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
81 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
82 #auth_bind_userdn =
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
83
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
84 # LDAP protocol version to use. Likely 2 or 3.
8704
ffcb2fb59c1d Changed default ldap_version from 2 to 3. Some servers no longer allow v2.
Timo Sirainen <tss@iki.fi>
parents: 7397
diff changeset
85 #ldap_version = 3
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
86
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
87 # LDAP base. %variables can be used here.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
88 base = uid=someone, dc=foo, dc=bar, dc=org
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
89
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
90 # Dereference: never, searching, finding, always
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
91 #deref = never
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
92
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
93 # Search scope: base, onelevel, subtree
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
94 #scope = subtree
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
95
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
96 # User attributes are given in LDAP-name=dovecot-internal-name list. The
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
97 # internal names are:
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
98 # uid - System UID
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
99 # gid - System GID
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
100 # home - Home directory
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
101 # mail - Mail location
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
102 #
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
103 # There are also other special fields which can be returned, see
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
104 # http://wiki.dovecot.org/UserDatabase/ExtraFields
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
105 #user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
106
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
107 # Filter for user lookup. Some variables can be used (see
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
108 # http://wiki.dovecot.org/Variables for full list):
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
109 # %u - username
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
110 # %n - user part in user@domain, same as %u if there's no domain
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
111 # %d - domain part in user@domain, empty if user there's no domain
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
112 #user_filter = (&(objectClass=posixAccount)(uid=%u))
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
113
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
114 # Password checking attributes:
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
115 # user: Virtual user name (user@domain), if you wish to change the
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
116 # user-given username to something else
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
117 # password: Password, may optionally start with {type}, eg. {crypt}
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
118 # There are also other special fields which can be returned, see
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
119 # http://wiki.dovecot.org/PasswordDatabase/ExtraFields
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
120 #pass_attrs = uid=user,userPassword=password
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
121
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
122 # If you wish to avoid two LDAP lookups (passdb + userdb), you can use
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
123 # userdb prefetch instead of userdb ldap in dovecot.conf. In that case you'll
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
124 # also have to include user_attrs in pass_attrs field prefixed with "userdb_"
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
125 # string. For example:
6146
bc5fdab698e3 Use \ for splitting long values to multiple lines.
Timo Sirainen <tss@iki.fi>
parents: 5883
diff changeset
126 #pass_attrs = uid=user,userPassword=password,\
bc5fdab698e3 Use \ for splitting long values to multiple lines.
Timo Sirainen <tss@iki.fi>
parents: 5883
diff changeset
127 # homeDirectory=userdb_home,uidNumber=userdb_uid,gidNumber=userdb_gid
5384
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
128
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
129 # Filter for password lookups
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
130 #pass_filter = (&(objectClass=posixAccount)(uid=%u))
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
131
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
132 # Default password scheme. "{scheme}" before password overrides this.
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
133 # List of supported schemes is in: http://wiki.dovecot.org/Authentication
2a6ff0bbc932 Renamed dovecot-sql/ldap.conf to dovecot-sql/ldap-example.conf. make install
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
134 #default_pass_scheme = CRYPT