[Dovecot] LDAP binds

Trever L. Adams trever.adams at gmail.com
Tue Dec 28 19:32:06 EET 2010


I am using 2.0.8. Anonymous binds are no longer supported in the
environment I am using. I need to change my userdb ldap setup to bind. I
believe the ldap server does Kerberos (or can) authentication. My users
are authenticating using Kerberos or Kerberos/PAM. This needs to stay in
place.

Can anyone suggest how I might go about changing my setup to work?

My current ldap setup is as follows (the directories, user id, etc are
set statically in the configuration elsewhere):
tls = yes
hosts = MAILSERVER
base = dc=middleearth,dc=sapphiresunday,dc=org
ldap_version = 3
user_attrs =  userPrincipalName=user
user_filter =
(&(objectClass=person)(|(mail=%u)(sAMAccountName=%u)(userPrincipalName=%u)))
# For using doveadm -A:
iterate_attrs = userPrincipalName=user
iterate_filter = (objectClass=person)

Thank you,
Trever Adams
-- 
"Seize the day, put no trust in the morrow!" -- Quintus Horatius Flaccus
(Horace)


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: OpenPGP digital signature
Url : http://dovecot.org/pipermail/dovecot/attachments/20101228/e4946f2a/attachment.bin 


More information about the dovecot mailing list