Quoting Aine Douglas <aine...@gmail.com>:
Hi guys,
I'm setting up a new email server, and am at the stage where I'm about
to configure up OpenLdap with a suitable schema.
I reviewed the last server's config, and its confusing me... hoping
someone here can help. The last server has courier authlib
authenticating against an OpenXchange ldap schema, and authldaprc has
the following setting:
LDAP_BASEDN dc=domainname, dc=com
LDAP_MAIL uid
The users that authlib sucessfully authenticates against are located
in LDAP at:
uid=ema...@address.com,ou=Users,ou=OxObjects,dc=domainname,dc=com
Shouldn't the uid component be just below dc in order for authlib to
find it? Or does the authldap module search recursively below the
basedn for a uid field matching what was presented for authentication?
The reason I ask is that the server I'm working on will handle many
more domains and users, and I'd like to organise the LDAP such that
the UID's aren't all in the same branch of the tree, but rather a
branch per domain name and all the domains respective UID's there. If
authlib/authldap recursively searches, then this is possible, but if
I'm missing something then clearly I can't do this!!
You might just want to use the about but add
LDAP_FILTER (objectClass=CourierMailAccount)
and in your ldap reorganization.
You will probably want to add something like
LDAP_URI
ldap://localhost/dc=domainname,dc=com?mail?sub?(objectClass=CourierMailAccount)
in your configuration.
If you have a better and more efficient way of doing it, I would be
interested.
Hope this helps,
ed
Any guidance appreciate.
Thanks,
Aine.
4 messages in net.sourceforge.lists.courier-usersRe: [courier-users] Authldap configur...
