17 messages in net.sourceforge.lists.courier-usersRe: [courier-users] authldap against ...
FromSent OnAttachments
Arturo 'Buanzo' BusleimanOct 19, 2007 4:35 am 
Jerry AmundsonOct 19, 2007 7:20 am 
Arturo 'Buanzo' BusleimanOct 19, 2007 2:39 pm 
Larry MooreOct 19, 2007 4:31 pm 
Arturo 'Buanzo' BusleimanOct 19, 2007 5:41 pm 
Larry MooreOct 19, 2007 7:08 pm 
Arturo 'Buanzo' BusleimanOct 19, 2007 7:18 pm 
Sam VarshavchikOct 19, 2007 8:01 pm 
Arturo 'Buanzo' BusleimanOct 20, 2007 5:24 am 
Sam VarshavchikOct 20, 2007 6:02 am 
Larry MooreOct 20, 2007 3:37 pm 
Larry MooreOct 20, 2007 3:53 pm 
Arturo 'Buanzo' BusleimanOct 22, 2007 6:26 am 
Enda CronnollyOct 22, 2007 6:33 am 
Arturo 'Buanzo' BusleimanOct 22, 2007 1:18 pm 
Larry MooreOct 22, 2007 5:35 pm 
Larry MooreOct 22, 2007 5:38 pm 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:Re: [courier-users] authldap against ADS+SFU 3.5Actions...
From:Larry Moore (lmo@starwon.com.au)
Date:Oct 22, 2007 5:38:29 pm
List:net.sourceforge.lists.courier-users

Enda Cronnolly wrote:

Which seems to work. Which POSIX fields did you encounter problems with?

I see there is no LDAP_CLEARPW or LDAP_CRYPTPW option set. Any comments on that, Larry?

If you use authenticated binds the LDAP / AD server will verify the passwords and courier does not need to query those fields from the schema. In this scenario, courier will not be able to change the password either (from the webmail) which may be highly desirable in an AD setup.

Perhpas it may be time to think of another authentication mechanism, Kerberos, for which password changing can be performed as a standard Kerberos function.

Any comments on this Sam?

Larry.