Differences

This shows you the differences between two versions of the page.

Link to this comparison view

unix:dovecot_ldap [2010/01/12 13:29] (current)
Line 1: Line 1:
 +====== Setup d'un dovecot en ssl avec du ldap en dedans ======
 +Pour le ssl, nous supposerons que vous avez déjà votre certificat ssl dans /​etc/​ssl/​certs/​dovecot.pem et votre clé dans /​etc/​ssl/​private/​dovecot.pem.
 +
 +===== Conf de dovecot =====
 +Voilà la conf de dovecot, en super condensé:
 +  protocols = imap imaps pop3s
 +  log_timestamp = "​%Y-%m-%d %H:%M:%S "
 +  ssl_cert_file = /​etc/​ssl/​certs/​dovecot.pem
 +  ssl_key_file = /​etc/​ssl/​private/​dovecot.pem
 +  # on desactive l'auth en pas-ssl a part sur 127.0.0.1, utile pour un webmail.
 +  disable_plaintext_auth=yes ​
 +  mail_extra_groups = mail
 +  protocol imap {
 +  }
 +  protocol pop3 {
 +  pop3_uidl_format = %08Xu%08Xv
 +  }
 +  auth default {
 +  mechanisms = plain
 +  # la conf du ldap se fera dans /​etc/​dovecot/​dovecot-ldap.conf
 +  passdb ldap {
 +    args = /​etc/​dovecot/​dovecot-ldap.conf
 +  }
 +  userdb ldap {
 +    args = /​etc/​dovecot/​dovecot-ldap.conf
 +  }
 +  user = root
 +  }
 +  dict {
 +  }
 +  plugin {
 +  }
 +
 +/​etc/​dovecot/​dovecot-ldap.conf
 +  # à adapter selon votre serveur ldap
 +  hosts = 127.0.0.1
 +  dn = cn=proxyuser,​dc=domaine,​dc=org
 +  dnpass = proxy
 +  auth_bind = yes
 +  ldap_version = 3
 +  base = ou=People, dc=domaine, dc=org
 +  scope = subtree
 +  user_attrs = homeDirectory=home,​uidNumber=uid,​gidNumber=gid
 +  user_filter = (&​(objectClass=posixAccount)(uid=%u))
 +  pass_attrs = uid=user,​userPassword=password
 +  pass_filter = (&​(objectClass=posixAccount)(uid=%u))
 +  default_pass_scheme = CRYPT
 +
 +===== Restart && run =====
 +  /​etc/​init.d/​dovecot restart
 +
 +Et hop.
  
unix/dovecot_ldap.txt · Last modified: 2010/01/12 13:29 (external edit)