Re: [exim] LDAP lookup and cocanation

Top Pagina
Deze boodschap maakt deel uit van devolgende draad:
Mde volledige draad-boom gesorteerd op datum
M\Ben Wheare op <-
MMJosip Rodin op ->
Delete this message
Reply to this message
Auteur: Nigel Wade
Datum:  
Aan: exim-users
Onderwerp: Re: [exim] LDAP lookup and cocanation
Ben Wheare wrote:
> Josip Rodin wrote:
>> On Wed, Nov 29, 2006 at 04:51:59PM +0000, Ben Wheare wrote:
>>> Could I do this:
>>> [in transport]
>>> ...
>>> maildir_format
>>> directory = /maildirs/${lookup
>>> ldap{ldap:///mailalias=$local_part,ou=Users,dc=domain,dc=net?userid}}/
>>> ...
>>> ?
>>>
>>> Unfortunately I can't test it yet as we're still in the process of
>>> setting LDAP up here, I just want to be sure I know how to sort Exim out
>>> first.
>> Given that you probably want to also enable access to that mailbox for
>> Joe Bloggs :) you might wish to extend your thinking to using something like
>> pam_ldap for authentication and authorization on the mail server, so that
>> you could simply get the users and their home directories via PAM, and leave
>> it to appendfile driver's 'create_file = belowhome' option to worry about that.
>> Of course, if you'll only let them use the mail server e.g. via a web
>> frontend which will also use LDAP directly, then that's probably needless.
>>
>
>
> Thanks for the thought, but its solely for virtual users. What we're
> trying to build is a Samba PDC and mail server, all for virtual users,
> that will only have access to that.
> Only 2/3 people will have access to the server itself, and that'll be
> via standard /etc/passwd, adduser etc. Yeah, I'm sure we could do it all
> via LDAP, but we are all learning it as we go along, so trying to keep
> it simple at first :)
>
>

Won't the virtual users still need to access their mailbox? I think that is what
Josip was getting at. How do your virtual users read their mail?

If it's by Webmail, POP, IMAP then presumably they need to authenticate to
access it. That authentication can be handled by pam_ldap, using the relevant
attributes in the LDAP directory. You can also use LDAP to specify the user's
home directory, and this can be created automatically when they receive their
first message by the appendfile transport. 

-- 
Nigel Wade, System Administrator, Space Plasma Physics Group,
             University of Leicester, Leicester, LE1 7RH, UK
E-mail :    nmw@???
Phone :     +44 (0)116 2523548, Fax : +44 (0)116 2523555



Deze boodschap werd naar devolgende mailinglijsten gestuurd:
Exim-users
Mailing Lijst Info | Nabije Berichten		<-Re: [exim] quota updateRe: [exim] Explanation of the working of verify = sender->
Tahini and Hummus and Cumin Development Archives beheerd door cumin AdminsLurker (versie 2.3)