Re: [exim] verify = recipient/callout --> Exchange2013

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M\Heiko Schlittermann at <-
MMPatrick von der Hagen at ->
Delete this message
Reply to this message
Author: Viktor Dukhovni
Date:  
To: exim-users
Subject: Re: [exim] verify = recipient/callout --> Exchange2013
On Mon, Nov 17, 2014 at 12:17:23AM +0100, Heiko Schlittermann wrote:

> Validation via LDAP/AD imposes several problems, I think.
> 
>     - The backend might have policies based on the sender.

Possible, but rare. 

>     - Unterstanding the AD structure of the Exchange (Forwardings,
>       Aliases, Groups, ?) is probably not straight forward ?

Actually it is rather simple, I've used this for a decade: 

    query_filter = proxyAddresses=smtp:%s
    result_attribute = mail


>     - The owner of the AD might have reasons not to expose the 
>       directory or parts of it to the front-end gateway.

They can always expose a slave copy. 

-- 
    Viktor.


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] verify = recipient/callout --> Exchange2013Re: [exim] verify = recipient/callout --> Exchange2013->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)