On Sun, 2005-12-18 at 11:31 +1100, John Francis wrote: > On 18/12/05, Alexander Dalloz <ad+lists@xxxxxxxxx> wrote: > > Am Sa, den 17.12.2005 schrieb John Francis um 4:14: > > > > No HTML list postings please. > > > > Oops. Didn't realise GMail did that. > > > > Does anyone have any tips or best practice pointers regarding setting > > > up a mailserver system on an FC4 box. > > > > > > I would like to use Postfix as my MTA, Cyrus IMAP as the IMAP or POP > > > server and I would like all authentication done through LDAP. I will > > > be using the Fedora Directory Server for LDAP. > > > > Recently did that myself. Though it is a hosting server running CentOS > > 4.2 and OpenLDAP instead of FDS. > > > > > I have done some reading and fiddling around but haven't been able to > > > get it going yet. I am new to PAM concepts as well as Cyrus IMAP so > > > any help in those areas in particular would be appreciated. > > > > Why PAM? > > After doing some research I was pointed in the direction of > /etc/pam.d/imap and /etc/pam.d/smtp. > > > > > > John Francis > > > > I suspect you have the FDS already running and all required user data > > put into it. Means, querying the FDS by hand does provide you the > > requested data. > > Yes and no. I do have user data in FDS but I'm not sure whether or > not that data is sufficient for my purposes. For example, how do I > handle aliases, virtual domains, etc. ----- what I do... relevant postfix/main.cf entries... ldap_server_host = localhost ldap_search_base = ou=People,dc=example,dc=com ldap_bind = yes ldap_bind_dn = dc=example,dc=com ldap_debug_level = 256 virtual_alias_maps = ldap:virtualAliases virtualAliases_server_host = localhost virtualAliases_search_base = ou=People,dc=example,dc=com virtualAliases_query_filter = (|(mail=%s)(mailLocalAddress=%s)) virtualAliases_result_attribute = mail virtualAliases_search_scope = one relevant imapd.conf entries tls_cert_file: /etc/ssl/mail.pem tls_key_file: /etc/ssl/mail.key tls_ca_file: /etc/ssl/example.ca-cacert.pem ldap_uri: ldap://ldap.example.com ldap_base: ou=People,dc=example,dc=com ldap_bind_dn: cn=admin,dc=example,dc=com ldap_passwd: PASSWORD ldap_filter: (uid=%u) ldap_group_base: ou=Group,dc=example,dc=com ldap_group_scope: one YMMV Craig
