First off, sorry if this has been asked before - I have looked, honest. Is it possible to get dovecot to authenticate users against active directory, treating the AD as a plain ldap server? I have this working with cyrus saslauthd. Currentlt I get a long delay (30 seconds or so) then * BYE Disconnected for inactivity. All I get in the maillog is imap-login: Disconnected: Inactivity [::ffff:127.0.0.1] I am using dovecot-0.99.11-2.EL4.1 on CentOS 4. If anybody has got this to work then please let me know - otherwise I will be forced to use Cyrus........ Cheers Dave Smith
Dave Smith wrote:> First off, sorry if this has been asked before - I have looked, honest. > > Is it possible to get dovecot to authenticate users against active > directory, treating the AD as a plain ldap server? I have this working > with cyrus saslauthd. >I have it working with PAM and pam_ldap in 1.0-stable/alpha1, but with userdb = passwd (we have users in NIS as well as AD). Search the mail archives for details! LDAP auth won't work directly as it expects to find a hashed version of the password.> I am using dovecot-0.99.11-2.EL4.1 on CentOS 4.Probably a good idea to upgrade to dovecot-1.0-stable or dovecot-1.0-alpha1 (0.99.11 is pretty old, even 0.99.14 is pretty well obsolete). Best Wishes, Chris -- --+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+- Christopher Wakelin, c.d.wakelin at reading.ac.uk IT Services Centre, The University of Reading, Tel: +44 (0)118 378 8439 Whiteknights, Reading, RG6 2AF, UK Fax: +44 (0)118 975 3094
Jeff A. Earickson
2005-Aug-28 00:03 UTC
[Dovecot] Dovecot and Active Directory Authentication
Hi, I have this working flawlessly, but... I'm running dovecot 1.0alpha1 (in production for 3000 users) on a Solaris 9 system that is a Kerberos client of Active Directory. All authentication to the Sun box uses Kerberos/AD (ssh, imap, ftp, etc). PAM is the controlling agent that talks to AD as a Kerberos client. So, my dovecot config just uses PAM. Life is good. Jeff Earickson Colby College On Fri, 26 Aug 2005, Dave Smith wrote:> Date: Fri, 26 Aug 2005 11:00:11 +0100 > From: Dave Smith <dave at grantsmith.uklinux.net> > To: dovecot at dovecot.org > Subject: [Dovecot] Dovecot and Active Directory Authentication > > First off, sorry if this has been asked before - I have looked, honest. > > Is it possible to get dovecot to authenticate users against active directory, > treating the AD as a plain ldap server? I have this working with cyrus > saslauthd. > > Currentlt I get a long delay (30 seconds or so) then > * BYE Disconnected for inactivity. > > All I get in the maillog is > > imap-login: Disconnected: Inactivity [::ffff:127.0.0.1] > > I am using dovecot-0.99.11-2.EL4.1 on CentOS 4. > > If anybody has got this to work then please let me know - otherwise I will be > forced to use Cyrus........ > > Cheers > > Dave Smith >