Has anybody managed to have Dovecot authenticate to Microsoft Active Directory? I've tried to get it to work using LDAP and the following settings dovecot.conf: userdb = ldap /etc/dovecot-ldap.conf passdb = ldap /etc/dovecot-ldap.conf dovecot-ldap.conf: hosts = rdg-home.ad.rdg.ac.uk dn = cn=bind-user,cn=users,dc=rdg-home,dc=ad,dc=rdg,dc=ac,dc=uk dnpass = XXXXX ldap_version = 2 base = dc=rdg-home,dc=ad,dc=rdg,dc=ac,dc=uk user_filter = (sAMAccountName=%u) pass_filter = (sAMAccountName=%u) I've also tried things like "(&(objectClass=sAMACcountName)(cn=%u))" to no avail. It appears to bind properly, but never finds the account, so login fails. I've had Active Directory authentication working with Squid and with Cyrus SASL/IMAP. Best Wishes, Chris --+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+-- Christopher Wakelin, c.d.wakelin at reading.ac.uk IT Services Centre, The University of Reading, Tel: +44 (0)118 378 8439 Whiteknights, Reading, RG6 2AF, UK Fax: +44 (0)118 975 3094
Dominik 'Rathann' Mierzejewski
2005-Mar-15 14:16 UTC
[Dovecot] Authentication to Active Directory
On Tue, Mar 15, 2005 at 09:25:51AM +0000, Chris Wakelin wrote:> Has anybody managed to have Dovecot authenticate to Microsoft Active > Directory? > > I've tried to get it to work using LDAP and the following settings[...]> I've also tried things like "(&(objectClass=sAMACcountName)(cn=%u))" to > no avail. It appears to bind properly, but never finds the account, so > login fails.If it doesn't find the account then it means it either didn't bind properly or the filter expression is wrong. Try to find the right expression manually using ldapsearch first. Regards, -- Dominik 'Rathann' Mierzejewski <rathann*at*icm.edu.pl> Interdisciplinary Centre for Mathematical and Computational Modelling Warsaw University | http://www.icm.edu.pl | tel. +48 (22) 5540810