Δημήτριος Καραπιπέ
2009-Oct-07 10:29 UTC
[Dovecot] Is it possible to authenticate against Active Direcotry using the whole e-mail?
Hi all! Is it possible to authenticate against Active Directory, using the whole e-mail address and not the user part (%n), so that if you support mutiple domains, all users should authenticate with their e-mail addresses. I use auth_bind_userdn = DOMAIN \ %u but somehow the *mail* attribute of Active/LDAP should be employed. thanks in advance Dimitrios Karapiperis
Patrick Domack
2009-Oct-07 11:13 UTC
[Dovecot] Is it possible to authenticate against Active Direcotry using the whole e-mail?
Yes, it's possible to do this. But not possible using auth_bind. You are going have to login using an administrator account, then do an ldap search for the email address, then authenicate against it. Using auth_bind requires you to know the username before you login. http://wiki.dovecot.org/AuthDatabase/LDAP/PasswordLookups Just need to change passfilter to do a ?proxy_email? or what it's called for ad Quoting ????????? ??????????? <dimkar at thessaloniki.gr>:> Hi all! > > Is it possible to authenticate against Active Directory, using the > whole e-mail address and not > the user part (%n), so that if you support mutiple domains, all > users should authenticate with their e-mail addresses. > > I use > auth_bind_userdn = DOMAIN \ %u > but somehow the *mail* attribute of Active/LDAP should be employed. > > > thanks in advance > Dimitrios Karapiperis > >