Hello, I'm figuring out how to auth users against FreeIPA and I wonder if someone did this without GSAPI. My users are stored in a mysql DB where I wonder what I shall use as authname, the username or the mailaddress. As the mailaddress is always unique it could be best but if a user has multiple mailaddresses under seperate domains username might be better. Any clue here and maybe an example for dovecot-ldap.conf.ext when using FreeIPA ? Thanks! Matt
On 29.12.2016 04:47, Matt . wrote:> Hello, > > I'm figuring out how to auth users against FreeIPA and I wonder if > someone did this without GSAPI. > > My users are stored in a mysql DB where I wonder what I shall use as > authname, the username or the mailaddress. As the mailaddress is > always unique it could be best but if a user has multiple > mailaddresses under seperate domains username might be better. > > Any clue here and maybe an example for dovecot-ldap.conf.ext when > using FreeIPA ? > > Thanks! > > MattThe best idea is to use same username as you use in FreeIPA. This way you can use passdb with ldap to authenticate your users, and mysql userdb to get the settings from MySQL. Aki
Maybe Matching Threads
- @redhat - someone could take a look or ask about - freeipa-users@redhat.com
- FreeIPA 4.1.1 does not install on Cntos7
- can't login as subsequent FreeIPA users
- Authentication against FreeIPA without AD
- [PATCH server] add server-side groundwork for remote freeipa server