LDAP + Cyrus IMAP + Postfix on FC4

Craig White craigwhite at azapple.com
Sun Dec 18 00:42:43 UTC 2005 

On Sun, 2005-12-18 at 11:31 +1100, John Francis wrote:
> On 18/12/05, Alexander Dalloz <ad+lists at uni-x.org> wrote:
> > Am Sa, den 17.12.2005 schrieb John Francis um 4:14:
> >
> > No HTML list postings please.
> >
> 
> Oops.  Didn't realise GMail did that.
> 
> > > Does anyone have any tips or best practice pointers regarding setting
> > > up a mailserver system on an FC4 box.
> > >
> > > I would like to use Postfix as my MTA, Cyrus IMAP as the IMAP or POP
> > > server and I would like all authentication done through LDAP.  I will
> > > be using the Fedora Directory Server for LDAP.
> >
> > Recently did that myself. Though it is a hosting server running CentOS
> > 4.2 and OpenLDAP instead of FDS.
> >
> > > I have done some reading and fiddling around but haven't been able to
> > > get it going yet.  I am new to PAM concepts as well as Cyrus IMAP so
> > > any help in those areas in particular would be appreciated.
> >
> > Why PAM?
> 
> After doing some research I was pointed in the direction of
> /etc/pam.d/imap and /etc/pam.d/smtp.
> 
> >
> > > John Francis
> >
> > I suspect you have the FDS already running and all required user data
> > put into it. Means, querying the FDS by hand does provide you the
> > requested data.
> 
> Yes and no.  I do have user data in FDS but I'm not sure whether or
> not that data is sufficient for my purposes.  For example, how do I
> handle aliases, virtual domains, etc.
-----
what I do...

relevant postfix/main.cf entries...

ldap_server_host = localhost
ldap_search_base = ou=People,dc=example,dc=com
ldap_bind = yes
ldap_bind_dn = dc=example,dc=com
ldap_debug_level = 256

virtual_alias_maps = ldap:virtualAliases

virtualAliases_server_host = localhost
virtualAliases_search_base = ou=People,dc=example,dc=com
virtualAliases_query_filter = (|(mail=%s)(mailLocalAddress=%s))
virtualAliases_result_attribute = mail
virtualAliases_search_scope = one

relevant imapd.conf entries

tls_cert_file: /etc/ssl/mail.pem
tls_key_file: /etc/ssl/mail.key
tls_ca_file: /etc/ssl/example.ca-cacert.pem

ldap_uri: ldap://ldap.example.com
ldap_base: ou=People,dc=example,dc=com
ldap_bind_dn: cn=admin,dc=example,dc=com
ldap_passwd: PASSWORD
ldap_filter: (uid=%u)
ldap_group_base: ou=Group,dc=example,dc=com
ldap_group_scope: one

YMMV

Craig

More information about the fedora-list mailing list