|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Alejandro Cabrera Obed (acabrera
sintys.gov.ar)
Date: Thu Apr 26 2007 - 10:23:31 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Gaël Lams wrote:
> Hola Alejandro
>
>> Dear all, I have two different servers: server A with openldap and
>> server B with Postfix. I need Postfix's users from server B to
>> authenticate against Openldap service directory from server A. But I
>> have a trouble: when I build the directory tree in the Openldap server
>> and add a mail user I put something like this:
>>
>> dn:uid=user,ou=people,dc=domain,dc=com
>> ....
>> HomeDirectory: /var/vmail/user
>> .....
>>
>> But /var/vmail/user is a path from the Postfix server and not from
>> Openldap server.
>
> l think that you are confusing authentication and mail delivery
> location, because /var/mail/user has nothing to do with the
> authentication.
>
> You can safely have Postfix and openldap on 2 different servers (and
> it's even better from a security point of view).
> In this set-up, the openldap directory is normally used by Postfix for
> 2 different thinks:
> - for SMTP authentication: Postfix uses LDAP (for instance through
> the Cyrus SASL daemon) to find the password. If the password the user
> provides matches the password stored in the LDAP directory, the user
> can send email (i.e authenticated relay) through Postfix
> - to store client parameters: Postfix will use LDAP to find the mail
> delivery location (i.e in your case /var/mail/user), i.e where on the
> Postfix server should the mail be delivered.
>
> Regards,
>
> Gaël
>
>
>
>> Will it works or what do I have to do in order to implement the
>> authentication ???
>>
>> Special thanks,
>>
>>
>> Alejandro
>>
>>
>>
Dear Gael, I notice the difference between authentication and mail
delivery location, so focusing only on mail delivery location in the
openldap directory is it OK to put "/var/vmail/user" or do I have to put
something like "10.1.1.200:/var/vmail/user" where 10.1.1.200 is the IP
from the Postfix server different from the openldap server (10.1.1.98) ???
Just this last question, really thanks.
Alejandro
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]