8 # NOTE: sufficient for small systems and uses less resources.
15 #dnpass = useless with sasl_mech=EXTERNAL
16 # DOC: https://wiki.dovecot.org/AuthDatabase/LDAP/AuthBinds
17 # Using auth_bind is a bit more secure : dovecot does not need
18 # to have read acces to userPassword.
20 auth_bind_userdn = uid=%n,ou=accounts,ou=posix,dc=%Dd
22 ## dovecot passdb query
23 #pass_filter = (&(objectClass=posixAccount)(uid=%n)(mailEnabled=TRUE))
24 #pass_attrs = uidNumber=userdb_uid,\
25 # gidNumber=userdb_gid,\
26 # mailStorageDirectory=userdb_mail,\
27 # =userdb_mail_access_groups=sourcephile,\
28 # quotaBytes=userdb_quota_rule=*:bytes=%{ldap:quotaBytes},\
30 # #homeDirectory=userdb_home
31 #default_pass_scheme = SSHA
33 # dovecot userdb query
35 user_filter = (&(objectClass=posixAccount)(uid=%n)(mailEnabled=TRUE))
36 user_attrs = mailStorageDirectory=mail,\
39 mailStorageDirectory=mail,\
40 mailGroupMember=mail_access_groups,\
41 quotaBytes=quota_rule=*:bytes=%{ldap:quotaBytes}
44 iterate_attrs = =user=%{ldap:uid}@%d
45 iterate_filter = (&(objectClass=posixAccount)(mailEnabled=TRUE))