]> Git — Sourcephile - sourcephile-nix.git/blob - servers/mermet/dovecot/ldap/sourcephile.conf
x509: send the key once for root, not one per service
[sourcephile-nix.git] / servers / mermet / dovecot / ldap / sourcephile.conf
1 debug_level = 0
2
3 # LDAP database
4 uris = ldapi://
5 base = ou=posix,dc=sourcephile,dc=fr
6 scope = subtree
7 deref = never
8 # NOTE: sufficient for small systems and uses less resources.
9 blocking = no
10
11 # LDAP auth
12 sasl_bind = yes
13 sasl_mech = EXTERNAL
14 #dn = cn=admin,dc=sourcephile,dc=fr
15 #dnpass = useless with sasl_mech=EXTERNAL
16 auth_bind = no
17 #auth_bind_userdn = cn=%n,ou=accounts,ou=posix,dc=dc=sourcephile,dc=fr
18
19 # dovecot passdb query
20 pass_filter = (&(objectClass=posixAccount)(uid=%n)(mailEnabled=TRUE))
21 pass_attrs = userPassword=password,\
22 uidNumber=userdb_uid,\
23 gidNumber=userdb_gid,\
24 mailStorageDirectory=userdb_mail,\
25 mailGroupMember=userdb_mail_access_groups=sourcephile,\
26 quotaBytes=userdb_quota_rule=*:bytes=%{ldap:quotaBytes},\
27 =user=%n@%d
28 #homeDirectory=userdb_home
29 default_pass_scheme = CRYPT
30
31 # dovecot userdb query
32 # For dovecot-lda
33 user_filter = (&(objectClass=posixAccount)(uid=%n)(mailEnabled=TRUE))
34 user_attrs = mailStorageDirectory=mail,\
35 uidNumber=uid,\
36 gidNumber=gid,\
37 mailQuota=quota_rule=*:bytes=%{ldap:quotaBytes}
38
39 # doveadm user query
40 iterate_attrs = =user=%{ldap:uid}@sourcephile.fr
41 iterate_filter = (&(objectClass=posixAccount)(mailEnabled=TRUE))