<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
Marten Lehmann wrote:
<blockquote cite="mid4517B132.3030907@cnm.de" type="cite">Hello,
<br>
<br>
we will use LDAP through saslauthd to authenticate our users.
<br>
<br>
Is there a way to authenticate admin-users a different way at the same
time? Best would be to hardcode a md5-password within the imapd.conf or
to use /etc/passwd for that. But I don't want to pass everything
through PAM just to authenticate the admin user.
<br>
<br>
</blockquote>
Hi,<br>
<br>
You can use saslauthd/LDAP for your users and a local sasldb2 file for
your admins. You don't need PAM at all.<br>
<br>
I use both LDAP and sasldb with these config lines:<br>
<ul>
<li>sasl_pwcheck_method: auxprop saslauthd</li>
<li>sasl_auxprop_plugin: sasldb</li>
</ul>
The following commands, sasldblistusers2 & saslpasswd2, can be used
to administer the /etc/sasldb2 file.<br>
<br>
With this configuration you will have the added benefit of digest-md5
or cram-md5 authentication for your admins (but not for LDAP users
AFAIK, unless using cleartext password in the LDAP directory, which I
wouldn't do).<br>
<br>
Regards<br>
<pre class="moz-signature" cols="72">--
Farzad FARID <a class="moz-txt-link-rfc2396E" href="mailto:ffarid@pragmatic-source.com"><ffarid@pragmatic-source.com></a>
Architecte Open Source / Pragmatic Source
<a class="moz-txt-link-freetext" href="http://www.pragmatic-source.com/">http://www.pragmatic-source.com/</a></pre>
</body>
</html>