cyrus imap, LDAP userdb, GSSAPI
John Morris
cyrus at butchwax.com
Fri Mar 19 12:36:28 EST 2004
Thanks for the good info! Let me clarify some.
I have an existing LDAP directory (NOT Active Directory) that holds my
UNIX users and groups, and holds virtual mail accounts for users that
don't need logins. LDAP provides the authorization half of the story.
Users are authenticated against my kerberos 5 database. I'm assuming
so far that Cyrus+SASL+GSSAPI can accomplish this.
What I'm trying to avoid is using a cyradm-like program to set up new
user mailboxes in the mailboxes.db file; doing so breaks my scheme of
administering users from a central database.
How far off-base am I here? Thanks again for your good advice!
John
Cristian Mitrana <cmitrana at xnet.ro> writes:
> John Morris wrote:
> > Hi!
> > Can Cyrus store a list of virtual users in an LDAP backend?
> >
>
> Cyrus-imapd relies on Cyrus-SASL for authenticating users, so you
> should consider investigating whether Cyrus-SASL could accomplish
> what you need.
> LDAP userdb auxprop plugin authenticates users using their information
> from their LDAP account (or somth). Since this is not what you want,
> I don't think it's useful to you ( you don't want LDAP authentication).
> You should explain more clearly what you intend to do. Do you
> already have a KDC with your users in it ?
>
> As for ldap-pts, what's for authorization and not authentication.
>
> mitu
> ---
> Home Page: http://asg.web.cmu.edu/cyrus
> Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
--
John Morris
+1-512-480-0200x1002
---
Home Page: http://asg.web.cmu.edu/cyrus
Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus
mailing list