Cyrus - LDAP

De gacq wiki
Revisión del 08:58 13 dic 2009 de Gacq (discusión | contribuciones) (/etc/default/saslauthd.conf)
Saltar a: navegación, buscar

Packages

aptitude install cyrus-admin-2.2 cyrus-clients-2.2 cyrus-common-2.2 cyrus-doc-2.2 \
    cyrus-imapd-2.2 cyrus-pop3d-2.2 cyrus-sasl2-doc libsasl2-modules libsasl2-2 \
    libsasl2-modules-ldap sasl2-bin 
Other packages
aptitude install amavisd-new spamassassin clamav postgrey
aptitude install zoo unzip bzip2 unzoo mc nmap iftop htop
aptitude install phpldapadmin
aptitude install squirrelmail 
aptitude install mailman

Config files

/etc/imapd.conf

admins: cyrus
allowanonymouslogin: no
allowplaintext: yes
altnamespace: no
autocreatequota: 0
configdirectory: /var/lib/cyrus
defaultdomain: hostname.domain.com.ar
defaultpartition: default
hashimapspool: true
idlemethod: poll
idlesocket: /var/run/cyrus/socket/idle
lmtp_downcase_rcpt: yes
lmtpsocket: /var/run/cyrus/socket/lmtp
newsspool: /var/spool/news
notifysocket: /var/run/cyrus/socket/notify
partition-default: /var/spool/cyrus/mail
partition-news: /var/spool/cyrus/news
popminpoll: 0
sasl_auto_transition: no
sasl_mech_list: PLAIN LOGIN
sasl_pwcheck_method: saslauthd
sievedir: /var/spool/sieve
sieveusehomedir: false
syslog_prefix: cyrus
tls_ca_path: /etc/ssl/certs
tls_cipher_list: TLSv1+HIGH:!aNULL:@STRENGTH
tls_session_timeout: 1440
umask: 077
unixhierarchysep: yes
virtdomains: userid
#tls_ca_file: /etc/ssl/certs/server.crt
#tls_cert_file: /etc/ssl/certs/server.crt
#tls_key_file: /etc/ssl/certs/server.key


/etc/default/saslauthd

START=yes
DESC="SASL Authentication Daemon"
NAME="saslauthd"
MECHANISMS="ldap"
MECH_OPTIONS=""
THREADS=5
OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd"

/etc/default/saslauthd.conf

ldap_servers: ldap://ldap.dominio.org.ar/
ldap_version: 3
ldap_timeout: 10
ldap_time_limit: 10
ldap_cache_ttl: 30
ldap_cache_mem: 32768
ldap_scope: sub
ldap_search_base: dc=dominio,dc=org,dc=ar
ldap_auth_method: bind
ldap_bind_dn: cn=admin,dc=dominio,dc=org,dc=ar
ldap_password: lapass
#ldap_filter: uid=%U
ldap_filter: (|(mail=%u@%d)(mail=%u)(uid=%u))