Aine Douglas wrote: >> If you do it from the LDAP with multiple accounts accessing the same >> mailbox, be sure to disable pop / imap / web access etc to avoid a >> security >> risk of having accounts pointing the maidirs whoose passwords never get >> changed. > > I use the standard LDAP schema file distributed with courier, and have > those fields for disabling pop / imap ./ web etc, i've changed the > flags from 0 to 1, but it doesn't disable the services for that > username. Any idea what configuration I'm missing??
Its easy to check this to see what is happening. First do an authtest on the mail account in question, what do you get back in the "options" line? Nothing? then you've not configured authlib to pick up the options and courier-mta has no access to those disable ldap fields. uncomment the configuration line LDAP_AUXOPTIONS and make it look something like: LDAP_AUXOPTIONS disableimap=disableimap, disablepop3=disablepop3, disablewebmail=disablewebmail which for the provided schema should do exactly what you are looking for. Restart authlib do an authtest again, and you should get the values for those parameters returned from the ldap query, and all should be good! Have fun! -Enda. ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
