On Sat, Sep 05, 2009 at 06:58:36AM +1200, Raimund Eimann wrote:
> Hi,
>
> maybe it's me having completely weird ideas, but the existing Google
> results for "postfix ldap howto" are not very satisfactory for me:
Wrong search criteria. LDAP is just a lookup mechanism, what are you
are asking for below is email for non-system (aka "virtual") users.
And for this the right document is:
http://www.postfix.org/VIRTUAL_README.html
You are free to implement the various tables involved in provisioning
non-system users via any supported table driver, including LDAP, but
the problem is NOT LDAP-specific.
You probably want virtual mailbox users, with mailboxes in IMAP. The
Postfix part is easy. Focus more on the IMAP and authentication
integration (Dovecot, Cyrus, ...) and the Postfix part generally
happens for "free" (validating valid user email addresses and forwarding
the mail to the IMAP server via LMTP or a "deliver" script).
Finally, you deploy a fully integrated system such as Zimbra...
> All I would like to do is to have a separate user base (stored in LDAP)
> from /etc/{passwd/shadow} on my Linux box for all email-related issues. So
> far I was always annoyed that the default setup of Postfix (openSuSE,
> dunno about other distros) uses /etc/passwd to look up users, because that
> means evry added mail-user automatically also becomes an SSH user (for
> instance) without me intending this. This becomes particularly tricky if
> such a user pick "secret" as his/her password.
>
> What I find in the howto(s) are discussions about alias mapping via LDAP
> or setting up some catchall user or setting up mail distribution groups.
> Far too advanced for me. All I want is LDAP user lookup for incoming mail
> and user authentication for outgoing mail. Ideally, I would like to use
> two different branches of the LDAP tree for OS logins and mail logins.
>
> Either the info how to do this is very well hidden, or I'm looking for the
> wrong keywords, or my idea is so strange that no one's ever done such
> nonsense before (hence the apparent lack of documentation), or I simply
> missed the right spots in the howto(s).
You are looking in the wrong place. This is not a Postfix issue, the
bulk of the problem is a mail-store management problem, the MTA part
is trivial.
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majord...@postfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
