[hcoop/debian/courier-authlib.git] / README.ldap

LDAP support based on a patch by:
Luc Saillard <luc.saillard@alcove.fr>  Thu, 30 Dec 1999 20:33:08 +0100

Adapted as a generic authlib authentication module - SV 12/31/99.

Configuration File
------------------

     LDAP configuration is placed in the file authldaprc, which is installed,
     by default, as /usr/lib/courier-imap/etc/authldaprc.
     Use --with-authldaprc=pathname to override the location.

     This file must be owned by root and have the permissions set to 0400
     because the LDAP administrator password is stored in this file.

     See the default authldaprc for more information.

     CC both me and Luc Saillard for questions on authldap.

Schema
------

OpenLDAP 2.0 defaults to schema checking on all directories.  The file
authldap.schema contains a definition of a LDAP objects
CourierMailAccount, CourierMailAlias, and CourierDomainAlias.

Only CourierMailAccount is used for mailbox authentication (i.e. IMAP,
webmail).  The other two objects are used by LDAP-based mail routing
in the Courier Mail Server.

Here are some sample LDAP objects that use this schema:

dn: o=example, c=com
ObjectClass: organization
o: example
c: com

dn: mail=xyz123@example.com, o=example, c=com
ObjectClass: CourierMailAccount
mail: xyz123@example.com
mail: xyz123
clearPassword: tux
userPassword: {MD5}WrbkuYvH+3FvwH7Zj+34Ag==
homeDirectory: /home/xyz123
uidNumber: 1001
gidNumber: 1001

dn: mail=mailalias@example.com, o=example, c=com
ObjectClass: CourierMailAlias
mail: mailalias
maildrop: xyz123

dn: virtualdomain=domain.com, o=example, c=com
ObjectClass: CourierDomainAlias
virtualdomain: domain.com
virtualdomainuser: wxyz456


Notice on Luc's original patch:
-------------------------------

  Copyright (C) 1999 Luc Saillard

  This program is free software; you can redistribute it and/or modify
  it under the terms of the GNU General Public License as published by
  the Free Software Foundation; either version 2 of the License, or
  (at your option) any later version.

  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU General Public License for more details.

  You should have received a copy of the GNU General Public License
  along with this program; if not, write to the Free Software
  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
Commit	Line	Data
d9898ee8	1	LDAP support based on a patch by:
	2	Luc Saillard <luc.saillard@alcove.fr> Thu, 30 Dec 1999 20:33:08 +0100
	3
	4	Adapted as a generic authlib authentication module - SV 12/31/99.
	5
	6	Configuration File
	7	------------------
	8
	9	LDAP configuration is placed in the file authldaprc, which is installed,
	10	by default, as /usr/lib/courier-imap/etc/authldaprc.
	11	Use --with-authldaprc=pathname to override the location.
	12
	13	This file must be owned by root and have the permissions set to 0400
	14	because the LDAP administrator password is stored in this file.
	15
	16	See the default authldaprc for more information.
	17
	18	CC both me and Luc Saillard for questions on authldap.
	19
	20	Schema
	21	------
	22
	23	OpenLDAP 2.0 defaults to schema checking on all directories. The file
	24	authldap.schema contains a definition of a LDAP objects
	25	CourierMailAccount, CourierMailAlias, and CourierDomainAlias.
	26
	27	Only CourierMailAccount is used for mailbox authentication (i.e. IMAP,
	28	webmail). The other two objects are used by LDAP-based mail routing
	29	in the Courier Mail Server.
	30
	31	Here are some sample LDAP objects that use this schema:
	32
	33	dn: o=example, c=com
	34	ObjectClass: organization
	35	o: example
	36	c: com
	37
	38	dn: mail=xyz123@example.com, o=example, c=com
	39	ObjectClass: CourierMailAccount
	40	mail: xyz123@example.com
	41	mail: xyz123
	42	clearPassword: tux
	43	userPassword: {MD5}WrbkuYvH+3FvwH7Zj+34Ag==
	44	homeDirectory: /home/xyz123
	45	uidNumber: 1001
	46	gidNumber: 1001
	47
	48	dn: mail=mailalias@example.com, o=example, c=com
	49	ObjectClass: CourierMailAlias
	50	mail: mailalias
	51	maildrop: xyz123
	52
	53	dn: virtualdomain=domain.com, o=example, c=com
	54	ObjectClass: CourierDomainAlias
	55	virtualdomain: domain.com
	56	virtualdomainuser: wxyz456
	57
	58
	59	Notice on Luc's original patch:
	60	-------------------------------
	61
	62	Copyright (C) 1999 Luc Saillard
	63
	64	This program is free software; you can redistribute it and/or modify
65	it under the terms of the GNU General Public License as published by
66	the Free Software Foundation; either version 2 of the License, or
67	(at your option) any later version.
68
69	This program is distributed in the hope that it will be useful,
70	but WITHOUT ANY WARRANTY; without even the implied warranty of
71	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
72	GNU General Public License for more details.
73
74	You should have received a copy of the GNU General Public License
75	along with this program; if not, write to the Free Software
76	Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
77