Forum

 
Current User: Guest Login Register
Please consider registering


Register? | Lost Your Password?

Search Forums:


 






Minimum search word length is 4 characters – Maximum search word length is 84 characters
Wildcard Usage:
*  matches any number of characters    %  matches exactly one character

Home Forum Mail Server Postfix + Cyrus-Imapd via Kerberos with AD users.

Postfix + Cyrus-Imapd via Kerberos with AD users.
Page:   1   Reply to Post Add a New Topic
UserPost

8:37 am
February 28, 2011


SimbioS

New Member

posts 1
  Quote and Reply
  Report Post
Print this Post
1

Hi there.

I install on my gentoo OS, Postfix + Cyrus-Imapd +Cyrus-Sasl with Kerberos and ldap support.

1. Create keytab on my Windows srv 2008 (AD+KDC):

ktpass -princ host/srv-mydomain.local@MYDOMAIN.LOCAL -mapuser ldapmail@MYDOMAIN.LOCAL -crypto RC4-HMAC-NT -ptype KRB5_NT_SRV_INST -pass "mypasswd" -out c:\mail.keytab

2. Copy mail.keytab via SCP to linux server (srv-mydomain.local)

changed permission

chown root.kerberos /etc/mail/mail.keytab

where kerberos:

cat /etc/group | grep kerberos

kerberos::1100:root,postfix,cyrus

kinit this keytab:

kinit -V -k -t /etc/mail/mail.keytab host srv-mydomain.local@MYDOMAIN.LOCAL

Authenticated to Kerberos v5

3. saslauthd start with next option:

ps ax | grep sasl

27593 ? Ss 0:00 /usr/sbin/saslauthd -a kerberos5

cat smtp.conf

pwcheck_method: saslauthd

mech_list: gssapi

sasl_pwcheck_method: saslauthd

sasl_mech_list: gssapi

sasl_keytab: /etc/mail/mail.keytab

I want, my users to be held authenticated via Kerberos, without using a login & password.

Postfix & Cyrus-Imapd should verify the existence of these users in AD.

So what is my next steps ???

many thanks ALL for your help :)

Ross

8:54 am
March 1, 2011


consultant

Admin

posts 353
  Quote and Reply
  Report Post
Print this Post
2

Hi,

 

Sorry, that is not possible. What you want works only with Microsoft Exchange using Microsoft's proprietary Windows Authentication.
Page:   1   Reply to Post

Reply to Topic:
Postfix + Cyrus-Imapd via Kerberos with AD users.

Guest Name (Required):

Guest Email (Required):

Smileys
Confused Cool Cry Embarassed Frown Kiss Laugh Smile Surprised Wink Yell
Post New Reply

Guest URL (required)

Math Required!
What is the sum of:
2 + 3    

Topic RSS

About the Linux Mail Server Setup and Howto Guide Forum

Forum Timezone: America/New_York

Most Users Ever Online: 60

Currently Online:
25 Guests

Currently Browsing this Topic:
1 Guest

Forum Stats:

Groups: 2
Forums: 5
Topics: 343
Posts: 1062

Membership:

There are 966 Members
There have been 91 Guests

There is 1 Admin

Top Posters:

shanmugasundaram s – 46
Kendermin – 15
Ginger – 14
bighorn – 14
iron_michael86 – 12
Raminda – 11

Recent New Members: waveney, achal, niesul14, hesaum, sreevinodss, nasonov

Administrators: consultant (353 Posts)