Changed page "howto/SetupDovecot" by macports@alan.ferrency.com from 66.93.61.113* Page URL: <http://trac.macports.org/wiki/howto/SetupDovecot> Diff URL: <http://trac.macports.org/wiki/howto/SetupDovecot?action=diff&version=18> Revision 18 Comment: Describe using passdb pam and userdb passwd to get full system authentication with dovecot on OS X -------8<------8<------8<------8<------8<------8<------8<------8<-------- Index: howto/SetupDovecot ========================================================================= --- howto/SetupDovecot (version: 17) +++ howto/SetupDovecot (version: 18) @@ -87,4 +87,25 @@ Instead of using separate user and password files one can try set-up LDAP as user / password supply. +=== System User Authentication Using PAM and passwd === + +OS X supports PAM directly, and this can easily be configured to authenticate system users for dovecot. In dovecot.conf, use this to turn on PAM based password authentication for all users configured on the system: + +{{{ +passdb pam { + args = login +} +}}} + +Unfortunately, PAM can't provide any UID, GID, or home directory information for the system users. dovecot needs a separate "userdb" database to get this information, in order to allow IMAP loging successfully. OS X uses DirectoryServices to store password information, so you can't use "passdb passwd" to do user authentication. However, you can use "userdb passwd" to retrieve the UID, GID, and home directory after PAM has already authenticated your username/password. To do this: + +{{{ +userdb passwd { + args = +} +}}} + +Together, these prevent the need for hardcoded passwd.dovecot and userdb.dovecot files, and don't require any knowledge of LDAP. However, they only support system usernames, and not virtual mailboxes. I have tested this with IMAP and the dovecot LDA (deliver) successfully. + + [wiki:howto <- Back to the HOWTO section] -------8<------8<------8<------8<------8<------8<------8<------8<-------- * The IP shown here might not mean anything if the user or the server is behind a proxy. -- MacPorts <http://www.macports.org/> Ports system for Mac OS This is an automated message. Someone at http://www.macports.org/ added your email address to be notified of changes on howto/SetupDovecot. If it was not you, please report to .