> I have the patch, it has not yet been fully reviewed/integrated. If > anyone wants to test it "as is", it is attached.
Thanks. I took the patch and applied it. Is compiled without warnings. Just little bugs in the man page, which I am going to fix tomorrow. server_host = ldap://db.roessner-net.de/ ldap://ldapslave.roessner-net.de/ start_tls = yes tls_ca_cert_file = /ca/cacert_org.crt tls_cert = /ca/mx0.roessner-net.de/newcert.pem tls_key = /ca/mx0.roessner-net.de/newkey.pem tls_require_cert = yes search_base = ou=users,ou=people,dc=roessner-net,dc=de bind = yes sasl = yes sasl_mechs = EXTERNAL scope = sub query_filter = (&(objectClass=rnsMSPostfixAccount)(rnsMSRecipientAddress=%s)(rnsMSEnablePostfix=TRUE)) result_attribute = rnsMSDeliverToAddress version = 3 # debuglevel = 2 postmap -q "de10...@service.intern" ldap:/etc/postfix/ldap/test.cf At ldap.log: Sep 15 18:29:06 db slapd[1355]: conn=3021 op=1 do_bind Sep 15 18:29:06 db slapd[1355]: do_bind: dn () SASL mech EXTERNAL Sep 15 18:29:06 db slapd[1355]: do_bind: SASL/EXTERNAL bind: dn="cn=mx0.roessner-net.de" sasl_ssf=0 So it seems, it might work. I will paste the results when I have set up LDAP with appropriate settings (authz*) Christian
PGP.sig
Description: Signierter Teil der Nachricht
