[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL and mail attribute help



Michael Ströder wrote:
> Al Pacifico wrote:
> 
>>The examples at OpenLDAP show use of the uid attribute, which is not present
>>for all entries in my directory. I'm not sure how to map to the correct
>>authentication request DN.
> 
> 
> Simply fill the attribute uid of all entries by assigning each user who
> has to bind to OpenLDAP a unique user name.
> Or use another unique attribute like 'employeeNumber'.

Sorry, got you wrong.

What you're probably after is (example not tested!):

sasl-regexp
"uid=([a-zA-Z0-9]+),cn=(digest-md5|cram-md5|ntlm|plain|login|gssapi),cn=auth"
  "ldap:///dc=stroeder,dc=com??sub?(mail=$1)"

Note 'mail=$' in the LDAP URL.

Ciao, Michael