Files
@ 7977a2033d9a
Branch filter:
Location: majic-ansible-roles/roles/mail_server/templates/99-local.conf.j2 - annotation
7977a2033d9a
1.1 KiB
text/plain
Noticket: Fixed ldap_permissions module - if no olcAccess rules are defined, assume empty list (otherwise we get key lookup exception).
107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 1b50bc1cc817 107417b217e0 107417b217e0 107417b217e0 1b50bc1cc817 98d0bcf75e46 98d0bcf75e46 98d0bcf75e46 98d0bcf75e46 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 18cd76ec050d 18cd76ec050d 1a2f50dfce57 1a2f50dfce57 107417b217e0 107417b217e0 107417b217e0 107417b217e0 107417b217e0 1bdb64307968 107417b217e0 | # Authentication configuration.
auth_mechanisms = plain login
passdb {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf.ext
}
userdb {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf.ext
default_fields = uid={{ mail_user }} gid={{ mail_user }} home=/var/{{ mail_user}}/%d/%n
}
# Mail storage configuration.
mail_location = maildir:/var/{{ mail_user}}/%d/%n/Maildir
namespace inbox {
inbox = yes
separator = {{ imap_folder_separator }}
}
# Communication with other services.
service auth {
unix_listener /var/spool/postfix/private/auth {
mode = 0660
user = postfix
group = postfix
}
}
# TLS configuration.
ssl_cert = </etc/ssl/certs/{{ ansible_fqdn }}_imap.pem
ssl_key = </etc/ssl/private/{{ ansible_fqdn }}_imap.key
ssl_protocols = TLSv1.2
ssl_cipher_list = DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:!aNULL:!MD5:!EXPORT
ssl = required
# Mail delivery.
protocol lda {
mail_plugins = $mail_plugins sieve
postmaster_address = {{ mail_postmaster }}
}
|