Gitea-John71/LLDAP
2
0
Fork 0
mirror of https://github.com/lldap/lldap.git synced 2026-04-05 14:48:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

example_configs: reduce privileges for stalwart bind user

Browse Source 
Update instructions for read_only bind
This commit is contained in:
xeoneox
2025-02-21 10:02:08 -05:00
committed by GitHub
parent f34fa1d701
commit e22d17dca6
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
example_configs/stalwart.md
View File

@@ -1,13 +1,12 @@
# Stalwart Mailserver
[Stalwart-mailserver](https://github.com/stalwartlabs/mail-server) is a Production-ready full-stack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) written in Rust.
[Stalwart-mailserver](https://github.com/stalwartlabs/mail-server) is a Production-ready full-stack but simple mail server (SMTP, JMAP, IMAP, Sieve, LDAP, Antispam, Antivirus, etc.) written in Rust.
To integrate with LLDAP,
1. Add manager user, & make sure to add to lldap_admin group for read/write permission
(TODO: Check if lldap_strict_readonly is enough)
1. Create "manager" user, & make sure to add it to lldap_strict_readonly group for bind permission
3. Create mail group, add users requiring email access
3. Create "mail" group, & add users requiring email access
4. Ensure you correctly add the following ldap settings to your Stalwart `config.toml`.
@@ -32,7 +31,7 @@ To integrate with LLDAP,
0 = "displayName"
[directory.ldap.bind]
dn = "uid=manager,ou=people,dc=example,dc=org"
secret = "<YOUR_SECRET>"
secret = "<YOUR_MANAGER_PASSWORD>"
[directory.ldap.bind.auth]
dn = "uid=?,ou=people,dc=example,dc=org"
enable = true