auth-system.conf.ext.erb 2.1 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071
  1. # Authentication for system users. Included from auth.conf.
  2. #
  3. # <doc/wiki/PasswordDatabase.txt>
  4. # <doc/wiki/UserDatabase.txt>
  5. # PAM authentication. Preferred nowadays by most systems.
  6. # PAM is typically used with either userdb passwd or userdb static.
  7. # REMEMBER: You'll need /etc/pam.d/dovecot file created for PAM
  8. # authentication to actually work. <doc/wiki/PasswordDatabase.PAM.txt>
  9. passdb {
  10. driver = pam
  11. # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>]
  12. # [cache_key=<key>] [<service name>]
  13. #args = dovecot
  14. }
  15. # System users (NSS, /etc/passwd, or similiar).
  16. # In many systems nowadays this uses Name Service Switch, which is
  17. # configured in /etc/nsswitch.conf. <doc/wiki/AuthDatabase.Passwd.txt>
  18. #passdb {
  19. #driver = passwd
  20. # [blocking=no]
  21. #args =
  22. #}
  23. # Shadow passwords for system users (NSS, /etc/shadow or similiar).
  24. # Deprecated by PAM nowadays.
  25. # <doc/wiki/PasswordDatabase.Shadow.txt>
  26. #passdb {
  27. #driver = shadow
  28. # [blocking=no]
  29. #args =
  30. #}
  31. # PAM-like authentication for OpenBSD.
  32. # <doc/wiki/PasswordDatabase.BSDAuth.txt>
  33. #passdb {
  34. #driver = bsdauth
  35. # [blocking=no] [cache_key=<key>]
  36. #args =
  37. #}
  38. ##
  39. ## User databases
  40. ##
  41. # System users (NSS, /etc/passwd, or similiar). In many systems nowadays this
  42. # uses Name Service Switch, which is configured in /etc/nsswitch.conf.
  43. userdb {
  44. # <doc/wiki/AuthDatabase.Passwd.txt>
  45. driver = passwd
  46. # [blocking=no]
  47. #args =
  48. }
  49. # Static settings generated from template <doc/wiki/UserDatabase.Static.txt>
  50. #userdb {
  51. #driver = static
  52. # Can return anything a userdb could normally return. For example:
  53. #
  54. # args = uid=500 gid=500 home=/var/mail/%u
  55. #
  56. # LDA and LMTP needs to look up users only from the userdb. This of course
  57. # doesn't work with static userdb because there is no list of users.
  58. # Normally static userdb handles this by doing a passdb lookup. This works
  59. # with most passdbs, with PAM being the most notable exception. If you do
  60. # the user verification another way, you can add allow_all_users=yes to
  61. # the args in which case the passdb lookup is skipped.
  62. #
  63. #args =
  64. #}