I make postfix relay recipient via ldap and I want an exception email addresses can not look up but have not been successful, my configuration
server_host = 1.1.1.1.1 ldap_search_base = o = example, c = com bind = no query_filter = (| (mail =% s) (mailAlternateAddress =% s)) (! (mail = group@example.com))) result_attribute = mail
I want group@example.com can not look up, but have not been successful, how correct configuration?
On Sun, 23 Feb 2014, Rony wrote:
I make postfix relay recipient via ldap and I want an exception email addresses can not look up but have not been successful, my configuration
server_host = 1.1.1.1.1 ldap_search_base = o = example, c = com bind = no query_filter = (| (mail =% s) (mailAlternateAddress =% s)) (! (mail = group@example.com))) result_attribute = mail
I want group@example.com can not look up, but have not been successful, how correct configuration?
For one thing, actually posting some logs/error messages/etc. would be helpful, there's no reason for mind reading if there's data available (and this looks like a situation where there would be.)
With that said, I'm pretty sure you've got an invalid filter, and if I'm interpreting your desires correctly it would be something closer to
(&(|(uid=richton)(cn=richton))(!(uid=root)))
Of course s/uid/mail. If you have any follow-ups please post some error messages and logs (ideally both from postfix and slapd; slapd should probably be at debug level "stats trace acl" or greater in this case.)
openldap-technical@openldap.org
-
Aaron Richton -
Rony