diff options
| author |  Joe Banks <[email protected]> | 2024-08-04 19:52:36 +0100 |
|---|---|---|
| committer | Joe Banks <[email protected]> | 2024-08-04 19:52:36 +0100 |
| commit | 8ab62dcd69333f87e78267fb1f2961d140ae4566 (patch) | |
| tree | 685f0b150581737791d4ae60d24a4155d70bb44b | |
| parent | sasl: Run SASL role on mailservers (diff) | |
sasl: only allow service accounts to authenticate with SASL
| -rw-r--r-- | ansible/roles/sasl/templates/saslauthd.conf.j2 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ansible/roles/sasl/templates/saslauthd.conf.j2 b/ansible/roles/sasl/templates/saslauthd.conf.j2 index 5e887e7..aabc661 100644 --- a/ansible/roles/sasl/templates/saslauthd.conf.j2 +++ b/ansible/roles/sasl/templates/saslauthd.conf.j2 @@ -2,4 +2,4 @@ ldap_servers: {{ sasl_ldap_server }} ldap_search_base: {{ sasl_ldap_search_base }} ldap_bind_dn: {{ sasl_ldap_bind_dn }} ldap_bind_pw: {{ sasl_ldap_bind_pw }} -ldap_filter: (uid=%u) +ldap_filter: (&(uid=joe)(mail=*@int.pydis.wtf)) |