From 74cdf27ad844ce0fe3c7fc163472d6e03a849dc6 Mon Sep 17 00:00:00 2001 From: Tunui Franken Date: Fri, 12 Jan 2024 19:06:35 +0100 Subject: [PATCH] Add dovecot authentication for Postfix --- roles/mailserver_postfix/tasks/main.yml | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/roles/mailserver_postfix/tasks/main.yml b/roles/mailserver_postfix/tasks/main.yml index d34376e..740bde4 100644 --- a/roles/mailserver_postfix/tasks/main.yml +++ b/roles/mailserver_postfix/tasks/main.yml @@ -27,6 +27,14 @@ - virtual_alias_maps = pgsql:/etc/postfix/sql-virtual-alias-maps.cf - virtual_transport = lmtp:unix:private/dovecot-lmtp - smtpd_recipient_restrictions = reject_unauth_destination,check_policy_service unix:private/quota-status + - smtpd_sasl_type = dovecot + - smtpd_sasl_path = private/auth + - smtpd_sasl_auth_enable = yes + - smtpd_tls_security_level = may + - smtpd_tls_auth_only = yes + - "smtpd_tls_cert_file = /etc/letsencrypt/live/{{ ansible_hostname }}.tunuifranken.info/fullchain.pem" + - "smtpd_tls_key_file = /etc/letsencrypt/live/{{ ansible_hostname }}.tunuifranken.info/privkey.pem" + - smtp_tls_security_level = may ansible.builtin.lineinfile: path: /etc/postfix/main.cf line: "{{ item }}"