Given that I’ve already put my addresses into the LDAP directory, I’m going to use that to pull my recipients for local delivery. There is information on the Postfix website, here and here.
Appropriate section of /etc/postfix/main.cf
# DELIVERY CONFIGURATION # # all main to the domain is slated for local delivery mydestination = $mydomain, $myhostname, localhost.$mydomain, localhost # Set aliases to the postfix configuration directory alias_maps = hash:${config_directory}/aliases alias_database = hash:${config_directory}/aliases # Local recipients are stored in ldap # Alias maps also needs to be added here to accept mail for aliases locally local_recipient_maps = ldap:${config_directory}/ldap-recipients.cf $alias_maps
The file ldap-recipients.cf
file has the information to connect to the LDAP server.
server_host = <SERVER> search_base = ou=users,dc=example,dc=com version = 3 query_filter = mail=%s result_attribute = uid start_tls = yes tls_require_cert = yes tls_ca_cert_file = <CA certificate chain>
We require the verification of the LDAP certificate, so we need to specify the certificate chain.