couier imap: authldaprc : active directory ldap

LDAP_SERVER 1.1.1.1
LDAP_PORT 3268
LDAP_PROTOCOL_VERSION 3
LDAP_BASEDN dc=example,dc=com
LDAP_BINDDN authuser@example.com
LDAP_BINDPW mysecretpassword
LDAP_TIMEOUT 5
LDAP_AUTHBIND 1
LDAP_MAIL sAMAccountName
LDAP_FILTER (objectClass=*)
LDAP_GLOB_UID 10002
LDAP_GLOB_GID 10002
LDAP_HOMEDIR sAMAccountName
LDAP_MAILROOT /var/mail
LDAP_MAILDIR mailbox
LDAP_DEFAULTDELIVERY defaultDelivery
LDAP_FULLNAME cn
LDAP_CRYPTPW userPassword
LDAP_UID 10000
LDAP_GID 10000
LDAP_DEREF never
LDAP_TLS 0

issue, users directories (inc maildir) aren't automatically created by courier.

Debian Sarge
Apache 2.0.54 sarge standard build
mods enabled auth_ldap

Windows Server 2003
Active Directory


Apache Config:

AuthLDAPAuthoritative on
AuthLDAPEnabled on
AuthLDAPRemoteUserIsDN on

AuthType Basic
AuthName "my message"
AuthLDAPBindDN "UserName@FQDN" # ie me@you.com
AuthLDAPBindPassword

AuthLDAPURL "ldap://x.x.x.x:3268/dc=you,dc=com?sAMAccountName?sub?(objectClass=*)";
require valid-user


Things to note over other examples that have been given on the net.

ldap port number, on active directory 389 is not a true ldap server, so im told!
additionally there is no cn=User, if this is included like other examples you only get users from the builtin group.

This might not be the way most people want it.