iRedMail configures Postfix to use Dovecot as SASL authenticate server, so all
password schemes supported by Dovecot can be used in iRedMail. Please refer to
Dovecot wiki page
Password Schemes
for more details.
Below password schemes are supported in iRedAdmin-Pro (which means you can add new mail user with either one):
123456
$1$GfHYI7OE$vlXqMZSyJOSPXAmbXHq250
0d2bf3c712402f428d48fed691850bfc
{SSHA}OuCrqL2yWwQIu8a9uvyOQ5V/ZKfL7LJD
{SSHA512}FxgXDhBVYmTqoboW+ibyyzPv/wGG7y4VJtuHWrx+wfqrs/lIH2Qxn2eA0jygXtBhMvRi7GNFmL++6aAZ0kXpcy1fxag=
NOTES:
BCRYPT
is only available on BSD systems, because libc shipped in Linux
doesn't support bcrypt.For MySQL and PostgreSQL backends:
MD5
SSHA512
For LDAP backend: SSHA
.
All mail users are stored in SQL table vmail.mailbox
, user password is stored
in SQL column mailbox.password
. For example:
sql> UPDATE mailbox SET password='$1$GfHYI7OE$vlXqMZSyJOSPXAmbXHq250' WHERE username='xx@xx';
sql> UPDATE mailbox SET password='{SSHA}OuCrqL2yWwQIu8a9uvyOQ5V/ZKfL7LJD' WHERE username='xx@xx';
sql> UPDATE mailbox SET password='{SSHA512}FxgXDhBVYmTqoboW+ibyyzPv/wGG7y4VJtuHWrx+wfqrs/lIH2Qxn2eA0jygXtBhMvRi7GNFmL++6aAZ0kXpcy1fxag=' WHERE username='xx@xx';
{PLAIN-MD5}
in your password hash:sql> UPDATE mailbox SET password='{PLAIN-MD5}0d2bf3c712402f428d48fed691850bfc' WHERE username='xx@xx';
{PLAIN}
:
sql> UPDATE mailbox SET password='{PLAIN}123456' WHERE username='xx@xx';
User password is stored in attribute userPassword
of user object.
To store plain password, SSHA, SSHA512 password hash, just store them in
original format. For example:
userPassword: 123456
userPassword: {SSHA}OuCrqL2yWwQIu8a9uvyOQ5V/ZKfL7LJD
userPassword: {SSHA512}FxgXDhBVYmTqoboW+ibyyzPv/wGG7y4VJtuHWrx+wfqrs/lIH2Qxn2eA0jygXtBhMvRi7GNFmL++6aAZ0kXpcy1fxag=
To store standard MD5 password (salted MD5 hash), please prepend {CRYPT}
(case insensitive) in your password hash. For example:
userPassword: {CRYPT}$1$GfHYI7OE$vlXqMZSyJOSPXAmbXHq250
IMPORTANT NOTE: If you want to input password hash with phpLDAPadmin,
please choose clear
in the password hash list, then input password hash.
Document published under a CC BY-ND 3.0 license. If you found something wrong, please do contact us to fix it.