Previous   Next   Contents       (Exim 4.10 Specification)

35. The spa authenticator

The spa authenticator provides client support for Microsoft's Secure Password Authentication mechanism. It does not provide server support for this mechanism. The code for this authenticator was contributed by Marc Prud'hommeaux, and much of it is taken from the Samba project (http://www.samba.org).

The mechanism works as follows:

Encryption is used to protect the password in transit.

35.1. Using spa as a client

This authenticator has the following client options:


client_domain

Type:  string
Default:  unset

This option specifies an optional domain for the authentication.


client_password

Type:  string
Default:  unset

This option specifies the user's password, and must be set.


client_username

Type:  string
Default:  unset

This option specifies the user name, and must be set.



Here is an example of a configuration of this authenticator for use with the mail servers at msn.com:

  msn:
    driver = spa
    public_name = MSN
    client_username = msn/msn_username
    client_password = msn_plaintext_password
    client_domain = DOMAIN_OR_UNSET

Previous  Next  Contents       (Exim 4.10 Specification)