Increase the maximum length of account passwords in MDaemon
The new password paradigm in security circles is "longer is better" -- but MDaemon is limited to 15 chars max for user passwords. More please! Like maybe 25-30 max?
Thank you for sharing your idea to extend the maximum length of account passwords in MDaemon. MDaemon now allows passwords to be stored using non reversible encryption. When this option is used the maximum password length is 72 characters.
If I recall correctly this was added in MDaemon 17. You'll need to enable the option to store passwords using non reversible encryption. Once this is enabled the allowed password length is 72 characters. You can enable the option by going to Accounts / Account Settings / Other / Passwords, check the box for Store mailbox passwords using non-reversible encryption. When this is enabled some other functionality will not work properly, such as APOP and CRAM-MD5 authentication because they depend on MDaemon being able to decrypt the password. If you'd like further assistance please contact our support team. All of our support options can be found by going to http://www.altn.com/support/.
I am running 17.0.2 and it still is only 15. When is this taking place?
You will need to set the password for each account to be \\$DOMAIN$.
So, if I activated this, it would automatically override the password already set in each user's account and begin using the AD password? Or would I need to go through and empty each password field in the MD accounts list?
Sounds good! I appreciate the heads-up!
There is a Dynamic Authentication section in the MDaemon Help file that should provide all the information you need.
The short version is set the account password to \\$DOMAIN$, where $DOMAIN$ is your active directory domain. If the user's mailbox name is different than their AD logon you can add the following key to the hiwater.mrk file in the user's mailbox directory.
Where $ADLOGON$ is the users active directory logon name.
You can also have MDaemon monitor ActiveDirectory and automatically create accounts when they are created in AD. The configurations for this can be found by going to Accounts / Account Settings / Active Directory / Monitoring.
Excellent tip -- I will investigate.