1# Native NetAuth23maddy supports authentication via NetAuth using direct entity4authentication checks. Passwords are verified by the NetAuth server.56maddy needs to know the Entity ID to use for authentication. It must7match the string the user provides for the Local Atom part of their8mail address.910Note that storage backends conventionally use email addresses. Since11NetAuth recommends *nix compatible usernames, you will need to map the12email identifiers to NetAuth Entity IDs using `auth_map` (see13documentation page for used storage backend).1415auth.netauth also can be used as a table module. This way you can16check whether the account exists.1718Note that the configuration fragment provided below is very sparse.19This is because NetAuth expects to read most of its common20configuration values from the system NetAuth config file located at21`/etc/netauth/config.toml`.2223```24auth.netauth {25 require_group "maddy-users"26 debug off27}28```2930```31auth.netauth {}32```3334## Configuration directives3536### require_group _group_3738Optional.3940Group that entities must possess to be able to use maddy services.41This can be used to provide email to just a subset of the entities42present in NetAuth.4344---4546### debug `on` | `off`4748Default: `off`