[Dovecot] Problems to put dovecot-ldap.conf working

Venilton Junior venilton.junior at sercompe.com.br
Tue Feb 13 12:48:21 UTC 2007 

Hi Folks,

 

I'm having a little trouble to put dovecot authenticating in ldap.

 

My postfix and saslauthd are authenticating fine.

 

Here is what I have in my main.cf:

# Accounts

accounts_server_host = $ldap_server_host

accounts_search_base = $ldap_search_base

accounts_query_filter =
(&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(acco
untActive=TRUE)(delete=FALSE))

accounts_result_attribute = mailbox

accounts_cache = no

 

# aliases

aliases_server_host = $ldap_server_host

aliases_search_base = $ldap_search_base

aliases_query_filter =
(&(&(objectClass=VirtualMailAlias)(mail=%s))(accountActive=TRUE))

aliases_result_attribute = maildrop

aliases_cache = no

 

accountsmap_server_host = $ldap_server_host

accountsmap_search_base = $ldap_search_base

accountsmap_query_filter =
(&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(acco
untActive=TRUE)(delete=FALSE))

accountsmap_result_attribute = mail

accountsmap_cache = no

 

# VirtualForward

virtualforward_server_host = $ldap_server_host

virtualforward_search_base = $ldap_search_base

virtualforward_query_filter =
(&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=TRUE)(accou
ntActive=TRUE)(delete=FALSE))

virtualforward_result_attribute = maildrop

virtualforward_cache = no

 

My saslauthd.conf follows as:

 

ldap_servers:           ldap://myldapserver/

ldap_version:           3

ldap_auth_method:       bind

ldap_bind_dn:
uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot

ldap_bind_pw:           xxxx

ldap_search_base:       dc=domain,dc=com

#ldap_filter:           (|(mail=%u)(cn=%U))

ldap_filter:
(&(|(mail=%u)(cn=%U)(mail=%U@%d))(accountActive=TRUE)(delete=FALSE))

PS: Removed my real server and search_base.

 

Here is the test with saslauthd configuration:

testsaslauthd -u novoemail01 -p teste123

0: OK "Success."

 

And here is my dovecot-ldap.conf:

 

hosts = myldapserver

dn = uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot

dnpass = xxxx

ldap_version = 3

base = dc=domain,dc=com

user_attrs = mail,,,,,

user_filter =
(&(objectClass=VirtualMailAccount)(mail=%u)(accountActive=TRUE)(delete=F
ALSE))

pass_attrs = mail,userPassword

pass_filter =
(&(objectClass=VirtualMailAccount)(mail=%u)(accountActive=TRUE)(delete=F
ALSE))

default_pass_scheme = SSHA

 

 

When I try to authenticate, my mail.info get this:

 

dovecot: auth(default): client in: AUTH   1       PLAIN   service=POP3
lip=200.155.34.10       rip=200.155.63.82
resp=AG5vdm9lbWFpbDAxAHRlc3RlMTIz

dovecot: auth(default): ldap(novoemail01,200.155.63.82): pass search:
base=dc=sercomtel,dc=com,dc=br scope=subtree
filter=(&(objectClass=VirtualMailAccount)(mail=novoemail01)(accountActiv
e=TRUE)(delete=FALSE)) fields=mail,userPassword

dovecot: auth(default): ldap(novoemail01,200.155.63.82): unknown user

dovecot: auth(default): client out: FAIL  1       user=novoemail01

 

Does anyone have an idea where I'm failing to configure this or find a
misconfiguration?

 

Tnx for any help.

 

Best Regards,

Venilton C. Junior



 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://dovecot.org/pipermail/dovecot/attachments/20070213/76aa556b/attachment.html

More information about the dovecot mailing list