[Dovecot] Ldap Proxy

Harrison Metzger harrisonmetz at gmail.com
Mon Nov 26 16:50:07 EET 2007


I changed it so that proxy would be populated by an existing ldap attribute.
Here are what my logs show now:

Nov 26 08:42:01 holiday dovecot: auth(default): client in: AUTH 1
PLAIN  service=POP3     secured lip=127.0.0.1   rip=127.0.0.1
resp=AGFwcGxlc2VqAHRhYmxl
Nov 26 08:42:01 holiday dovecot: auth(default): ldap(applesej,127.0.0.1):
bind search: base=dc=beloit,dc=edu
filter=(&(objectClass=BCMailAccount)(BCMailEnable=true)(BCMailDovecotEnable=true)(uid=applesej))
Nov 26 08:42:01 holiday dovecot: auth(default): ldap(applesej,127.0.0.1):
result: uid(user)=applesej cn(proxy)=John Applesead
BCMailDovecotProxyHost(host)=144.89.40.1
Nov 26 08:42:01 holiday dovecot: auth(default): ldap(applesej,127.0.0.1):
bind: dn=uid=applesej,ou=People,dc=beloit,dc=edu
Nov 26 08:42:01 holiday dovecot: auth(default): client out: OK  1
user=applesej   proxy   host=144.89.40.1        pass=xxxxxx
Nov 26 08:42:01 holiday dovecot: auth(default): master in: REQUEST
1      21209    1
Nov 26 08:42:01 holiday dovecot: auth(default): Master request 21209.1 not
found
Nov 26 08:42:01 holiday dovecot: auth(default): master out: NOTFOUND    1
Nov 26 08:42:01 holiday dovecot: pop3-login: Internal login failure:
user=<applesej>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured

I know this user can proxy because when I set it up to do it by passwd-file
it works.
On Nov 26, 2007 8:07 AM, Timo Sirainen <tss at iki.fi> wrote:

> On Mon, 2007-11-26 at 07:46 -0600, Harrison Metzger wrote:
> > pass search: base=dc=beloit,dc=edu scope=subtree
> >
> filter=(&(objectClass=BCMailAccount)(BCMailEnable=true)(BCMailDovecotEnable=true)(uid=applesej))
> > fields=uid,proxy,nologin,nodelay,BCMailDovecotProxyHost
> > Nov 26 07:40:56 holiday dovecot: auth(default): ldap(applesej,127.0.0.1
> ):
> > result: uid(user)=applesej BCMailDovecotProxyHost(host)=144.89.40.1
>
> It looks for "proxy" field, but it doesn't get proxy field on return. So
> I guess it doesn't exist in LDAP? If you want to proxy all users, you
> could use for example uid=proxy in pass_attrs.
>
>


More information about the dovecot mailing list