[Dovecot] LDAP, MD5-CRYPT, invalid credentials, BUG or config issue?

Ulrich Zehl ulrich-dovecot at topfen.net
Mon Feb 16 14:17:27 EET 2009


On Mon, Feb 16, 2009 at 12:28:54PM +0100, Guenther Falk wrote:
> My dovecot-ldap.conf is:
> auth_bind = yes
> auth_bind_userdn = uid=%u,ou=People,dc=mydomain,dc=com
> [...]
> default_pass_scheme = CRYPT
> [...]
> It seems dovecot ignores the CRYPT password scheme. The password seems
> to be encrypted in SSHA.

If you use auth_bind, then the password scheme specified in
dovecot-ldap.conf is irrelevant, as the password comparison will be done by
the LDAP server (cf. http://wiki.dovecot.org/AuthDatabase/LDAP).

Also, your logs show the communication between the two Dovecot components
responsible for the auth process, not between Dovecot and the LDAP server.
You may want to check you OpenLDAP logs to see what's going on.


More information about the dovecot mailing list