Problem with LDAP... again...
Luca Bertoncello
lucabert at lucabert.de
Tue Jun 23 09:29:29 UTC 2015
Hi list!
I'm always trying to configure Dovecot to ask our LDAP-Server (AD) in
order to authenticate the users.
I really don'know what can I do wrong...
I configured my Dovecot so:
hosts = chimaera.company.local
dn = CN=mailproxy,CN=Users,DC=company,DC=local
dnpass = SECRET
sasl_bind = no
tls = no
debug_level = -1
auth_bind = yes
ldap_version = 3
base = dc=company,dc=local
deref = never
scope = subtree
user_filter = (&(sAMAccountName=%n)(objectClass=user))
pass_attrs = userPassword=password
pass_filter = (&(samAccountName=%n)(objectClass=user))
default_pass_scheme = CRYPT
If I try to login in, with my login and password, I see with ngrep
that Dovecot ask the AD for my data AND GET THEM, then I see:
T 10.0.46.4:49204 -> 192.168.168.23:389 [AP]
0p...ck."DC=DomainDnsZones,DC=company,DC=local................4....samAccountName..bertoncello....objectClass..user0.
#
T 192.168.168.23:389 -> 10.0.46.4:49204 [AP]
0........e................000004DC: LdapErr: DSID-0C0906E8,
comment: In order to perform this operation a successful bind must be
completed on the connection., data 0, v1db1.
This is what I see in Dovecot's log:
--
Dipl. Inf. Luca Bertoncello
Hartigstraße 12
01127 Dresden
Germany
Tel: +49 351 4977290
Mobile: +49 177 3218409
Fax: +49 351 4977291
http://www.lucabert.de/
GPG-Key: http://www.lucabert.de/lucabert.asc
E-Mail: lucabert at lucabert.de
More information about the dovecot
mailing list