On Mon, 2015-09-07 at 09:14 -0600, Manuel Delgado wrote:
Hi Ranbir
I've worked with freeIPA a little, but without your doveconf or some other context information, it is difficult to identify the issue.
Crap...I meant to include that. Here's what it looks like when I enable GSSAPI:
# 2.2.10: /etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-229.11.1.el7.x86_64 x86_64 CentOS Linux release 7.1.1503 (Core)
auth_default_realm = theinside.rnr
auth_gssapi_hostname = mailman02.theinside.rnr
auth_krb5_keytab = /etc/imap.keytab
auth_mechanisms = gssapi
auth_realms = theinside.rnr
hostname = imap.thesandhufamily.ca
listen = 1.1.0.0
mail_gid = virtual
mail_location = maildir:~/Maildir
mail_plugins = quota acl
mail_uid = virtual
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
mbox_write_locks = fcntl
namespace {
location = maildir:/var/spool/mail/thesandhufamily.ca/public
prefix = Public.
separator = .
subscriptions = no
type = public
}
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox Trash {
special_use = \Trash
}
prefix =
}
plugin {
acl = vfile
quota = maildir:User quota
quota_rule = *:storage=500M
sieve = ~/.dovecot.sieve
sieve_dir = ~/sieve
}
postmaster_address = postmaster@%d
protocols = imap lmtp
service auth-worker {
user = $default_internal_user
}
service auth {
inet_listener {
address = 1.1.0.0
port = 17900
}
unix_listener auth-userdb {
group = virtual
mode = 0600
user = virtual
}
}
service imap-login {
process_min_avail = 5
}
service imap {
process_limit = 10
}
service lmtp {
inet_listener lmtp {
address = 1.1.0.0
port = 24
}
}
ssl = required
ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
ssl_key = </etc/pki/dovecot/private/dovecot.pem
userdb {
args = uid=virtual gid=virtual home=/var/spool/mail/%d/%n/
driver = static
}
verbose_proctitle = yes
protocol lmtp {
mail_plugins = quota acl sieve
}
protocol lda {
mail_plugins = quota acl sieve
}
protocol imap {
mail_plugins = quota acl imap_quota imap_acl
}
-- Kanwar R.S. Sandhu