Re: [Dovecot] Virtual users, postfix and dovecot deliver LDA

Timo Sirainen kirjoitti:

Your log shows that "home" is working but "user" is ignored, just as I thought..

Hmm.. I dont want argue with you, you wrote the beast . But before I add that sAMAccountName=user mapping, my system log shows like following and user cannot access imap mailbox. After adding there no log messages "username changed" when accessing imap box. And MTA can still deliver mails to correct box.

Does third line mean that username get converted to home?

## LOG BEFORE sAMAccountName

Sep 1 14:40:48 skaolx6 dovecot: auth(default): ldap(petasi,172.21.89.69): user search: base=ou=Oppilaitokset,dc=domain,dc=local scope=subtree filter=(&(objectClass=Person)(|(mail=petasi)(sAMAccountName=petasi))) fields=sAMAccountName

Sep 1 14:40:48 domainlx6 dovecot: auth(default): auth(petasi,172.21.89.69): username changed petasi -> home=/var/spool/vmail/petasi

Sep 1 14:40:48 domainlx6 dovecot: auth(default): ldap(home=/var/spool/vmail/petasi,172.21.89.69): result: sAMAccountName(user=home=/var/spool/vmail/%$)=home=/var/spool/vmail/petasi

Sep 1 14:40:48 domainlx6 dovecot: auth(default): master out: USER 1 home=/var/spool/vmail/petasi gid=12 uid=1001

Sep 1 14:40:48 domainlx6 dovecot: imap-login: Login: user=<petasi>, method=PLAIN, rip=172.21.89.69, lip=212.86.14.194, TLS

Sep 1 14:40:48 domainlx6 dovecot: IMAP(home=/var/spool/vmail/petasi): mkdir(/HOME_DIRECTORY_USED_BUT_NOT_GIVEN_BY_USERDB/Maildir/.Trash/cur) failed: Permission denied

On Mon, 2008-09-01 at 15:42 +0300, Petri Asikainen wrote:

...

Works for me (tm). Maybe some of ldap servers does not like that result attributes are specified multiple times. But current active directory server this not seems be an issue.

Log shows that quory is working:

Sep 1 15:00:52 domainlx6 dovecot: auth(default): ldap(petasi,172.21.89.69): user search: base=ou=Oppilaitokset,dc=domain,dc=local scope=subtree filter=(&(objectClass=Person)(|(mail=petasi)(sAMAccountName=petasi))) fields=sAMAccountName,sAMAccountName Sep 1 15:00:52 domainlx6 dovecot: auth(default): ldap(petasi,172.21.89.69): result: sAMAccountName(home=/var/spool/vmail/%$)=/var/spool/vmail/petasi Sep 1 15:00:52 domainlx6 dovecot: auth(default): master out: USER 2 petasi home=/var/spool/vmail/petasi gid=12 uid=1001

Timo Sirainen kirjoitti:

...

On Mon, 2008-09-01 at 15:15 +0300, Petri Asikainen wrote:

...

user_attrs = sAMAccountName=user,sAMAccountName=home=/var/spool/vmail/%$,=gid=12,=uid=1001 Hmm. Does that really return both "user" and "home"? I've in TODO that it's not working..