Hi list!
I'm always trying to configure Dovecot to ask our LDAP-Server (AD) in
order to authenticate the users.
I really don'know what can I do wrong...
I configured my Dovecot so:
hosts = chimaera.company.local dn = CN=mailproxy,CN=Users,DC=company,DC=local dnpass = SECRET sasl_bind = no tls = no debug_level = -1 auth_bind = yes ldap_version = 3 base = dc=company,dc=local deref = never scope = subtree user_filter = (&(sAMAccountName=%n)(objectClass=user)) pass_attrs = userPassword=password pass_filter = (&(samAccountName=%n)(objectClass=user)) default_pass_scheme = CRYPT
If I try to login in, with my login and password, I see with ngrep
that Dovecot ask the AD for my data AND GET THEM, then I see:
T 10.0.46.4:49204 -> 192.168.168.23:389 [AP]
0p...ck."DC=DomainDnsZones,DC=company,DC=local................4....samAccountName..bertoncello....objectClass..user0.
#
T 192.168.168.23:389 -> 10.0.46.4:49204 [AP]
0........e................000004DC: LdapErr: DSID-0C0906E8,
comment: In order to perform this operation a successful bind must be
completed on the connection., data 0, v1db1.
This is what I see in Dovecot's log:
-- Dipl. Inf. Luca Bertoncello Hartigstraße 12 01127 Dresden Germany Tel: +49 351 4977290 Mobile: +49 177 3218409 Fax: +49 351 4977291 http://www.lucabert.de/ GPG-Key: http://www.lucabert.de/lucabert.asc E-Mail: lucabert@lucabert.de