Works for me (tm). Maybe some of ldap servers does not like that result attributes are specified multiple times. But current active directory server this not seems be an issue.
Log shows that quory is working:
Sep 1 15:00:52 domainlx6 dovecot: auth(default): ldap(petasi,172.21.89.69): user search: base=ou=Oppilaitokset,dc=domain,dc=local scope=subtree filter=(&(objectClass=Person)(|(mail=petasi)(sAMAccountName=petasi))) fields=sAMAccountName,sAMAccountName Sep 1 15:00:52 domainlx6 dovecot: auth(default): ldap(petasi,172.21.89.69): result: sAMAccountName(home=/var/spool/vmail/%$)=/var/spool/vmail/petasi Sep 1 15:00:52 domainlx6 dovecot: auth(default): master out: USER 2 petasi home=/var/spool/vmail/petasi gid=12 uid=1001
Timo Sirainen kirjoitti:
On Mon, 2008-09-01 at 15:15 +0300, Petri Asikainen wrote:
user_attrs = sAMAccountName=user,sAMAccountName=home=/var/spool/vmail/%$,=gid=12,=uid=1001
Hmm. Does that really return both "user" and "home"? I've in TODO that it's not working..