hi Steffen, i have to modify ldapsearch command you wrote and add '-x' switch for simple authentication instead of SASL. but otherwise the command display good results:
# extended LDIF # # LDAPv3 # base <ou=Users,dc=frontline> with scope subtree # filter: (&(objectClass=posixAccount)(uid=wojtek)) # requesting: homeDirectory uidNumber #
# wojtek, Users, frontline dn: uid=wojtek,ou=Users,dc=frontline uidNumber: 30000 homeDirectory: /home/samba/wojtek
# search result search: 2 result: 0 Success
# numResponses: 2 # numEntries: 1
i am not sure how to show you the structure of the LDAP entry otherwise than just run a search without requesting specific field. here is the result:
# wojtek, Users, frontline dn: uid=wojtek,ou=Users,dc=frontline objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetOrgPerson objectClass: posixAccount objectClass: shadowAccount cn: wojtek sn: wojtek givenName: wojtek uid: wojtek uidNumber: 30000 gidNumber: 513 homeDirectory: /home/samba/wojtek loginShell: /bin/false gecos: Wojtek Bogusz userPassword:: [password here]
cheers, Wojtek
Steffen Kaiser wrote:
On Mon, 17 Mar 2008, Wojtek Bogusz wrote:
bind: dn=uid=wojtek,ou=Users,dc=frontline Mar 17 18:21:09 base dovecot: auth(default): client out: OK^I1^Iuser=wojtek Mar 17 18:21:09 base dovecot: auth(default): master in: REQUEST^I2^I19185^I1 Mar 17 18:21:09 base dovecot: auth(default): ldap(wojtek,192.168.0.200): user search: base=ou=Users,dc=frontline scope=subtree filter= (&(objectClass=posixAccount)(uid=wojtek)) fields=homeDirectory,uidNumber Mar 17 18:21:09 base dovecot: auth(default): ldap(wojtek,192.168.0.200): Authenticated user not found
Dovecot differs between userdb and passdb.
It seems that passdb is running, but userdb is not.
How does your LDAP entry looks like? Should the user data be read from LDAP, BTW?
Does the LDAP filter mentioned in the logs return the results for the currently bound user, aka:
ldapsearch -D uid=wojtek,ou=Users,dc=frontline -W
-b ou=Users,dc=frontline
'(&(objectClass=posixAccount)(uid=wojtek))' homeDirectory uidNumberdisplays home and uid?
Bye,
-- Steffen Kaiser