I suggest you try adding extra attributes to LDAP replies:
https://wiki.dovecot.org/AuthDatabase/LDAP/Userdb#Attribute_templates_.28v2....
Primarily, define "mail=" explicitly.
And then compare auth userdb outputs in logs for both LDAP and non-LDAP.
Hope this helps.
18.03.2019 12:25, Anushka Uditha Bandara wrote:
Hi,Here is my "/etc/dovecot/dovecot-ldap.conf.ext". I couldn't find a fix.
hosts = ldap dn = cn=ro,dc=mail,dc=mail,dc=lk dnpass = roadmin auth_bind = yes auth_bind_userdn = uid=%n,ou=Users,dc=mai,dc=mail,dc=lk ldap_version = 3 base = ou=Users,dc=mail,dc=mail,dc=lk deref = never scope = subtree user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid user_filter = (&(objectClass=posixAccount)(cn=%n)) pass_attrs = mail=user,userPassword=password pass_filter = (&(objectclass=inetOrgPerson)(uid=%n))
tls_ca_cert_file = /etc/letsencrypt/live/mail.lsf.mail.lk/.fullchain.pem http://mail.lsf.mail.lk/.fullchain.pem tls_ca_cert_dir = /etc/letsencrypt/live/mail.lsf.mail.lk/ http://mail.lsf.mail.lk/ tls_cipher_suite = SECURE256:-VERS-SSL3.0 tls_cert_file =/etc/letsencrypt/live/mail.lsf.mail.lk/.fullchain.pem http://mail.lsf.mail.lk/.fullchain.pem tls_key_file =/etc/letsencrypt/live/mail.lsf.mail.lk/.privkey.pem http://mail.lsf.mail.lk/.privkey.pem tls_require_cert = try debug_level = -1