I resend, because I forgot to change the true domain once and the previous message would appear to include inconsistencies...
Sorry for this...
On 20/12/2011 7:41 πμ, Timo Sirainen wrote:
Can you try if changing it back helps? Or by running the same LDAP query using ldapsearch. Is there a reason why you changed the scope? (I'm not entirely sure what the LDAP schemes usually look like..)
Hi Timo,
The same query, using ldapsearch (with the same binddn, same scope, same filter) returns 247 entries. The command is (all searches are against localhost - it's a local replication slave [openldap syncrepl consumer]):
/usr/local/openldap/bin/ldapsearch -x -W -vv -D "uid=authenticate,ou=System,dc=example,dc=com" -s one -b "ou=people,dc=example,dc=com" uid
doveadm user '*' and doveadm quota get -A both return the same 30 entries. I noticed that most of them are the LDAP user entries most recently updated in the LDAP Server (although it doesn't make any sense to me why it so happens).
I changed the scope in the search because my "ou=people,dc=example,dc=com" branch has some new sub-branches which contain user accounts not related with mailboxes and I didn't want them to be returned by the Dovecot search (they were useless).
I only now tried changing the scope back to subtree and again to onelevel and found that nothing changes (again 30 entries are returned).
For reference: /etc/dovecot/dovecot-userdb-ldap.conf (identical to dovecot-passdb-ldap.conf):
hosts = localhost tls = no base = ou=people, dc=example, dc=com scope = onelevel ldap_version = 3 dn = uid=authenticate,ou=System,dc=example,dc=com dnpass = secret auth_bind = yes user_filter = (uid=%u) pass_filter = (uid=%u) pass_attrs = uid=user,userPassword=password auth_bind_userdn = uid=%u,ou=people,dc=example,dc=com user_attrs = roomNumber=quota_rule=*:bytes=%$,uid=home=/home/vmail/%u
I have not managed yet to upgrade to 2.0.16 to see what happens...
Thank you for your assistance, Nick