On Thursday 02 November 2006 18:42, Timo Sirainen wrote:
On Fri, 2006-10-27 at 12:45 +0100, Pedro Venda wrote:
I intended to have authenticated binds but there was a problem with the user_filter directive being ignored: user_filter = (&(objectClass=JammMailAccount)(mail=%n@%d)(accountActive=TRUE) (delete=FALSE))
..
ldap(dave@info.test,::ffff:192.168.0.69): bind search: base=o=hosting,dc=example,dc=com scope=subtree filter= **(&(objectClass=posixAccount(uid=dave@info.test))** dovecot: Oct 26 16:20:58 Info: auth(default): ldap(dave@info.test,::ffff:192.168.0.69): unknown user dovecot: Oct 26 16:20:59 Info: auth(default): client out: FAIL 1 user=dave@info.test dovecot: Oct 26 16:20:59 Info: imap-login: Disconnected: user=dave@info.test, method=PLAIN, rip=::ffff:192.168.0.69, lip=::ffff:192.168.0.5, TLS
(nevermind the data, it's test only)
As you can see from the info file, the search filter used was being (&(objectClass=posixAccount(uid=dave@info.test)) and not (&(objectClass=JammMailAccount)(mail=dave@info.test)(accountActive=TRUE) (delete=FALSE)).
user_filter is used by userdb only, after the password authentication was successful. So I guess you wanted to modify pass_filter instead?
You see, I'm using auth_bind = yes, so pass_filter isn't relevant. Dovecot doesn't need to find the password, given that authentication relies on successfull binding.
Cheers,
Pedro João Lopes Venda email: pjvenda at pjvenda org http://www.pjvenda.org