still the sameā€¦ 

root@buserver:/etc/dovecot# doveadm user test2@onnet.ch
field valueuserdb lookup: user test2@onnet.ch doesn't exist

relevant config output from doveconf -n
userdb {
  args = /etc/dovecot/dovecot-ldap.conf
  driver = ldap
  result_success = continue-ok
}
userdb {
  args = username_format=%Lu /etc/dovecot/share.passwd
  driver = passwd-file
  result_failure = continue-ok
  skip = notfound
}

but, did you read my last note anyway?
IMPORTANT NOTE: anyway.. even with this options set (acl and acl_globals_only) the user test@onnet.ch is still able to share its own folders?!

root@buserver:/etc/dovecot# doveadm user test@onnet.ch
field value
uid 5000
gid 5000
home /var/spool/postfix/virtual/onnet.ch/test/
mail maildir:~/Maildir
quota_rule *:bytes=1073741824
acl vfile:/etc/dovecot/dovecot-acl
acl_globals_only yes

root@buserver:/etc/dovecot# telnet localhost 143
Trying ::1...
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
. login test@onnet.ch *********
. OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY MOVE QUOTA ACL RIGHTS=texk] Logged in
. SETACL Inbox test2@onnet.ch lrwstipekxa
. OK Setacl complete.
. GETACL Inbox
* ACL Inbox test2@onnet.ch akxeilprwtscd test@onnet.ch lrwstipekxacd
. OK Getacl completed.

Cheers

On 7 Aug 2018, at 12:05, Aki Tuomi <aki.tuomi@dovecot.fi> wrote:

Hmm. if you put it *after* the ldap userdb, it should not have prevented users from logging in.

What happens if you do

userdb {
  driver = passwd-file
  args = ....
  skip = notfound
  result_failure = continue-ok
}

Aki