On Tue, 2008-04-15 at 19:09 +0100, Wojtek Bogusz wrote:
dn: dovecot needs a dn with which to search the database to find the user's DN based on their email. This is done with an anonymous connection,
Hmmm... wish the docs mentioned that. It means that I need to set up LDAP to allow anonymous searches for the mail field. Odd...
is this true? does it mean that i should have something like this in /etc/ldap/sldap.conf: access to attr=uid,homeDirectory,uidNumber by anonymous read
I do not have this in my configuration, and dovecot does indeed use thecredential I provide to successfully query LDAP for the user based on the (mail=%u) criteria. However, it does not see the reply. The fact that it does perform the query successfully implies to me that it does not use an anonymous connection. Very puzzling.
-- Jack McKinney GPG 1024D/99C6A174 jackmc@lorentz.com YM:lfaatsnat2006 AIM:jackmclorentz Beware geeks bearing diffs