[Dovecot] Dovecot passdb LDAP queries
Hi:
When runs dovecot, I can see that dovecot sends two ldap queries to my OpenLDAP server and establishes one conection, however when test my dovecot-ldap configurarion with telnet My OpenLDAP server don't received ldap request from my clients.
dovecot-auth process need special permissions?.
my dovecot-ldap.conf file is wrong?.
Any suggestion ?
Thanks.
My Telnet messages are:
- OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready. 1 login USER PASSWORD 1 NO [AUTHENTICATIONFAILED] Authentication failed.
My Dovecot logs are:
Jun 15 13:27:42 auth(default): Info: shadow(USER,X.X.X.X): lookup Jun 15 13:27:42 auth(default): Info: shadow(USER,X.X.X.X): unknown user Jun 15 13:27:42 auth(default): Info: ldap(USER,X.X.X.X): invalid credentials (given password: PASSWORD) Jun 15 13:27:44 auth(default): Info: client out: FAIL 1 user=USER
My dovecot.conf configuration:
log_path: /var/log/dovecot.log info_log_path: /var/log/dovecot.log protocols: imap pop3 listen(default): X.X.X.X:143 listen(imap): X.X.X.X:143 listen(pop3): X.X.X.X:110 ssl: no disable_plaintext_auth: no login_dir: /usr/local/var/run/dovecot/login login_executable(default): /usr/local/libexec/dovecot/imap-login login_executable(imap): /usr/local/libexec/dovecot/imap-login login_executable(pop3): /usr/local/libexec/dovecot/pop3-login first_valid_uid: 100 mail_location: maildir:%h/Maildir/:INDEX=/var/indexes/%u/:CONTROL=/var/control/%u/:INBOX=/var/mail/%u/ mail_debug: yes mail_full_filesystem_access: yes mail_executable(default): /usr/local/libexec/dovecot/imap mail_executable(imap): /usr/local/libexec/dovecot/imap mail_executable(pop3): /usr/local/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota trash mail_plugins(imap): quota imap_quota trash mail_plugins(pop3): quota mail_plugin_dir(default): /usr/local/lib/dovecot/imap mail_plugin_dir(imap): /usr/local/lib/dovecot/imap mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3 pop3_reuse_xuidl(default): no pop3_reuse_xuidl(imap): no pop3_reuse_xuidl(pop3): yes lda: mail_plugins: cmusieve quota auth default: mechanisms: plain login verbose: yes debug: yes debug_passwords: yes passdb: driver: shadow passdb: driver: ldap args: /usr/local/etc/dovecot-ldap.conf userdb: driver: passwd userdb: driver: ldap args: /usr/local/etc/dovecot-ldap.conf socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix plugin: quota: fs:INBOX:mount=/var/mail/ quota2: fs:HOME:mount=/u/ quota_warning: storage=95%% /usr/local/bin/quota-warning.sh 95 quota_warning2: storage=80%% /usr/local/bin/quota-warning.sh 80
My dovecot-ldap.conf configuration:
hosts = Y.Y.Y.Y:389 dn = cn=abc,ou=def,dc=ghi,dc=jk dnpass = password auth_bind = yes ldap_version = 3 auth_bind_userdn = cn=abc,ou=def,dc=ghi,dc=jk base = ou= xyz,dc=abc,dc=def scope = subtree pass_attrs = uid=user,userPassword=password pass_filter = (&(objectClass=posixAccount)(uid=%u)) default_pass_scheme = CRYPT
--
LCC Wilberth de Jesús Pérez Segura CCSA- Administración de Servicios y Seguridad de las TI Correo: wilberth.perez@uady.mx Universidad Autónoma de Yucatán Secretaría General Coordinación Administrativa de Tecnologías de Información RIUADY C-59 x Av. Itzáes (999)923-74-28 Ext. 1117 Mérida, Yucatán, México 2010
participants (1)
-
Wilberth Pérez