Re: [Dovecot] dovecot-auth
Thank you very much for your prompt reply and I hope you can forgive me to have erroneusly send the previous message directly to your address instead of the ML address.
Timo Sirainen wrote:
On 5.10.2004, at 18:46, Piviul wrote: It probably means that the dn you gave in dovecot-ldap.conf doesn't have read access to everyone's userPassword field. This is required by Dovecot's current implementation.
As far as I know the *dn* I've inserted in the dovecot-ldap.conf have read access to the userPassword field. In effect I've setted it in slapd.conf and if I run
ldapsearch -x -D *dn inserted in dovecot-ldap.conf* -w password
I can read the userPassword field of every user in the tree.
But if the problem is in the password field can be connected to the crypted password stored in userPassword? I wrong to set *pass_attrs = uid,{SSHA}userPassword* in dovecot-ldap.conf?
Piviul
On 5.10.2004, at 19:20, Piviul wrote:
But if the problem is in the password field can be connected to the crypted password stored in userPassword? I wrong to set *pass_attrs = uid,{SSHA}userPassword* in dovecot-ldap.conf?
Yes, that's wrong. It's trying to fetch "{SSHA}userPassword" field from LDAP. Set the password format with default_pass_scheme = SSHA instead.
Thank you Timo, but I can't authenticate once more... I put *default_pass_scheme = SSHA* and *pass_attrs = uid,userPassword* in dovecot-ldap.conf and now in the log I find
Oct 6 08:19:02 PDC-SMB dovecot-auth: ldap(username): Unknown password scheme SSHA
Signify that the backports dovecot package I've installed in my Debian Woody doesn't have SSHA support? Where can I get the SSHA password scheme? If I must re-compile dovecot myself, have you some link where is explaind in deeper how to do it?
Thank you very very much for your help
Piviul
Timo Sirainen wrote:
On 5.10.2004, at 19:20, Piviul wrote:
But if the problem is in the password field can be connected to the crypted password stored in userPassword? I wrong to set *pass_attrs = uid,{SSHA}userPassword* in dovecot-ldap.conf?
Yes, that's wrong. It's trying to fetch "{SSHA}userPassword" field from LDAP. Set the password format with default_pass_scheme = SSHA instead.
I'm just upgrading my thread...
I've read from Joshua:
Joshua Goodall wrote:
NB The 1.0-test series also adds support for more password hashes:
{SHA} / {SHA1} / {SMD5} / {SSHA} / {CLEARTEXT} / {HMAC-MD5} / {LDAP-MD5} {LANMAN} / {NTLM} / {RPA}
That means doesn't the version 0.99.11 support SSHA? Do I have to install 1.0-test46 to have the SSHA support? Do you think I can use Dovecot 1.0-test in a production environment?
Thank you very very much.
Piviul
Piviul wrote:
Thank you Timo, but I can't authenticate once more... I put *default_pass_scheme = SSHA* and *pass_attrs = uid,userPassword* in dovecot-ldap.conf and now in the log I find
Oct 6 08:19:02 PDC-SMB dovecot-auth: ldap(username): Unknown password scheme SSHA
Signify that the backports dovecot package I've installed in my Debian Woody doesn't have SSHA support? Where can I get the SSHA password scheme? If I must re-compile dovecot myself, have you some link where is explaind in deeper how to do it?
Thank you very very much for your help
Piviul
Timo Sirainen wrote:
On 5.10.2004, at 19:20, Piviul wrote:
But if the problem is in the password field can be connected to the crypted password stored in userPassword? I wrong to set *pass_attrs = uid,{SSHA}userPassword* in dovecot-ldap.conf?
Yes, that's wrong. It's trying to fetch "{SSHA}userPassword" field from LDAP. Set the password format with default_pass_scheme = SSHA instead.
participants (2)
-
Piviul
-
Timo Sirainen