Hi, I'm a new list member, I’m a not an English native speaking (so, please forgive any error you can find in this mail) and I'm trying to install Dovecot in Debian Woody. I've installed the Dovecot package from backports and I’m trying to configure it to get the credential authentication from an LDAP backend.
This is the configuration process summary I’ve done; if you need some configuration file I can post it with great pleasure. In LDAP I’ve created the user cn=dovecot,ou=DSA,dc=flanet,dc=org, I’ve configured this user to have read access to the userPassword field in slapd.conf (the other parameter such as uid, directoryHome… can be read as anonymous), I’ve configured the dovecot-ldap.conf to bind using the “cn=dovecot,ou=DSA,dc=flanet,dc=org” and I set the *auth_userdb* and *auth_passdb* of dovecot.conf to *ldap /path/to/dovecot-ldap.conf*.
When I’m trying to start dovecot in the mail.err log file I can find
Oct 5 11:13:29 PDC-SMB dovecot-auth: LDAP: ldap_simple_bind_s() failed (dn cn=dovecot,ou=DSA,dc=flanet,dc=org): Invalid credentials
Is the problem that the ldap-password is stored in SSHA crypted mode and in *dnpass* I've inserted it in plaintext? Or more in general, someone can help me to find where I wrong and how can I try to solve it?
Piviul
I've solved this problem (perhaps the cause was that the name of the bind ldap user was the same of the account in passwd: I've created another bind account in ldap with a different name...) but I've just another one.
Dovecot is up and running but I can't login from a client.
I've set *auth_verbose=yes* but I've no logging of the failure. Is it normal? How can I get verbose logging?
Piviul
On 5.10.2004, at 17:17, Piviul wrote:
Dovecot is up and running but I can't login from a client.
I've set *auth_verbose=yes* but I've no logging of the failure. Is it normal? How can I get verbose logging?
Well, I guess disable_plaintext_auth = no would fix it. Pretty much everything else is logged with auth_verbose = yes. Guess I should finally add that too..
Timo Sirainen wrote:
On 5.10.2004, at 17:17, Piviul wrote: Well, I guess disable_plaintext_auth = no would fix it. Pretty much everything else is logged with auth_verbose = yes. Guess I should finally add that too..
Thank you very much. Now I can find one row in the logs
Oct 5 17:32:16 PDC-SMB dovecot-auth: ldap(username): No password in reply
Do you think the problem is in some misconfigured parameter in dovecot-ldap.conf? Dovecot can bind ldap but the username password doesn't mach the one in ldap?
Can you help me to try to solve this problem?
Thank you very much
Piviul
participants (2)
-
Piviul
-
Timo Sirainen