[Dovecot] Problems with dual ldap auth
Hi,
I can't seem to figure this out. Is it impossible to use two different ldap auth? It works if I use one ldap and one pam, but I do need to use ldap for both. This is from my config:
auth default { mechanisms = plain
passdb ldap { args = /etc/dovecot/ldap-virtual.conf }
passdb ldap { args = /etc/dovecot/dovecot-ldap.conf }
userdb ldap { args = /etc/dovecot/ldap-virtual.conf }
userdb ldap { args = /etc/dovecot/dovecot-ldap.conf }
user = root #chroot = #count = 1 #ssl_require_client_cert = no }
It works well if I only use one of them (so they seem to be correct), but together, only the last (dovecot-ldap) is used. Anyone see a reason for that?
Best regards, Stian
On Thu, 2005-10-27 at 12:18 +0200, Stian Jordet wrote:
Hi,
I can't seem to figure this out. Is it impossible to use two different ldap auth? It works if I use one ldap and one pam, but I do need to use ldap for both. This is from my config:
Do you use 1.0.alpha4? This was broken before that. I haven't tried two LDAP configurations with alpha4 though, only two SQLs..
tor, 27,.10.2005 kl. 16.31 +0300, skrev Timo Sirainen:
On Thu, 2005-10-27 at 12:18 +0200, Stian Jordet wrote:
Hi,
I can't seem to figure this out. Is it impossible to use two different ldap auth? It works if I use one ldap and one pam, but I do need to use ldap for both. This is from my config:
Do you use 1.0.alpha4? This was broken before that. I haven't tried two LDAP configurations with alpha4 though, only two SQLs..
I was using alpha3, and that was indeed the problem :) Thank you very much! Things are starting to look really good now ;)
Best regards, Stian
tor, 27,.10.2005 kl. 16.31 +0300, skrev Timo Sirainen:
Do you use 1.0.alpha4? This was broken before that. I haven't tried two LDAP configurations with alpha4 though, only two SQLs..
Nov 1 19:36:41 buick dovecot: auth(default): ldap(test2,127.0.0.1): Authenticated user not found Nov 1 19:36:41 buick dovecot: imap-login: Login: user=<test2>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
As I said, this worked perfectly, but I get this in the log when I try to log on. Wouldn't it be nice if the "user not found" doesn't come up before it has tried all auth mechanisms? It seems weird to get lots of these lines in the log...
Second,
passdb ldap { args = /etc/dovecot/dovecot-ldap.conf }
userdb prefetch { }
this does not work, gives:
Nov 1 19:48:03 buick dovecot: auth(default): prefetch(stianj,127.0.0.1): passdb didn't return userdb entries Nov 1 19:48:03 buick dovecot: auth(default): userdb(stianj,127.0.0.1): user not found from userdb Nov 1 19:48:03 buick dovecot: imap-login: Internal login failure: user=<stianj>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
while
passdb ldap { args = /etc/dovecot/dovecot-ldap.conf }
userdb ldap { args = /etc/dovecot/dovecot-ldap.conf }
Works just fine. I thought that meant that it obviously got both userdb and passdb entries, but prefetch still doesn't work...
Is this due to a misconfiguration, or a bug?
Thanks.
Best regards, Stian
participants (2)
-
Stian Jordet
-
Timo Sirainen