[Dovecot] no password reply
"dovecot-auth: ldap(branch): No password in reply"
Is this Freebsd error , or active directory is not configured correctly or dovecot bug?
regards
Askar
On Thu, 2005-04-14 at 20:57 +0600, Askar wrote:
"dovecot-auth: ldap(branch): No password in reply"
Is this Freebsd error , or active directory is not configured correctly or dovecot bug?
It means Dovecot's LDAP support is broken currently in 1.0-tests. I've forgotten my test LDAP server's admin password and couldn't figure out how to change it, so I'm waiting for someone else to fix this :) OpenLDAP is annoying.
It means Dovecot's LDAP support is broken currently in 1.0-tests. I've forgotten my test LDAP server's admin password and couldn't figure out how to change it, so I'm waiting for someone else to fix this :) There is a quick and dirty solution to fix this: Your LDAP admin password is either in /etc/[open]ldap/slapd.conf like this: rootpw secret or it is stored in ldap itself; then simply do a slapcat -l my_file.ldif search for the admin entry in the file and reset your password. It should still remain encrypted so you might want to use slappasswd to create a new hash.
On Sunday 17 April 2005 18:20, Timo Sirainen wrote: the entry should be something with "userPassword:: hashedpasswordgoeshere" Then stop ldap server, remove database and recreate it with slapadd -l my_file_with_changed_admin_password.ldif you might recreate your indices as well: slapindex ...and then restart your ldap server.
Depending on your installation it might be possible that there is a /etc/ldap.secret file with admin password in plain text...
I hope that helps.
Best regards, Adi Kriegisch
Timo Sirainen tss@iki.fi écrit :
On Thu, 2005-04-14 at 20:57 +0600, Askar wrote:
"dovecot-auth: ldap(branch): No password in reply"
Is this Freebsd error , or active directory is not configured correctly or dovecot bug?
It means Dovecot's LDAP support is broken currently in 1.0-tests. I've forgotten my test LDAP server's admin password and couldn't figure out how to change it, so I'm waiting for someone else to fix this :) OpenLDAP is annoying.
But LDAP is increasingly used to provide a central password repository (for e-mail, Web interfaces, etc.). It is a mandatory requirement for servers that use authentication, such as Dovecot.
-- Marc Baudoin | Institut Pasteur babafou@pasteur.fr | Pôle informatique - systèmes et réseau
Marc Baudoin wrote:
Timo Sirainen tss@iki.fi écrit :
On Thu, 2005-04-14 at 20:57 +0600, Askar wrote:
"dovecot-auth: ldap(branch): No password in reply"
Is this Freebsd error , or active directory is not configured correctly or dovecot bug?
It means Dovecot's LDAP support is broken currently in 1.0-tests. I've forgotten my test LDAP server's admin password and couldn't figure out how to change it, so I'm waiting for someone else to fix this :) OpenLDAP is annoying.
But LDAP is increasingly used to provide a central password repository (for e-mail, Web interfaces, etc.). It is a mandatory requirement for servers that use authentication, such as Dovecot.
thanks for your replies, I have worked it out with pam + krb5, now users pop3, imap can authenticate against AD. Note: For arhieves I was working with pam on freebsd without any success from last three days (I thinks there is some known bug in pam freebsd). Then I installed fc3 on a new box dovecot + pam + ad start working within an hour :) Now i'm stuck on postfix (mta) ---> AD part :|
Thanks and regards
Askar
On Mon, 2005-04-18 at 11:31 +0200, Marc Baudoin wrote:
Timo Sirainen tss@iki.fi écrit :
On Thu, 2005-04-14 at 20:57 +0600, Askar wrote:
"dovecot-auth: ldap(branch): No password in reply"
Is this Freebsd error , or active directory is not configured correctly or dovecot bug?
It means Dovecot's LDAP support is broken currently in 1.0-tests. I've forgotten my test LDAP server's admin password and couldn't figure out how to change it, so I'm waiting for someone else to fix this :) OpenLDAP is annoying.
But LDAP is increasingly used to provide a central password repository (for e-mail, Web interfaces, etc.). It is a mandatory requirement for servers that use authentication, such as Dovecot.
We find MySQL or pgsql a better central password repository. I wouldn't say SQL or LDAP was mandatory, passwd/shadow support maybe. Everything else can go through authentication wrappers for most things if a program doesn't support them, and since Dovecot is pre-alpha I think I does a bloody good job at authentication with so many systems and schemes.
Regards Andrew
-- Andrew Hutchings (A-Wing) Linux Guru - Netserve Consultants Ltd. - www.domaincity.co.uk Random BOFH excuse: ether leak
participants (5)
-
Adi Kriegisch
-
Andrew Hutchings
-
Askar
-
Marc Baudoin
-
Timo Sirainen