[Dovecot] 1.0.rc10 status report

[Axel Thimm]

On Mon, Oct 23, 2006 at 12:44:42PM +0300, "Αποστόλης Παπαγιαννάκης (Apostolis Papagiannakis)" wrote:
> Axel Thimm wrote:
> >On Mon, Oct 23, 2006 at 11:04:18AM +0300, "Αποστόλης 
> >Παπαγιαννάκης (Apostolis Papagiannakis)" wrote:
> >  
> >>I've had similar "User unknowns" with nscd in the past. I was using 
> >>dovecot ->getpwent -> nscd -> nss_ldap ->  LDAP.
> >>    
> >
> >Are you using ldapi?
> >  
> 
> Oops, I think I sent my previous post with unreadable HTML formating. I 
> hope this one is OK.
> 
> In /etc/ldap.conf  (nss_ldap conf file) I use two ldap servers as 
> "ldaps" URIs.
> 
> # /etc/ldap.conf
> uri ldaps://ldap1.auth.gr/ ldaps://ldap2.auth.gr/
> 
> apap
> 

You need to make sure that the user nscd is running as has proper
permissions to the required resources (r/w on ldapi sockets, read on
ldaps' ca certs and the like). Turn on the debug level in ldap.conf
(nss_ldap's, not openssl's) and sudo to the nscd user/group to test
the access.

Also nscd doesn't use rootbinddn, it uses binddn.
-- 
Axel.Thimm at ATrpms.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://dovecot.org/pipermail/dovecot/attachments/20061023/df4b5830/attachment.pgp