[Dovecot] Virtual users, postfix and dovecot deliver LDA

Petri Asikainen paca at sci.fi
Tue Sep 2 11:00:02 EEST 2008 

Timo Sirainen kirjoitti:
> Your log shows that "home" is working but "user" is ignored, just as I
> thought..

Hmm.. I dont want  argue with you, you wrote the beast . But before I 
add that sAMAccountName=user mapping, my system log shows like following 
and user cannot access imap mailbox. After adding there no log messages 
"username changed" when accessing imap box. And MTA can still deliver 
mails to correct box.

Does third line mean that username get converted to home?


## LOG BEFORE sAMAccountName

Sep  1 14:40:48 skaolx6 dovecot: auth(default): 
ldap(petasi,172.21.89.69): user search: 
base=ou=Oppilaitokset,dc=domain,dc=local scope=subtree 
filter=(&(objectClass=Person)(|(mail=petasi)(sAMAccountName=petasi))) 
fields=sAMAccountName

Sep  1 14:40:48 domainlx6 dovecot: auth(default): 
auth(petasi,172.21.89.69): username changed petasi -> 
home=/var/spool/vmail/petasi

Sep  1 14:40:48 domainlx6 dovecot: auth(default): 
ldap(home=/var/spool/vmail/petasi,172.21.89.69): result: 
sAMAccountName(user=home=/var/spool/vmail/%$)=home=/var/spool/vmail/petasi

Sep  1 14:40:48 domainlx6 dovecot: auth(default): master out: USER 
   1       home=/var/spool/vmail/petasi    gid=12  uid=1001

Sep  1 14:40:48 domainlx6 dovecot: imap-login: Login: user=<petasi>, 
method=PLAIN, rip=172.21.89.69, lip=212.86.14.194, TLS

Sep  1 14:40:48 domainlx6 dovecot: IMAP(home=/var/spool/vmail/petasi): 
mkdir(/HOME_DIRECTORY_USED_BUT_NOT_GIVEN_BY_USERDB/Maildir/.Trash/cur) 
failed: Permission denied




> 
> On Mon, 2008-09-01 at 15:42 +0300, Petri Asikainen wrote:
>> Works for me (tm). Maybe some of ldap servers does not like that result 
>> attributes are specified multiple times. But current active directory 
>> server this not seems be an issue.
>>
>> Log shows that quory is working:
>>
>> Sep  1 15:00:52 domainlx6 dovecot: auth(default): 
>> ldap(petasi,172.21.89.69): user search: 
>> base=ou=Oppilaitokset,dc=domain,dc=local scope=subtree 
>> filter=(&(objectClass=Person)(|(mail=petasi)(sAMAccountName=petasi))) 
>> fields=sAMAccountName,sAMAccountName
>> Sep  1 15:00:52 domainlx6 dovecot: auth(default): 
>> ldap(petasi,172.21.89.69): result: 
>> sAMAccountName(home=/var/spool/vmail/%$)=/var/spool/vmail/petasi
>> Sep  1 15:00:52 domainlx6 dovecot: auth(default): master out: USER 
>>    2       petasi  home=/var/spool/vmail/petasi    gid=12    uid=1001
>>
>> Timo Sirainen kirjoitti:
>>> On Mon, 2008-09-01 at 15:15 +0300, Petri Asikainen wrote:
>>>> user_attrs = 
>>>> sAMAccountName=user,sAMAccountName=home=/var/spool/vmail/%$,=gid=12,=uid=1001
>>> Hmm. Does that really return both "user" and "home"? I've in TODO that
>>> it's not working..

More information about the dovecot mailing list