lmpt director and ldap userdb

Angel L. Mateo amateo at um.es
Wed May 6 08:53:45 UTC 2015


Hello,

	I've been using dovecot for a long time, but now I'm having troubles 
with I change I need to make.

	I have a director server in front of two backend servers. All of these 
servers are running dovecot 2.1.16. Redirection to backend servers are 
based in an attribute of a ldap server. My users are defined in this 
same ldap server.

	At this moment, for user authentication we use password lookups. My 
current configuration at both frontend and backend servers is attached. 
But now I need to change it to bind authentication, so the only change 
I've made is changing "auth_bind=no" to "auth_bind=yes".

	After this change, backend servers are working fine. Director servers 
are also working for POP and IMAP connections, but for LMTP they are 
returning:

May  6 10:23:35 myotis40 dovecot: lmtp(48026): Error: user myuser at um.es: 
Auth PASS lookup failed

	This error is returned without any ldap lookup, neither connection to 
backend servers.

	Any help? thanks in advance.

-- 
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información
y las Comunicaciones Aplicadas (ATICA)
http://www.um.es/atica
Tfo: 868887590
Fax: 868888337
-------------- next part --------------
# 2.1.16: /etc/dovecot/dovecot.conf
# OS: Linux 3.2.0-24-generic x86_64 Ubuntu 12.04.5 LTS 
auth_cache_negative_ttl = 0
auth_cache_size = 20 M
auth_cache_ttl = 1 days
auth_master_user_separator = *
auth_socket_path = director-userdb
default_process_limit = 1024
director_mail_servers = 155.54.211.161-155.54.211.164
director_servers = 155.54.211.185 155.54.211.186
director_username_hash = %Ln
disable_plaintext_auth = no
doveadm_proxy_port = 24245
lmtp_proxy = yes
log_timestamp = %Y-%m-%d %H:%M:%S
mail_plugins = quota stats
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
passdb {
  args = /etc/dovecot/master-users
  driver = passwd-file
  master = yes
}
passdb {
  args = /etc/dovecot/dovecot-ldap.conf.ext
  default_fields = proxy=y nopassword=y proxy_timeout=600
  driver = ldap
}
plugin {
  sieve = ~/.dovecot.sieve
  sieve_default = /etc/dovecot/default.sieve
  sieve_dir = ~/sieve
  sieve_max_redirects = 15
}
protocols = " imap lmtp sieve pop3 sieve"
service anvil {
  client_limit = 3075
}
service auth {
  client_limit = 4096
  unix_listener auth-userdb {
    mode = 0777
  }
}
service director {
  fifo_listener login/proxy-notify {
    mode = 0666
  }
  inet_listener {
    port = 9090
  }
  unix_listener director-userdb {
    mode = 0600
  }
  unix_listener login/director {
    mode = 0666
  }
}
service doveadm {
  inet_listener {
    port = 24245
  }
}
service imap-login {
  client_limit = 2206
  executable = imap-login director
  process_limit = 6
  process_min_avail = 6
  service_count = 0
}
service imap {
  process_limit = 12000
  process_min_avail = 6
  vsz_limit = 512 M
}
service ipc {
  unix_listener ipc {
    user = dovecot
  }
}
service lmtp {
  inet_listener lmtp {
    port = 24
  }
  process_min_avail = 10
  vsz_limit = 512 M
}
service managesieve-login {
  executable = managesieve-login director
}
service pop3-login {
  client_limit = 833
  executable = pop3-login director
  process_limit = 6
  process_min_avail = 6
  service_count = 0
}
service pop3 {
  process_min_avail = 6
}
service stats {
  fifo_listener stats-mail {
    mode = 0666
  }
}
ssl = no
userdb {
  args = /etc/dovecot/dovecot-ldap.conf.ext
  driver = ldap
}
protocol doveadm {
  auth_socket_path = director-userdb
}
local 155.54.211.160/27/27 {
  doveadm_password = <password>
}
-------------- next part --------------
auth_bind = no
base = <base dn>
default_pass_scheme = MD5-CRYPT
dn = <user dn>
dnpass = <password>
iterate_attrs = uid=user
iterate_filter = (&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))
pass_attrs = irisMailbox=userdb_mail,homeDirectory=userdb_home,uidNumber=userdb_uid,gidNumber=userdb_gid,=proxy=y,=proxy_timeout=600,irisMailHost=host
pass_filter = (&(&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))(|(uid=%u)(mail=%u)))
sasl_bind = no
uris = ldap://ldap.um.es
user_attrs = irisMailbox=mail,quota=quota_rule
user_filter = (&(&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))(|(uid=%u)(mail=%u)))


More information about the dovecot mailing list