lmpt director and ldap userdb
Angel L. Mateo
amateo at um.es
Wed May 6 08:53:45 UTC 2015
Hello,
I've been using dovecot for a long time, but now I'm having troubles
with I change I need to make.
I have a director server in front of two backend servers. All of these
servers are running dovecot 2.1.16. Redirection to backend servers are
based in an attribute of a ldap server. My users are defined in this
same ldap server.
At this moment, for user authentication we use password lookups. My
current configuration at both frontend and backend servers is attached.
But now I need to change it to bind authentication, so the only change
I've made is changing "auth_bind=no" to "auth_bind=yes".
After this change, backend servers are working fine. Director servers
are also working for POP and IMAP connections, but for LMTP they are
returning:
May 6 10:23:35 myotis40 dovecot: lmtp(48026): Error: user myuser at um.es:
Auth PASS lookup failed
This error is returned without any ldap lookup, neither connection to
backend servers.
Any help? thanks in advance.
--
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información
y las Comunicaciones Aplicadas (ATICA)
http://www.um.es/atica
Tfo: 868887590
Fax: 868888337
-------------- next part --------------
# 2.1.16: /etc/dovecot/dovecot.conf
# OS: Linux 3.2.0-24-generic x86_64 Ubuntu 12.04.5 LTS
auth_cache_negative_ttl = 0
auth_cache_size = 20 M
auth_cache_ttl = 1 days
auth_master_user_separator = *
auth_socket_path = director-userdb
default_process_limit = 1024
director_mail_servers = 155.54.211.161-155.54.211.164
director_servers = 155.54.211.185 155.54.211.186
director_username_hash = %Ln
disable_plaintext_auth = no
doveadm_proxy_port = 24245
lmtp_proxy = yes
log_timestamp = %Y-%m-%d %H:%M:%S
mail_plugins = quota stats
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
passdb {
args = /etc/dovecot/master-users
driver = passwd-file
master = yes
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
default_fields = proxy=y nopassword=y proxy_timeout=600
driver = ldap
}
plugin {
sieve = ~/.dovecot.sieve
sieve_default = /etc/dovecot/default.sieve
sieve_dir = ~/sieve
sieve_max_redirects = 15
}
protocols = " imap lmtp sieve pop3 sieve"
service anvil {
client_limit = 3075
}
service auth {
client_limit = 4096
unix_listener auth-userdb {
mode = 0777
}
}
service director {
fifo_listener login/proxy-notify {
mode = 0666
}
inet_listener {
port = 9090
}
unix_listener director-userdb {
mode = 0600
}
unix_listener login/director {
mode = 0666
}
}
service doveadm {
inet_listener {
port = 24245
}
}
service imap-login {
client_limit = 2206
executable = imap-login director
process_limit = 6
process_min_avail = 6
service_count = 0
}
service imap {
process_limit = 12000
process_min_avail = 6
vsz_limit = 512 M
}
service ipc {
unix_listener ipc {
user = dovecot
}
}
service lmtp {
inet_listener lmtp {
port = 24
}
process_min_avail = 10
vsz_limit = 512 M
}
service managesieve-login {
executable = managesieve-login director
}
service pop3-login {
client_limit = 833
executable = pop3-login director
process_limit = 6
process_min_avail = 6
service_count = 0
}
service pop3 {
process_min_avail = 6
}
service stats {
fifo_listener stats-mail {
mode = 0666
}
}
ssl = no
userdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
protocol doveadm {
auth_socket_path = director-userdb
}
local 155.54.211.160/27/27 {
doveadm_password = <password>
}
-------------- next part --------------
auth_bind = no
base = <base dn>
default_pass_scheme = MD5-CRYPT
dn = <user dn>
dnpass = <password>
iterate_attrs = uid=user
iterate_filter = (&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))
pass_attrs = irisMailbox=userdb_mail,homeDirectory=userdb_home,uidNumber=userdb_uid,gidNumber=userdb_gid,=proxy=y,=proxy_timeout=600,irisMailHost=host
pass_filter = (&(&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))(|(uid=%u)(mail=%u)))
sasl_bind = no
uris = ldap://ldap.um.es
user_attrs = irisMailbox=mail,quota=quota_rule
user_filter = (&(&(objectClass=CourierMailAccount)(irisUserStatus=urn:mace:rediris.es:um.es:userstatus:correo:estado:activo))(|(uid=%u)(mail=%u)))
More information about the dovecot
mailing list