AW: dovecot and ldap with problem on userdb

Averlon GmbH (in Gründung) c38sgzkz at averlon.net
Thu Sep 1 10:43:56 UTC 2016


Hi,
thanks for the valuable hint. I have already tried to search for this.

This is my postfix config.

+++
postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
bounce_queue_lifetime = 1h
command_directory = /usr/sbin
compatibility_level = 2
content_filter = smtp-amavis:[127.0.0.1]:10024
daemon_directory = /usr/lib/postfix/sbin
data_directory = /var/lib/postfix
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd
$daemon_directory/$process_name $process_id & sleep 5
home_mailbox = Maildir/
inet_interfaces = all
inet_protocols = all
mail_spool_directory = /var/spool/mail
mailbox_size_limit = 0
maximal_backoff_time = 15m
maximal_queue_lifetime = 1h
message_size_limit = 10240000
minimal_backoff_time = 5m
mydestination = $myhostname, localhost.$mydomain, localhost
mydomain = av.loc
myhostname = mail.av.loc
mynetworks = 127.0.0.0/8, 192.168.110.0/24, 192.168.111.0/24,
192.168.114.150, 192.168.114.151
myorigin = /etc/mailname
queue_run_delay = 5m
readme_directory = no
recipient_delimiter = +
relayhost =
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/av_smtp_auth.cf
smtp_sasl_security_options = noanonymous
smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtp_tls_ciphers = high
smtp_tls_protocols = !SSLv2, !SSLv3
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_relay_restrictions = permit_sasl_authenticated permit_mynetworks
check_relay_domains reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_security_options = noanonymous
smtpd_sender_restrictions = reject_unknown_sender_domain permit_mynetworks
permit_sasl_authenticated warn_if_reject
smtpd_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_loglevel = 3
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
tls_high_cipherlist =
EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128
:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDE
A:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA
tls_random_source = dev:/dev/urandom
tls_ssl_options = NO_COMPRESSION
unknown_local_recipient_reject_code = 550
unverified_sender_reject_reason = "av - Address verification failed"
virtual_alias_maps = hash:/etc/postfix/av_aliases.cf
virtual_mailbox_base = /var/av_vmail
virtual_mailbox_domains = /etc/postfix/av_domains.cf
virtual_mailbox_limit = 0
virtual_mailbox_maps = ldap:/etc/postfix/av_accounts.cf
virtual_transport = lmtp:unix:private/dovecot-lmtp
postconf: warning: /etc/postfix/main.cf: unused parameter: i#setgid_group=
+++

Could you probably identify the area based on your knowledge where it could
be?

ldap:/etc/postfix/av_accounts.cf =
+++
#
# check recipient mailbox destination
#
server_host = localhost
search_base = ou=people,dc=av,dc=loc
bind = yes
bind_dn = cn=xxx
bind_pw = xxx
query_filter = (&(objectClass=posixAccount)(mail=%s))

result_attribute = mail
result_format = %s/Maildir/
debuglevel = 1
+++

Mit freundlichenGrüßen / Kind Regards
Kallewirsch

-----Ursprüngliche Nachricht-----
Von: dovecot [mailto:dovecot-bounces at dovecot.org] Im Auftrag von Aki Tuomi
Gesendet: Donnerstag, 1. September 2016 08:02
An: dovecot at dovecot.org
Betreff: Re: dovecot and ldap with problem on userdb



On 31.08.2016 19:24, Averlon GmbH (in Gründung) wrote:
> Hi,
> I have setup a new ubuntu on 16.04..
> I have already a running system on 14.04 but wanted to migrate.
>
> I get an error when checking user in ldap.
>
> I get another error with some file permissions on auth-userdb which I 
> was not able to overcome sofar.
>
> Help appreciated.
>
>
> Mit freundlichenGrüßen / Kind Regards
> Kallewirsch

Your problem is in postfix config, possibly some virtual user mapping or
aliasing.

Aki



More information about the dovecot mailing list