LDAP users issue

Dmitry Donskih dmitry.donskih at gmail.com
Mon Mar 18 12:15:51 EET 2019


I suggest you try adding extra attributes to LDAP replies:

https://wiki.dovecot.org/AuthDatabase/LDAP/Userdb#Attribute_templates_.28v2.1.2B-.29

Primarily, define "mail=" explicitly.

And then compare auth userdb outputs in logs for both LDAP and non-LDAP.

Hope this helps.


18.03.2019 12:25, Anushka Uditha Bandara wrote:

>     Hi,
>
>
> Here is my "/etc/dovecot/dovecot-ldap.conf.ext". I couldn't find a fix.
>
> hosts = ldap
> dn = cn=ro,dc=mail,dc=mail,dc=lk
> dnpass = roadmin
> auth_bind = yes
> auth_bind_userdn = uid=%n,ou=Users,dc=mai,dc=mail,dc=lk
> ldap_version = 3
> base = ou=Users,dc=mail,dc=mail,dc=lk
> deref = never
> scope = subtree
> user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid
> user_filter = (&(objectClass=posixAccount)(cn=%n))
> pass_attrs = mail=user,userPassword=password
> pass_filter = (&(objectclass=inetOrgPerson)(uid=%n))
>
> tls_ca_cert_file = /etc/letsencrypt/live/mail.lsf.mail.lk/.fullchain.pem
> <http://mail.lsf.mail.lk/.fullchain.pem>
> tls_ca_cert_dir = /etc/letsencrypt/live/mail.lsf.mail.lk/
> <http://mail.lsf.mail.lk/>
> tls_cipher_suite = SECURE256:-VERS-SSL3.0
> tls_cert_file =/etc/letsencrypt/live/mail.lsf.mail.lk/.fullchain.pem
> <http://mail.lsf.mail.lk/.fullchain.pem>
> tls_key_file =/etc/letsencrypt/live/mail.lsf.mail.lk/.privkey.pem
> <http://mail.lsf.mail.lk/.privkey.pem>
> tls_require_cert = try
> debug_level = -1
>
>
>
>


More information about the dovecot mailing list