<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
  </head>
  <body text="#000000" bgcolor="#FFFFFF">
    <p>Hmm. if you put it *after* the ldap userdb, it should not have
      prevented users from logging in.</p>
    <p>What happens if you do <br>
    </p>
    userdb {<br>
      driver = passwd-file<br>
      args = ....<br>
      skip = notfound<br>
      result_failure = continue-ok<br>
    }<br>
    <br>
    Aki<br>
    <br>
    <div class="moz-cite-prefix">On 07.08.2018 12:58, Simeon Ott wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:9A78C365-46CB-434E-A1E7-029EC8C02C77@onnet.ch">
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
      Now the attributes are correctly read for the user <a
        href="mailto:test@onnet.ch" class="" moz-do-not-send="true">test@onnet.ch</a>,
      but other users are not able to authenticate anymore.
      <div class=""><br class="">
      </div>
      <div class="">
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">root@buserver:/var/spool/postfix/virtual/<a
              href="http://onnet.ch/test/Maildir/.super#" class=""
              moz-do-not-send="true">onnet.ch/test/Maildir/.super#</a>
            doveadm user <a href="mailto:test@onnet.ch" class=""
              moz-do-not-send="true">test@onnet.ch</a></span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre">        </span>value</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">uid<span class="Apple-tab-span" style="white-space:pre">  </span>5000</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">gid<span class="Apple-tab-span" style="white-space:pre">  </span>5000</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">home<span class="Apple-tab-span" style="white-space:pre"> </span>/var/spool/postfix/virtual/<a
              href="http://onnet.ch/test/" class=""
              moz-do-not-send="true">onnet.ch/test/</a></span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">mail<span class="Apple-tab-span" style="white-space:pre"> </span>maildir:~/Maildir</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">quota_rule<span class="Apple-tab-span" style="white-space:pre">   </span>*:bytes=1073741824</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">acl<span class="Apple-tab-span" style="white-space:pre">  </span>vfile:/etc/dovecot/dovecot-acl</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">acl_globals_only<span class="Apple-tab-span" style="white-space:pre">     </span>yes</span></div>
      </div>
      <div class=""><br class="">
      </div>
      <div class="">
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">root@buserver:/etc/dovecot#
            doveadm user <a href="mailto:test2@onnet.ch" class=""
              moz-do-not-send="true">test2@onnet.ch</a></span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre">        </span>valueuserdb
            lookup: user <a href="mailto:test2@onnet.ch" class=""
              moz-do-not-send="true">test2@onnet.ch</a> doesn't exist</span></div>
      </div>
      <div class=""><br class="">
      </div>
      <div class="">I need to add all users to the passwd too to let
        other users authenticate properly. This is not an option for our
        productive server, because the LDAP directory should be the main
        db for user administration. After adding “<span
          style="font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><a href="mailto:test@onnet.ch" class=""
            moz-do-not-send="true">test@onnet.ch</a>:::::::</span>” to
        the passwd file, doveadm user works with <a
          href="mailto:test2@onnet.ch" class="" moz-do-not-send="true">test2@onnet.ch</a></div>
      <div class=""><br class="">
      </div>
      <div class="">
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">root@buserver:/var/spool/postfix/virtual/<a
              href="http://onnet.ch/test/Maildir/.super#" class=""
              moz-do-not-send="true">onnet.ch/test/Maildir/.super#</a>
            doveadm user <a href="mailto:test2@onnet.ch" class=""
              moz-do-not-send="true">test2@onnet.ch</a></span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre">        </span>value</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">uid<span class="Apple-tab-span" style="white-space:pre">  </span>5000</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">gid<span class="Apple-tab-span" style="white-space:pre">  </span>5000</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">home<span class="Apple-tab-span" style="white-space:pre"> </span>/var/spool/postfix/virtual/<a
              href="http://onnet.ch/test2/" class=""
              moz-do-not-send="true">onnet.ch/test2/</a></span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">mail<span class="Apple-tab-span" style="white-space:pre"> </span>maildir:~/Maildir</span></div>
        <div style="margin: 0px; font-stretch: normal; line-height:
          normal; font-family: Menlo; background-color: rgb(255, 255,
          255);" class=""><span style="font-variant-ligatures:
            no-common-ligatures" class="">quota_rule<span class="Apple-tab-span" style="white-space:pre">   </span>*:bytes=1073741824</span></div>
      </div>
      <div class=""><br class="">
      </div>
      <div class="">IMPORTANT NOTE: anyway.. even with this options set
        (acl and acl_globals_only) the user <a
          href="mailto:test@onnet.ch" class="" moz-do-not-send="true">test@onnet.ch</a> is
        still able to share its own folders?!</div>
      <div class=""><br class="">
      </div>
      <div class="">
        <div><br class="">
          <blockquote type="cite" class="">
            <div class="">On 7 Aug 2018, at 11:35, Aki Tuomi <<a
                href="mailto:aki.tuomi@dovecot.fi" class=""
                moz-do-not-send="true">aki.tuomi@dovecot.fi</a>>
              wrote:</div>
            <br class="Apple-interchange-newline">
            <div class="">
              <div class="">Ah. You probably need to change ldap userdb
                so that you add<br class="">
                <br class="">
                userdb {<br class="">
                 driver = ldap<br class="">
                  args = /etc/dovecot/dovecot-ldap.conf<br class="">
                 result_success = continue-ok<br class="">
                }<br class="">
                <br class="">
                so that the next one is processed. <br class="">
                <br class="">
                you can use 'doveadm user <a
                  href="mailto:test@onnet.ch" class=""
                  moz-do-not-send="true">test@onnet.ch</a>' to verify
                that the attributes are read for this user, and with
                another username that they are not.<br class="">
                <br class="">
                Aki<br class="">
                <br class="">
                <br class="">
                On 07.08.2018 12:23, Simeon Ott wrote:<br class="">
                <blockquote type="cite" class="">… attached the dovecot
                  -n, linked files, debug log lines during a<br class="">
                  standard client login<br class="">
                  <br class="">
                  <a class="moz-txt-link-abbreviated" href="mailto:root@buserver:/etc/dovecot/conf.d#">root@buserver:/etc/dovecot/conf.d#</a> doveconf -n<br
                    class="">
                  # 2.2.13: /etc/dovecot/dovecot.conf<br class="">
                  # OS: Linux 3.16.0-6-amd64 x86_64 Debian 8.11 <br
                    class="">
                  auth_debug = yes<br class="">
                  auth_debug_passwords = yes<br class="">
                  auth_mechanisms = plain login<br class="">
                  auth_verbose = yes<br class="">
                  auth_verbose_passwords = plain<br class="">
                  debug_log_path = syslog<br class="">
                  disable_plaintext_auth = no<br class="">
                  info_log_path = syslog<br class="">
                  lda_mailbox_autocreate = yes<br class="">
                  lda_mailbox_autosubscribe = yes<br class="">
                  login_log_format_elements = user=<%u> method=%m
                  rip=%r lip=%l mpid=%e %c<br class="">
                  mail_debug = yes<br class="">
                  mail_gid = 5000<br class="">
                  mail_location = maildir:~/Maildir<br class="">
                  mail_plugins = zlib quota acl<br class="">
                  mail_uid = 5000<br class="">
                  managesieve_notify_capability = mailto<br class="">
                  managesieve_sieve_capability = fileinto reject
                  envelope<br class="">
                  encoded-character vacation subaddress
                  comparator-i;ascii-numeric<br class="">
                  relational regex imap4flags copy include variables
                  body enotify<br class="">
                  environment mailbox date ihave<br class="">
                  namespace {<br class="">
                    hidden = no<br class="">
                    ignore_on_failure = no<br class="">
                    inbox = no<br class="">
                    list = children<br class="">
                    location =
                  maildir:%%h/Maildir:INDEX=%h/shared/%%u:CONTROL=%h/shared/%%u<br
                    class="">
                    prefix = shared/%%u/<br class="">
                    separator = /<br class="">
                    subscriptions = yes<br class="">
                    type = shared<br class="">
                  }<br class="">
                  namespace inbox {<br class="">
                    inbox = yes<br class="">
                    location = <br class="">
                    mailbox Drafts {<br class="">
                      auto = subscribe<br class="">
                      special_use = \Drafts<br class="">
                    }<br class="">
                    mailbox Sent {<br class="">
                      auto = subscribe<br class="">
                      special_use = \Sent<br class="">
                    }<br class="">
                    mailbox "Sent Messages" {<br class="">
                      special_use = \Sent<br class="">
                    }<br class="">
                    mailbox Spam {<br class="">
                      auto = subscribe<br class="">
                      special_use = \Junk<br class="">
                    }<br class="">
                    mailbox Trash {<br class="">
                      auto = subscribe<br class="">
                      special_use = \Trash<br class="">
                    }<br class="">
                    prefix = <br class="">
                    separator = /<br class="">
                    type = private<br class="">
                  }<br class="">
                  passdb {<br class="">
                    args = /etc/dovecot/dovecot-ldap.conf<br class="">
                    driver = ldap<br class="">
                  }<br class="">
                  plugin {<br class="">
                    acl = vfile<br class="">
                    acl_shared_dict =
                  <a class="moz-txt-link-freetext" href="file:/var/spool/postfix/virtual/shared-mailboxes">file:/var/spool/postfix/virtual/shared-mailboxes</a><br
                    class="">
                    quota = maildir:User quota<br class="">
                    quota_exceeded_message = 4.2.2 Mailbox full<br
                    class="">
                    quota_rule = *:storage=1G<br class="">
                    quota_rule2 = INBOX.Trash:storage=+100M<br class="">
                    quota_rule3 = INBOX.Spam:ignore<br class="">
                    quota_warning = storage=95%% quota-warning 95 %u<br
                    class="">
                    sieve = ~/.dovecot.sieve<br class="">
                    sieve_before = /var/lib/dovecot/sieve/default.sieve<br
                    class="">
                    sieve_dir = ~/sieve<br class="">
                    sieve_max_actions = 32<br class="">
                    sieve_max_redirects = 4<br class="">
                    sieve_max_script_size = 1M<br class="">
                    sieve_quota_max_scripts = 0<br class="">
                    sieve_quota_max_storage = 0<br class="">
                  }<br class="">
                  protocols = " imap lmtp sieve pop3"<br class="">
                  service auth {<br class="">
                    group = dovecot<br class="">
                    unix_listener /var/spool/postfix/private/auth {<br
                    class="">
                      group = postfix<br class="">
                      mode = 0666<br class="">
                      user = postfix<br class="">
                    }<br class="">
                    unix_listener auth-master {<br class="">
                      group = vmail<br class="">
                      mode = 0666<br class="">
                      user = vmail<br class="">
                    }<br class="">
                    unix_listener auth-userdb {<br class="">
                      group = vmail<br class="">
                      mode = 0666<br class="">
                      user = vmail<br class="">
                    }<br class="">
                    user = dovecot<br class="">
                  }<br class="">
                  service lmtp {<br class="">
                    unix_listener lmtp {<br class="">
                      mode = 0666<br class="">
                    }<br class="">
                  }<br class="">
                  service managesieve-login {<br class="">
                    inet_listener sieve {<br class="">
                      port = 4190<br class="">
                    }<br class="">
                    inet_listener sieve_deprecated {<br class="">
                      port = 2000<br class="">
                    }<br class="">
                    process_min_avail = 0<br class="">
                    service_count = 1<br class="">
                    vsz_limit = 64 M<br class="">
                  }<br class="">
                  ssl = no<br class="">
                  userdb {<br class="">
                    args = /etc/dovecot/dovecot-ldap.conf<br class="">
                    driver = ldap<br class="">
                  }<br class="">
                  userdb {<br class="">
                    args = username_format=%Lu /etc/dovecot/share.passwd<br
                    class="">
                    driver = passwd-file<br class="">
                  }<br class="">
                  protocol lmtp {<br class="">
                    mail_plugins = zlib quota acl sieve<br class="">
                  }<br class="">
                  protocol lda {<br class="">
                    auth_socket_path = /var/run/dovecot/auth-master<br
                    class="">
                    deliver_log_format = msgid=%m: %$<br class="">
                    mail_plugins = zlib quota acl sieve<br class="">
                    postmaster_address = <a
                    href="mailto:postmaster@onnet.ch" class=""
                    moz-do-not-send="true">postmaster@onnet.ch</a> <<a
                    href="mailto:postmaster@onnet.ch" class=""
                    moz-do-not-send="true">mailto:postmaster@onnet.ch</a>><br
                    class="">
                  }<br class="">
                  protocol imap {<br class="">
                    mail_plugins = zlib quota acl imap_quota imap_acl<br
                    class="">
                  }<br class="">
                  protocol sieve {<br class="">
                    info_log_path = /var/log/sieve.log<br class="">
                    log_path = /var/log/sieve.log<br class="">
                    mail_max_userip_connections = 10<br class="">
                    managesieve_implementation_string = Dovecot
                  Pigeonhole<br class="">
                    managesieve_logout_format = bytes=%i/%o<br class="">
                    managesieve_max_compile_errors = 5<br class="">
                    managesieve_max_line_length = 65536<br class="">
                  }<br class="">
                  <br class="">
                  root@buserver:/etc/dovecot# cat dovecot-acl<br
                    class="">
                  root@buserver:/etc/dovecot#<br class="">
                  <br class="">
                  —> means empty file<br class="">
                  <br class="">
                  root@buserver:/etc/dovecot# cat share.passwd <br
                    class="">
                  <a href="mailto:test@onnet.ch" class=""
                    moz-do-not-send="true">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>:::::::userdb_acl=vfile:/etc/dovecot/dovecot-acl<br
                    class="">
                  userdb_acl_globals_only=yes<br class="">
                  <br class="">
                  root@buserver:/etc/dovecot# sed -e '/^#/d'
                  dovecot-ldap.conf<br class="">
                  hosts = localhost<br class="">
                  uris = <a class="moz-txt-link-freetext" href="ldap://localhost:389/">ldap://localhost:389/</a><br class="">
                  debug_level = 10<br class="">
                  auth_bind = yes<br class="">
                  ldap_version = 3<br class="">
                  base = ou=domains,dc=intra,dc=onnet,dc=ch<br class="">
                  deref = never<br class="">
                  scope = subtree<br class="">
                  user_attrs =<br class="">
homeDirectory=home=/var/spool/postfix/virtual/%$,uidNumber=uid,gidNumber=gid,quota=quota_rule=*:bytes=%$<br
                    class="">
                  user_filter =
                  (&(objectClass=CourierMailAccount)(mail=%u))<br
                    class="">
                  pass_attrs = mail=user,userPassword=password<br
                    class="">
                  pass_filter =
                  (&(objectClass=CourierMailAccount)(mail=%u))<br
                    class="">
                  iterate_attrs = mail=user<br class="">
                  iterate_filter = (objectClass=CourierMailAccount)<br
                    class="">
                  default_pass_scheme = CRYPT<br class="">
                  <br class="">
                  root@buserver:/etc/dovecot# cat /var/log/mail.log |
                  grep "Aug  7 11:17:27"<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile: file<br
                    class="">
/var/spool/postfix/virtual/onnet.ch/test//Maildir/.test<br class="">
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir/.test"><http://onnet.ch/test//Maildir/.test></a> folder
                  1.sub folder 1<br class="">
                  1/dovecot-acl not found<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile:
                  reading file<br class="">
/var/spool/postfix/virtual/onnet.ch/test//Maildir/.super/dovecot-acl<br
                    class="">
<a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir/.super/dovecot-acl"><http://onnet.ch/test//Maildir/.super/dovecot-acl></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile:
                  reading file<br class="">
/var/spool/postfix/virtual/onnet.ch/test//Maildir/.super.hello<br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir/.super.hello"><http://onnet.ch/test//Maildir/.super.hello></a>
                  du/dovecot-acl<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile: file<br
                    class="">
/var/spool/postfix/virtual/onnet.ch/test//Maildir/.test<br class="">
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir/.test"><http://onnet.ch/test//Maildir/.test></a> folder
                  1/dovecot-acl not found<br class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug: auth
                  client connected<br class="">
                  (pid=3203)<br class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug: client
                  in:<br class="">
AUTH#0111#011PLAIN#011service=imap#011session=lkbV3NRyyQDAqDgB#011lip=192.168.56.50#011rip=192.168.56.1#011lport=143#011rport=52169#011resp=dGVzdEBvbm5ldC5jaAB0ZXN0QG9ubmV0LmNoAG5vdmVsbDEyMzQ1Ng==<br
                    class="">
                  (previous base64 data may contain sensitive data)<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  bind search:<br class="">
                  base=ou=domains,dc=intra,dc=onnet,dc=ch<br class="">
filter=(&(objectClass=CourierMailAccount)(<a class="moz-txt-link-abbreviated" href="mailto:mail=test@onnet.ch">mail=test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:mail=test@onnet.ch"><mailto:mail=test@onnet.ch></a>))<br class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  result:<br class="">
                  <a class="moz-txt-link-abbreviated" href="mailto:mail=test@onnet.ch">mail=test@onnet.ch</a> <a class="moz-txt-link-rfc2396E" href="mailto:mail=test@onnet.ch"><mailto:mail=test@onnet.ch></a>;
                  mail unused<br class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  result:<br class="">
                  <a class="moz-txt-link-abbreviated" href="mailto:mail=test@onnet.ch">mail=test@onnet.ch</a> <a class="moz-txt-link-rfc2396E" href="mailto:mail=test@onnet.ch"><mailto:mail=test@onnet.ch></a><br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug: client
                  passdb out:<br class="">
                  <a class="moz-txt-link-abbreviated" href="mailto:OK#0111#011user=test@onnet.ch">OK#0111#011user=test@onnet.ch</a>
                  <a class="moz-txt-link-rfc2396E" href="mailto:OK#0111#011user=test@onnet.ch"><mailto:OK#0111#011user=test@onnet.ch></a><br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug: master
                  in:<br class="">
REQUEST#0113718250497#0113203#0111#011089fd1d9e1a2c66586786422f24c51cd#011session_pid=3206#011request_auth_token<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  user search:<br class="">
                  base=ou=domains,dc=intra,dc=onnet,dc=ch scope=subtree<br
                    class="">
filter=(&(objectClass=CourierMailAccount)(<a class="moz-txt-link-abbreviated" href="mailto:mail=test@onnet.ch">mail=test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:mail=test@onnet.ch"><mailto:mail=test@onnet.ch></a>))<br class="">
                  fields=homeDirectory,uidNumber,gidNumber,quota<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  result:<br class="">
                  uidNumber=5000 quota=1073741824 gidNumber=5000<br
                    class="">
                  homeDirectory=onnet.ch/test/
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test/"><http://onnet.ch/test/></a>;<br class="">
                  homeDirectory,uidNumber,quota,gidNumber unused<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug:
                  ldap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>,192.168.56.1,<lkbV3NRyyQDAqDgB>):
                  result:<br class="">
                  uidNumber=5000 quota=1073741824 gidNumber=5000<br
                    class="">
                  homeDirectory=onnet.ch/test/
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test/"><http://onnet.ch/test/></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: auth: Debug: master
                  userdb out:<br class="">
                  <a class="moz-txt-link-abbreviated" href="mailto:USER#0113718250497#011test@onnet.ch">USER#0113718250497#011test@onnet.ch</a><br class="">
<a class="moz-txt-link-rfc2396E" href="mailto:USER#0113718250497#011test@onnet.ch"><mailto:USER#0113718250497#011test@onnet.ch></a>#011home=/var/spool/postfix/virtual/onnet.ch/test/#011uid=5000#011gid=5000#011quota_rule=*:bytes=1073741824#011auth_token=913bee7c974e18d4527fc38d90457411e7e61201<br
                    class="">
<a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test/#011uid=5000#011gid=5000#011quota_rule=*:bytes=1073741824#011auth_token=913bee7c974e18d4527fc38d90457411e7e61201"><http://onnet.ch/test/#011uid=5000#011gid=5000#011quota_rule=*:bytes=1073741824#011auth_token=913bee7c974e18d4527fc38d90457411e7e61201></a><br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap-login: Login:<br
                    class="">
                  user=<<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a>
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>>, method=PLAIN,<br
                    class="">
                  rip=192.168.56.1, lip=192.168.56.50, mpid=3206<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Loading
                  modules from<br class="">
                  directory: /usr/lib/dovecot/modules<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Module
                  loaded:<br class="">
                  /usr/lib/dovecot/modules/lib01_acl_plugin.so<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Module
                  loaded:<br class="">
                  /usr/lib/dovecot/modules/lib02_imap_acl_plugin.so<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Module
                  loaded:<br class="">
                  /usr/lib/dovecot/modules/lib10_quota_plugin.so<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Module
                  loaded:<br class="">
                  /usr/lib/dovecot/modules/lib11_imap_quota_plugin.so<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Module
                  loaded:<br class="">
                  /usr/lib/dovecot/modules/lib20_zlib_plugin.so<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap: Debug: Added
                  userdb setting:<br class="">
                  plugin/quota_rule=*:bytes=1073741824<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Effective
                  uid=5000, gid=5000,<br class="">
                  home=/var/spool/postfix/virtual/onnet.ch/test/
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test/"><http://onnet.ch/test/></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota root:
                  name=User quota<br class="">
                  backend=maildir args=<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota rule:
                  root=User quota mailbox=*<br class="">
                  bytes=1073741824 messages=0<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota rule:
                  root=User quota<br class="">
                  mailbox=INBOX.Trash bytes=+104857600 messages=0<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota rule:
                  root=User quota<br class="">
                  mailbox=INBOX.Spam ignored<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota warning:
                  bytes=1020054732 (95%)<br class="">
                  messages=0 reverse=no command=quota-warning 95
                  <a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Quota grace:
                  root=User quota<br class="">
                  bytes=107374182 (10%)<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Namespace inbox:
                  type=private,<br class="">
                  prefix=, sep=/, inbox=yes, hidden=no, list=yes,
                  subscriptions=yes<br class="">
                  location=maildir:~/Maildir<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: maildir++:<br
                    class="">
                  root=/var/spool/postfix/virtual/onnet.ch/test//Maildir<br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir"><http://onnet.ch/test//Maildir></a>, index=,
                  indexpvt=, control=,<br class="">
inbox=/var/spool/postfix/virtual/onnet.ch/test//Maildir<br class="">
                  <a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//Maildir"><http://onnet.ch/test//Maildir></a>, alt=<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl:
                  initializing backend with data: vfile<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl: acl
                  username = <a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl: owner = 1<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile:
                  Global ACLs disabled<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: Namespace :
                  type=shared,<br class="">
                  prefix=shared/%u/, sep=/, inbox=no, hidden=no,
                  list=children,<br class="">
                  subscriptions=yes<br class="">
location=maildir:%h/Maildir:INDEX=/var/spool/postfix/virtual/onnet.ch/test//shared/%u:CONTROL=/var/spool/postfix/virtual/onnet.ch/test//shared/%u<br
                    class="">
<a class="moz-txt-link-rfc2396E" href="http://onnet.ch/test//shared/%u:CONTROL=/var/spool/postfix/virtual/onnet.ch/test//shared/%u"><http://onnet.ch/test//shared/%u:CONTROL=/var/spool/postfix/virtual/onnet.ch/test//shared/%u></a><br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: shared:
                  root=/var/run/dovecot, index=,<br class="">
                  indexpvt=, control=, inbox=, alt=<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl:
                  initializing backend with data: vfile<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl: acl
                  username = <a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a><br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl: owner = 0<br
                    class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Debug: acl vfile:
                  Global ACLs disabled<br class="">
                  Aug  7 11:17:27 buserver dovecot: imap(<a class="moz-txt-link-abbreviated" href="mailto:test@onnet.ch">test@onnet.ch</a><br
                    class="">
                  <a class="moz-txt-link-rfc2396E" href="mailto:test@onnet.ch"><mailto:test@onnet.ch></a>): Disconnected: Logged
                  out in=30 out=457<br class="">
                  <br class="">
                  thanks for looking into this<br class="">
                  <br class="">
                  <blockquote type="cite" class="">On 7 Aug 2018, at
                    10:34, Aki Tuomi <<a class="moz-txt-link-abbreviated" href="mailto:aki.tuomi@dovecot.fi">aki.tuomi@dovecot.fi</a><br
                      class="">
                    <a class="moz-txt-link-rfc2396E" href="mailto:aki.tuomi@dovecot.fi"><mailto:aki.tuomi@dovecot.fi></a>> wrote:<br
                      class="">
                    <br class="">
                    Can you provide your doveconf -n after adding the
                    database *after* LDAP.<br class="">
                    <br class="">
                    You probably need to add 'noauthenticate' as one
                    parameter after the<br class="">
                    userdb ones.<br class="">
                    <br class="">
                    Aki<br class="">
                    <br class="">
                  </blockquote>
                  <br class="">
                </blockquote>
                <br class="">
              </div>
            </div>
          </blockquote>
        </div>
        <br class="">
      </div>
    </blockquote>
    <br>
  </body>
</html>