<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Now the attributes are correctly read for the user <a href="mailto:test@onnet.ch" class="">test@onnet.ch</a>, but other users are not able to authenticate anymore.<div class=""><br class=""></div><div class=""><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">root@buserver:/var/spool/postfix/virtual/<a href="http://onnet.ch/test/Maildir/.super#" class="">onnet.ch/test/Maildir/.super#</a> doveadm user <a href="mailto:test@onnet.ch" class="">test@onnet.ch</a></span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre"> </span>value</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">uid<span class="Apple-tab-span" style="white-space:pre">    </span>5000</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">gid<span class="Apple-tab-span" style="white-space:pre">     </span>5000</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">home<span class="Apple-tab-span" style="white-space:pre">    </span>/var/spool/postfix/virtual/<a href="http://onnet.ch/test/" class="">onnet.ch/test/</a></span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">mail<span class="Apple-tab-span" style="white-space:pre">  </span>maildir:~/Maildir</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">quota_rule<span class="Apple-tab-span" style="white-space:pre"> </span>*:bytes=1073741824</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">acl<span class="Apple-tab-span" style="white-space:pre">       </span>vfile:/etc/dovecot/dovecot-acl</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">acl_globals_only<span class="Apple-tab-span" style="white-space:pre">      </span>yes</span></div></div><div class=""><br class=""></div><div class=""><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">root@buserver:/etc/dovecot# doveadm user <a href="mailto:test2@onnet.ch" class="">test2@onnet.ch</a></span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre">       </span>valueuserdb lookup: user <a href="mailto:test2@onnet.ch" class="">test2@onnet.ch</a> doesn't exist</span></div></div><div class=""><br class=""></div><div class="">I need to add all users to the passwd too to let other users authenticate properly. This is not an option for our productive server, because the LDAP directory should be the main db for user administration. After adding “<span style="font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><a href="mailto:test@onnet.ch" class="">test@onnet.ch</a>:::::::</span>” to the passwd file, doveadm user works with <a href="mailto:test2@onnet.ch" class="">test2@onnet.ch</a></div><div class=""><br class=""></div><div class=""><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">root@buserver:/var/spool/postfix/virtual/<a href="http://onnet.ch/test/Maildir/.super#" class="">onnet.ch/test/Maildir/.super#</a> doveadm user <a href="mailto:test2@onnet.ch" class="">test2@onnet.ch</a></span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">field<span class="Apple-tab-span" style="white-space:pre">      </span>value</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">uid<span class="Apple-tab-span" style="white-space:pre">    </span>5000</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">gid<span class="Apple-tab-span" style="white-space:pre">     </span>5000</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">home<span class="Apple-tab-span" style="white-space:pre">    </span>/var/spool/postfix/virtual/<a href="http://onnet.ch/test2/" class="">onnet.ch/test2/</a></span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">mail<span class="Apple-tab-span" style="white-space:pre">        </span>maildir:~/Maildir</span></div><div style="margin: 0px; font-stretch: normal; line-height: normal; font-family: Menlo; background-color: rgb(255, 255, 255);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">quota_rule<span class="Apple-tab-span" style="white-space:pre"> </span>*:bytes=1073741824</span></div></div><div class=""><br class=""></div><div class="">IMPORTANT NOTE: anyway.. even with this options set (acl and acl_globals_only) the user <a href="mailto:test@onnet.ch" class="">test@onnet.ch</a> is still able to share its own folders?!</div><div class=""><br class=""></div><div class=""><div><br class=""><blockquote type="cite" class=""><div class="">On 7 Aug 2018, at 11:35, Aki Tuomi <<a href="mailto:aki.tuomi@dovecot.fi" class="">aki.tuomi@dovecot.fi</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div class="">Ah. You probably need to change ldap userdb so that you add<br class=""><br class="">userdb {<br class="">  driver = ldap<br class="">  args = /etc/dovecot/dovecot-ldap.conf<br class="">  result_success = continue-ok<br class="">}<br class=""><br class="">so that the next one is processed. <br class=""><br class="">you can use 'doveadm user <a href="mailto:test@onnet.ch" class="">test@onnet.ch</a>' to verify that the attributes are read for this user, and with another username that they are not.<br class=""><br class="">Aki<br class=""><br class=""><br class="">On 07.08.2018 12:23, Simeon Ott wrote:<br class=""><blockquote type="cite" class="">… attached the dovecot -n, linked files, debug log lines during a<br class="">standard client login<br class=""><br class="">root@buserver:/etc/dovecot/conf.d# doveconf -n<br class=""># 2.2.13: /etc/dovecot/dovecot.conf<br class=""># OS: Linux 3.16.0-6-amd64 x86_64 Debian 8.11 <br class="">auth_debug = yes<br class="">auth_debug_passwords = yes<br class="">auth_mechanisms = plain login<br class="">auth_verbose = yes<br class="">auth_verbose_passwords = plain<br class="">debug_log_path = syslog<br class="">disable_plaintext_auth = no<br class="">info_log_path = syslog<br class="">lda_mailbox_autocreate = yes<br class="">lda_mailbox_autosubscribe = yes<br class="">login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c<br class="">mail_debug = yes<br class="">mail_gid = 5000<br class="">mail_location = maildir:~/Maildir<br class="">mail_plugins = zlib quota acl<br class="">mail_uid = 5000<br class="">managesieve_notify_capability = mailto<br class="">managesieve_sieve_capability = fileinto reject envelope<br class="">encoded-character vacation subaddress comparator-i;ascii-numeric<br class="">relational regex imap4flags copy include variables body enotify<br class="">environment mailbox date ihave<br class="">namespace {<br class="">  hidden = no<br class="">  ignore_on_failure = no<br class="">  inbox = no<br class="">  list = children<br class="">  location = maildir:%%h/Maildir:INDEX=%h/shared/%%u:CONTROL=%h/shared/%%u<br class="">  prefix = shared/%%u/<br class="">  separator = /<br class="">  subscriptions = yes<br class="">  type = shared<br class="">}<br class="">namespace inbox {<br class="">  inbox = yes<br class="">  location = <br class="">  mailbox Drafts {<br class="">    auto = subscribe<br class="">    special_use = \Drafts<br class="">  }<br class="">  mailbox Sent {<br class="">    auto = subscribe<br class="">    special_use = \Sent<br class="">  }<br class="">  mailbox "Sent Messages" {<br class="">    special_use = \Sent<br class="">  }<br class="">  mailbox Spam {<br class="">    auto = subscribe<br class="">    special_use = \Junk<br class="">  }<br class="">  mailbox Trash {<br class="">    auto = subscribe<br class="">    special_use = \Trash<br class="">  }<br class="">  prefix = <br class="">  separator = /<br class="">  type = private<br class="">}<br class="">passdb {<br class="">  args = /etc/dovecot/dovecot-ldap.conf<br class="">  driver = ldap<br class="">}<br class="">plugin {<br class="">  acl = vfile<br class="">  acl_shared_dict = file:/var/spool/postfix/virtual/shared-mailboxes<br class="">  quota = maildir:User quota<br class="">  quota_exceeded_message = 4.2.2 Mailbox full<br class="">  quota_rule = *:storage=1G<br class="">  quota_rule2 = INBOX.Trash:storage=+100M<br class="">  quota_rule3 = INBOX.Spam:ignore<br class="">  quota_warning = storage=95%% quota-warning 95 %u<br class="">  sieve = ~/.dovecot.sieve<br class="">  sieve_before = /var/lib/dovecot/sieve/default.sieve<br class="">  sieve_dir = ~/sieve<br class="">  sieve_max_actions = 32<br class="">  sieve_max_redirects = 4<br class="">  sieve_max_script_size = 1M<br class="">  sieve_quota_max_scripts = 0<br class="">  sieve_quota_max_storage = 0<br class="">}<br class="">protocols = " imap lmtp sieve pop3"<br class="">service auth {<br class="">  group = dovecot<br class="">  unix_listener /var/spool/postfix/private/auth {<br class="">    group = postfix<br class="">    mode = 0666<br class="">    user = postfix<br class="">  }<br class="">  unix_listener auth-master {<br class="">    group = vmail<br class="">    mode = 0666<br class="">    user = vmail<br class="">  }<br class="">  unix_listener auth-userdb {<br class="">    group = vmail<br class="">    mode = 0666<br class="">    user = vmail<br class="">  }<br class="">  user = dovecot<br class="">}<br class="">service lmtp {<br class="">  unix_listener lmtp {<br class="">    mode = 0666<br class="">  }<br class="">}<br class="">service managesieve-login {<br class="">  inet_listener sieve {<br class="">    port = 4190<br class="">  }<br class="">  inet_listener sieve_deprecated {<br class="">    port = 2000<br class="">  }<br class="">  process_min_avail = 0<br class="">  service_count = 1<br class="">  vsz_limit = 64 M<br class="">}<br class="">ssl = no<br class="">userdb {<br class="">  args = /etc/dovecot/dovecot-ldap.conf<br class="">  driver = ldap<br class="">}<br class="">userdb {<br class="">  args = username_format=%Lu /etc/dovecot/share.passwd<br class="">  driver = passwd-file<br class="">}<br class="">protocol lmtp {<br class="">  mail_plugins = zlib quota acl sieve<br class="">}<br class="">protocol lda {<br class="">  auth_socket_path = /var/run/dovecot/auth-master<br class="">  deliver_log_format = msgid=%m: %$<br class="">  mail_plugins = zlib quota acl sieve<br class="">  postmaster_address = <a href="mailto:postmaster@onnet.ch" class="">postmaster@onnet.ch</a> <<a href="mailto:postmaster@onnet.ch" class="">mailto:postmaster@onnet.ch</a>><br class="">}<br class="">protocol imap {<br class="">  mail_plugins = zlib quota acl imap_quota imap_acl<br class="">}<br class="">protocol sieve {<br class="">  info_log_path = /var/log/sieve.log<br class="">  log_path = /var/log/sieve.log<br class="">  mail_max_userip_connections = 10<br class="">  managesieve_implementation_string = Dovecot Pigeonhole<br class="">  managesieve_logout_format = bytes=%i/%o<br class="">  managesieve_max_compile_errors = 5<br class="">  managesieve_max_line_length = 65536<br class="">}<br class=""><br class="">root@buserver:/etc/dovecot# cat dovecot-acl<br class="">root@buserver:/etc/dovecot#<br class=""><br class="">—> means empty file<br class=""><br class="">root@buserver:/etc/dovecot# cat share.passwd <br class=""><a href="mailto:test@onnet.ch" class="">test@onnet.ch</a><br class=""><mailto:test@onnet.ch>:::::::userdb_acl=vfile:/etc/dovecot/dovecot-acl<br class="">userdb_acl_globals_only=yes<br class=""><br class="">root@buserver:/etc/dovecot# sed -e '/^#/d' dovecot-ldap.conf<br class="">hosts = localhost<br class="">uris = ldap://localhost:389/<br class="">debug_level = 10<br class="">auth_bind = yes<br class="">ldap_version = 3<br class="">base = ou=domains,dc=intra,dc=onnet,dc=ch<br class="">deref = never<br class="">scope = subtree<br class="">user_attrs =<br class="">homeDirectory=home=/var/spool/postfix/virtual/%$,uidNumber=uid,gidNumber=gid,quota=quota_rule=*:bytes=%$<br class="">user_filter = (&(objectClass=CourierMailAccount)(mail=%u))<br class="">pass_attrs = mail=user,userPassword=password<br class="">pass_filter = (&(objectClass=CourierMailAccount)(mail=%u))<br class="">iterate_attrs = mail=user<br class="">iterate_filter = (objectClass=CourierMailAccount)<br class="">default_pass_scheme = CRYPT<br class=""><br class="">root@buserver:/etc/dovecot# cat /var/log/mail.log | grep "Aug  7 11:17:27"<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: file<br class="">/var/spool/postfix/virtual/onnet.ch/test//Maildir/.test<br class=""><http://onnet.ch/test//Maildir/.test> folder 1.sub folder 1<br class="">1/dovecot-acl not found<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: reading file<br class="">/var/spool/postfix/virtual/onnet.ch/test//Maildir/.super/dovecot-acl<br class=""><http://onnet.ch/test//Maildir/.super/dovecot-acl><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: reading file<br class="">/var/spool/postfix/virtual/onnet.ch/test//Maildir/.super.hello<br class=""><http://onnet.ch/test//Maildir/.super.hello> du/dovecot-acl<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: file<br class="">/var/spool/postfix/virtual/onnet.ch/test//Maildir/.test<br class=""><http://onnet.ch/test//Maildir/.test> folder 1/dovecot-acl not found<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: auth client connected<br class="">(pid=3203)<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: client in:<br class="">AUTH#0111#011PLAIN#011service=imap#011session=lkbV3NRyyQDAqDgB#011lip=192.168.56.50#011rip=192.168.56.1#011lport=143#011rport=52169#011resp=dGVzdEBvbm5ldC5jaAB0ZXN0QG9ubmV0LmNoAG5vdmVsbDEyMzQ1Ng==<br class="">(previous base64 data may contain sensitive data)<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): bind search:<br class="">base=ou=domains,dc=intra,dc=onnet,dc=ch<br class="">filter=(&(objectClass=CourierMailAccount)(mail=test@onnet.ch<br class=""><mailto:mail=test@onnet.ch>))<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): result:<br class="">mail=test@onnet.ch <mailto:mail=test@onnet.ch>; mail unused<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): result:<br class="">mail=test@onnet.ch <mailto:mail=test@onnet.ch><br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: client passdb out:<br class="">OK#0111#011user=test@onnet.ch <mailto:OK#0111#011user=test@onnet.ch><br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: master in:<br class="">REQUEST#0113718250497#0113203#0111#011089fd1d9e1a2c66586786422f24c51cd#011session_pid=3206#011request_auth_token<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): user search:<br class="">base=ou=domains,dc=intra,dc=onnet,dc=ch scope=subtree<br class="">filter=(&(objectClass=CourierMailAccount)(mail=test@onnet.ch<br class=""><mailto:mail=test@onnet.ch>))<br class="">fields=homeDirectory,uidNumber,gidNumber,quota<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): result:<br class="">uidNumber=5000 quota=1073741824 gidNumber=5000<br class="">homeDirectory=onnet.ch/test/ <http://onnet.ch/test/>;<br class="">homeDirectory,uidNumber,quota,gidNumber unused<br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: ldap(test@onnet.ch<br class=""><mailto:test@onnet.ch>,192.168.56.1,<lkbV3NRyyQDAqDgB>): result:<br class="">uidNumber=5000 quota=1073741824 gidNumber=5000<br class="">homeDirectory=onnet.ch/test/ <http://onnet.ch/test/><br class="">Aug  7 11:17:27 buserver dovecot: auth: Debug: master userdb out:<br class="">USER#0113718250497#011test@onnet.ch<br class=""><mailto:USER#0113718250497#011test@onnet.ch>#011home=/var/spool/postfix/virtual/onnet.ch/test/#011uid=5000#011gid=5000#011quota_rule=*:bytes=1073741824#011auth_token=913bee7c974e18d4527fc38d90457411e7e61201<br class=""><http://onnet.ch/test/#011uid=5000#011gid=5000#011quota_rule=*:bytes=1073741824#011auth_token=913bee7c974e18d4527fc38d90457411e7e61201><br class="">Aug  7 11:17:27 buserver dovecot: imap-login: Login:<br class="">user=<test@onnet.ch <mailto:test@onnet.ch>>, method=PLAIN,<br class="">rip=192.168.56.1, lip=192.168.56.50, mpid=3206<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Loading modules from<br class="">directory: /usr/lib/dovecot/modules<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Module loaded:<br class="">/usr/lib/dovecot/modules/lib01_acl_plugin.so<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Module loaded:<br class="">/usr/lib/dovecot/modules/lib02_imap_acl_plugin.so<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Module loaded:<br class="">/usr/lib/dovecot/modules/lib10_quota_plugin.so<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Module loaded:<br class="">/usr/lib/dovecot/modules/lib11_imap_quota_plugin.so<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Module loaded:<br class="">/usr/lib/dovecot/modules/lib20_zlib_plugin.so<br class="">Aug  7 11:17:27 buserver dovecot: imap: Debug: Added userdb setting:<br class="">plugin/quota_rule=*:bytes=1073741824<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Effective uid=5000, gid=5000,<br class="">home=/var/spool/postfix/virtual/onnet.ch/test/ <http://onnet.ch/test/><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota root: name=User quota<br class="">backend=maildir args=<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota rule: root=User quota mailbox=*<br class="">bytes=1073741824 messages=0<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota rule: root=User quota<br class="">mailbox=INBOX.Trash bytes=+104857600 messages=0<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota rule: root=User quota<br class="">mailbox=INBOX.Spam ignored<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota warning: bytes=1020054732 (95%)<br class="">messages=0 reverse=no command=quota-warning 95 test@onnet.ch<br class=""><mailto:test@onnet.ch><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Quota grace: root=User quota<br class="">bytes=107374182 (10%)<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Namespace inbox: type=private,<br class="">prefix=, sep=/, inbox=yes, hidden=no, list=yes, subscriptions=yes<br class="">location=maildir:~/Maildir<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: maildir++:<br class="">root=/var/spool/postfix/virtual/onnet.ch/test//Maildir<br class=""><http://onnet.ch/test//Maildir>, index=, indexpvt=, control=,<br class="">inbox=/var/spool/postfix/virtual/onnet.ch/test//Maildir<br class=""><http://onnet.ch/test//Maildir>, alt=<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: initializing backend with data: vfile<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: acl username = test@onnet.ch<br class=""><mailto:test@onnet.ch><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: owner = 1<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: Global ACLs disabled<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: Namespace : type=shared,<br class="">prefix=shared/%u/, sep=/, inbox=no, hidden=no, list=children,<br class="">subscriptions=yes<br class="">location=maildir:%h/Maildir:INDEX=/var/spool/postfix/virtual/onnet.ch/test//shared/%u:CONTROL=/var/spool/postfix/virtual/onnet.ch/test//shared/%u<br class=""><http://onnet.ch/test//shared/%u:CONTROL=/var/spool/postfix/virtual/onnet.ch/test//shared/%u><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: shared: root=/var/run/dovecot, index=,<br class="">indexpvt=, control=, inbox=, alt=<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: initializing backend with data: vfile<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: acl username = test@onnet.ch<br class=""><mailto:test@onnet.ch><br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl: owner = 0<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Debug: acl vfile: Global ACLs disabled<br class="">Aug  7 11:17:27 buserver dovecot: imap(test@onnet.ch<br class=""><mailto:test@onnet.ch>): Disconnected: Logged out in=30 out=457<br class=""><br class="">thanks for looking into this<br class=""><br class=""><blockquote type="cite" class="">On 7 Aug 2018, at 10:34, Aki Tuomi <aki.tuomi@dovecot.fi<br class=""><mailto:aki.tuomi@dovecot.fi>> wrote:<br class=""><br class="">Can you provide your doveconf -n after adding the database *after* LDAP.<br class=""><br class="">You probably need to add 'noauthenticate' as one parameter after the<br class="">userdb ones.<br class=""><br class="">Aki<br class=""><br class=""></blockquote><br class=""></blockquote><br class=""></div></div></blockquote></div><br class=""></div></body></html>