> -----Original Message----- > From: cyrus-sasl-bounces@xxxxxxxxxxxxxxxxxxxx [mailto:cyrus-sasl- > bounces@xxxxxxxxxxxxxxxxxxxx] On Behalf Of AJ > Sent: Thursday, September 14, 2006 11:12 AM > To: cyrus-sasl@xxxxxxxxxxxxxxxxxxxx > Subject: Re: saslauthd w/ ldap issues continued > > As an update to this, I have set up sendmail to use saslauthd and it > seems to work as expected and authenticate with the username format of > user@xxxxxxxxxx > > I guess this is a cyrus imapd issue? Anyone ever seen this? > > Thanks. > > > Quoting Andreas Winkelmann <ml@xxxxxxxxxxxxxx>: > > > Am Wednesday 13 September 2006 19:09 schrieb AJ: > > > >> I have been trying to get saslauthd working w/ ldap. > >> I am trying to authenticate via the user's mail attribute as opposed > >> to their uid attribute. Here is my saslauthd.conf file. > >> > >> ldap_servers: ldap://127.0.0.1 > >> ldap_search_base: dc=Users,dc=domain,dc=com > >> ldap_filter: mail=%u Change to ldap_filter: mail=%U%R > >> ldap_auth_method: bind > >> ldap_use_sasl: no > >> > >> SASL version is 2.1.19 from RHEL 4 update 4 > >> > >> This works w/ testsaslauthd for usernames such as test@xxxxxxxxxx You probably used testsaslauthd -u test@xxxxxxxxxxx You need to testsaslauthd -u test -r domain.com in order to emulate how libsasl2 passes authentication tokens to saslauthd. -Igor > >> > >> When i use imtest from cyrus imapd, it does not work. I have tried > >> running saslauthd with and without the -r flag and the result is the > >> same. It seems that saslauthd is stripping off the domain part either > >> way. > >> > >> On the ldap server i see this: > >> SRCH base="dc=Users,dc=domain,dc=com" scope=2 filter="(mail=test)" > >> attrs="dn" > >> > >> Notice under filter it does not say test@domain, but when I run > >> testsaslauthd it does. > >> > >> Any ideas here? > > > > Please show your imapd.conf. > > > > -- > > Andreas > > > >
