-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 lartc wrote: > Hi, > > I've got the same setup -- you should have > > ldap_realm: yourdomain.com > > in /etc/saslauthd.conf > > and you should start saslauthd daemon with the "-r" argument > Hi Charles, thank you for your quick reply. I tried your suggestions, but they do not seem to solve my problem. The same problem persists. Kind regards, tarjei > hth, > > charles > > > > > On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote: > Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an > virtdomains setup. > > Relevant info: > OS: Centos 5.2 > Cyrus-Imapd: 2.3.7 > Sasl: 2.1.22 > > imapd.conf: > altnamespace: yes > autocreatequota:-1 > createonpost: no > autocreate_sieve_script: /var/lib/imap/sieve/default.script > autocreateinboxfolders: Spam|Drafts|Sent|Trash > autosubscribeinboxfolders: Spam|Drafts|Sent|Trash > autosubscribesharedfolders: Spam|Ikke-Spam > defaultdomain: example.com > virtdomains: userid > servername: mail.example.com > unixhierarchysep: 1 > sasl_mech_list: plain > sasl_pwcheck_method: saslauthd > cmtp_overquota_perm_failure: no > > saslauthd.conf: > ldap_servers: ldaps://ldap.example.com > ldap_version: 3 > ldap_timeout: 10 > ldap_time_limit: 10 > ldap_search_base: dc=example,dc=com > ldap_bind_dn: uid=saslauthd,ou=Services,dc=example,dc=com > ldap_password: password > ldap_scope: sub > ldap_uidattr: mail > ldap_filter_mode: yes > ldap_filter: (mail=%u@%r) > > testsaslauth works: > testsaslauthd -u tarjei -r example.com -p password > 0: OK "Success." > > but imtest fails: > imtest -u tarjei@xxxxxxxxxxx -a tarjei@xxxxxxxxxxx -t "" localhost > ... > S: A01 NO authentication failure > Authentication failed. generic failure > > I then find the following in the log files: > saslauthd[27506]: do_auth : auth failure: [user=tarjei] > [service=imap] [realm=] [mech=ldap] [reason=Unknown] > > And in the ldap log: > SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)" > > > It seems to me that for some reason, the imap server is not passing on > the full username - but just the part before the domainname. > > Does anyone know what I am doing wrong? I seem so close :) > > Kind regards, > Tarjei > - ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIsqdvYVRKCnSvzfIRAjSUAJ0VVE8/qQV1g8Jk5owVOhsvQ3+I7wCgqIa6 o6czot+fnXmO4tfUGFeeWhg= =M20U -----END PGP SIGNATURE----- ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
