On Mon, Aug 25, 2008 at 2:51 PM, tarjei <tarjei@xxxxx> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi Again, > tarjei wrote: >> lartc wrote: >>> Hi, >> >>> I've got the same setup -- you should have >> >>> ldap_realm: yourdomain.com > > It seems that the parameter that needed to be set was > ldap_default_realm, as I found when reading > http://thread.gmane.org/gmane.mail.imap.cyrus/22049. > You set virtdomains: userid What is happening if you configure a second domain name ? I thing your error was to configure defaultdomain: example.com because then when you login as someone@xxxxxxxxxxx, cyrus remove the @example.com This is working that way because when you updrade from virtdomains: off to virtdomains: userid you can keep your old user (without @domain.name) without any changes. Just create new mailboxes and users specifying a domain name. Regards > Again, thanks for helping me. > > Kind regards, > Tarjei > > >> >>> in /etc/saslauthd.conf >> >>> and you should start saslauthd daemon with the "-r" argument >> >> >> Hi Charles, thank you for your quick reply. >> >> I tried your suggestions, but they do not seem to solve my problem. The >> same problem persists. >> >> Kind regards, >> tarjei >> >>> hth, >> >>> charles >> >> >> >> >>> On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote: >>> Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an >>> virtdomains setup. >> >>> Relevant info: >>> OS: Centos 5.2 >>> Cyrus-Imapd: 2.3.7 >>> Sasl: 2.1.22 >> >>> imapd.conf: >>> altnamespace: yes >>> autocreatequota:-1 >>> createonpost: no >>> autocreate_sieve_script: /var/lib/imap/sieve/default.script >>> autocreateinboxfolders: Spam|Drafts|Sent|Trash >>> autosubscribeinboxfolders: Spam|Drafts|Sent|Trash >>> autosubscribesharedfolders: Spam|Ikke-Spam >>> defaultdomain: example.com >>> virtdomains: userid >>> servername: mail.example.com >>> unixhierarchysep: 1 >>> sasl_mech_list: plain >>> sasl_pwcheck_method: saslauthd >>> cmtp_overquota_perm_failure: no >> >>> saslauthd.conf: >>> ldap_servers: ldaps://ldap.example.com >>> ldap_version: 3 >>> ldap_timeout: 10 >>> ldap_time_limit: 10 >>> ldap_search_base: dc=example,dc=com >>> ldap_bind_dn: uid=saslauthd,ou=Services,dc=example,dc=com >>> ldap_password: password >>> ldap_scope: sub >>> ldap_uidattr: mail >>> ldap_filter_mode: yes >>> ldap_filter: (mail=%u@%r) >> >>> testsaslauth works: >>> testsaslauthd -u tarjei -r example.com -p password >>> 0: OK "Success." >> >>> but imtest fails: >>> imtest -u tarjei@xxxxxxxxxxx -a tarjei@xxxxxxxxxxx -t "" localhost >>> ... >>> S: A01 NO authentication failure >>> Authentication failed. generic failure >> >>> I then find the following in the log files: >>> saslauthd[27506]: do_auth : auth failure: [user=tarjei] >>> [service=imap] [realm=] [mech=ldap] [reason=Unknown] >> >>> And in the ldap log: >>> SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)" >> >> >>> It seems to me that for some reason, the imap server is not passing on >>> the full username - but just the part before the domainname. >> >>> Does anyone know what I am doing wrong? I seem so close :) >> >>> Kind regards, >>> Tarjei >> >> ---- >> Cyrus Home Page: http://cyrusimap.web.cmu.edu/ >> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >> > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFIsqrrYVRKCnSvzfIRAjBHAKCBQYe6u8ZZOd7ssM68vSQ6en8oAwCgrUl+ > 8dnhnjUTrfUoeL/nU6OZxp8= > =cPzT > -----END PGP SIGNATURE----- > ---- > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > -- Alain Spineux aspineux gmail com May the sources be with you ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
