Woops. Yep. More coffee needed. Cheers Charles On Mon, 2008-08-25 at 14:51 +0200, tarjei wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi Again, > tarjei wrote: > > lartc wrote: > >> Hi, > > > >> I've got the same setup -- you should have > > > >> ldap_realm: yourdomain.com > > It seems that the parameter that needed to be set was > ldap_default_realm, as I found when reading > http://thread.gmane.org/gmane.mail.imap.cyrus/22049. > > Again, thanks for helping me. > > Kind regards, > Tarjei > > > > > >> in /etc/saslauthd.conf > > > >> and you should start saslauthd daemon with the "-r" argument > > > > > > Hi Charles, thank you for your quick reply. > > > > I tried your suggestions, but they do not seem to solve my problem. The > > same problem persists. > > > > Kind regards, > > tarjei > > > >> hth, > > > >> charles > > > > > > > > > >> On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote: > >> Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an > >> virtdomains setup. > > > >> Relevant info: > >> OS: Centos 5.2 > >> Cyrus-Imapd: 2.3.7 > >> Sasl: 2.1.22 > > > >> imapd.conf: > >> altnamespace: yes > >> autocreatequota:-1 > >> createonpost: no > >> autocreate_sieve_script: /var/lib/imap/sieve/default.script > >> autocreateinboxfolders: Spam|Drafts|Sent|Trash > >> autosubscribeinboxfolders: Spam|Drafts|Sent|Trash > >> autosubscribesharedfolders: Spam|Ikke-Spam > >> defaultdomain: example.com > >> virtdomains: userid > >> servername: mail.example.com > >> unixhierarchysep: 1 > >> sasl_mech_list: plain > >> sasl_pwcheck_method: saslauthd > >> cmtp_overquota_perm_failure: no > > > >> saslauthd.conf: > >> ldap_servers: ldaps://ldap.example.com > >> ldap_version: 3 > >> ldap_timeout: 10 > >> ldap_time_limit: 10 > >> ldap_search_base: dc=example,dc=com > >> ldap_bind_dn: uid=saslauthd,ou=Services,dc=example,dc=com > >> ldap_password: password > >> ldap_scope: sub > >> ldap_uidattr: mail > >> ldap_filter_mode: yes > >> ldap_filter: (mail=%u@%r) > > > >> testsaslauth works: > >> testsaslauthd -u tarjei -r example.com -p password > >> 0: OK "Success." > > > >> but imtest fails: > >> imtest -u tarjei@xxxxxxxxxxx -a tarjei@xxxxxxxxxxx -t "" localhost > >> ... > >> S: A01 NO authentication failure > >> Authentication failed. generic failure > > > >> I then find the following in the log files: > >> saslauthd[27506]: do_auth : auth failure: [user=tarjei] > >> [service=imap] [realm=] [mech=ldap] [reason=Unknown] > > > >> And in the ldap log: > >> SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)" > > > > > >> It seems to me that for some reason, the imap server is not passing on > >> the full username - but just the part before the domainname. > > > >> Does anyone know what I am doing wrong? I seem so close :) > > > >> Kind regards, > >> Tarjei > > > > ---- > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFIsqrrYVRKCnSvzfIRAjBHAKCBQYe6u8ZZOd7ssM68vSQ6en8oAwCgrUl+ > 8dnhnjUTrfUoeL/nU6OZxp8= > =cPzT > -----END PGP SIGNATURE----- -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
