Sam Varshavchik wrote:
> Jax writes:
>
>> Sam Varshavchik wrote:
>>> Jax writes:
>>>
>>>> Brian Candler wrote:
>>>>> On Tue, Apr 03, 2007 at 01:23:58AM +0200, Jax wrote:
>>>>>
>>>>>>>> authdaemon: starting client module
>>>>>>>> authdaemon: REJECT
>>>>>>>> authdaemon: REJECT
>>>>>>>>
>>>>>>> Turn up debugging. Set DEBUG_LOGIN=2 in authdaemonrc.
>>>>>>>
>>
>> Well the only problem was that DEBUG_LOGIN=2 is not uppercase but
>> lowercase. Now I see what cause the problem:
>>
>> Sep 18 06:03:18 Slider authdaemond.ldap: received auth request,
>> service=imap, authtype=login
>> Sep 18 06:03:18 Slider authdaemond.ldap: authldap: trying this module
>> Sep 18 06:03:18 Slider authdaemond.ldap: using search filter:
>> (&(objectClass=CourierMailAccount)([EMAIL PROTECTED]))
>> Sep 18 06:03:19 Slider authdaemond.ldap: one entry returned, DN:
>> cn=john,ou=Courier,ou=Services,dc=logonserver,dc=lan
>> Sep 18 06:03:19 Slider authdaemond.ldap: raw ldap entry returned:
>> Sep 18 06:03:19 Slider authdaemond.ldap: | mail: [EMAIL PROTECTED]
>> Sep 18 06:03:19 Slider authdaemond.ldap: | cn: john
>> Sep 18 06:03:19 Slider authdaemond.ldap: | homeDirectory:
>> /home/users/user1
>> Sep 18 06:03:19 Slider authdaemond.ldap: | userPassword:
>> {MD5}Tlu66vyCq3qhOFvqjvXTCg==
>> Sep 18 06:03:19 Slider authdaemond.ldap: authldaplib:
>> [EMAIL PROTECTED], sysuserid=1017, sysgroupid=1017,
>> homedir=/home/users/user1, [EMAIL PROTECTED], fullname=john,
>> maildir=<null>, quota=<null>, options=<null>
>> Sep 18 06:03:19 Slider authdaemond.ldap: authldaplib:
>> clearpasswd=<null>, passwd={MD5}Tlu66vyCq3qhOFvqjvXTCg==
>> Sep 18 06:03:19 Slider authdaemond.ldap: rebinding with DN
>> 'cn=john,ou=Courier,ou=Services,dc=logonserver,dc=lan' to validate
>> password
>> Sep 18 06:03:19 Slider authdaemond.ldap: authentication bind failed,
>> invalid credentials
>> Sep 18 06:03:19 Slider authdaemond.ldap: authldap: REJECT - try next
>> module
>> Sep 18 06:03:19 Slider authdaemond.ldap: FAIL, all modules rejected
>>
>> It tries to rebind the connection using the john credential, but
>> everyone has read permission to everything atm. So do I need to give
>> any other specific privilege for someone to "log in" to ldap?! I
>> already added the posixuser attribute to it.
>
> You do not need an authenticated bind in this configuration. Remove
> LDAP_AUTHBIND.
>
>
Thank you very much. Now finally works :-)
Regards,
Jax
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Courier-imap mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
