Re: [courier-users] Courier authldap failed

[Edwin Culp]

Quoting "\"Vladimir Potapov\" " <[EMAIL PROTECTED]>:

Hello!
I try to install openldap+courier and have some problems with 
auth.The first what I do - I read the man pages and a lot of docs and 
how-to's .
Next step - I create OpenLDAP config's and database of account's and 
additional info.
My slapd.conf :

allow bind_v2
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/corba.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/openldap.schema
include /etc/openldap/schema/qmail.schema
include /etc/openldap/schema/authldap.schema
pidfile         /var/run/ldap/slapd.pid
argsfile        /var/run/ldap/slapd.args
database        ldbm
suffix          "dc=test,dc=ru"
rootdn          "cn=root,dc=test,dc=ru"
rootpw          secret
directory       /var/lib/ldap
index   objectClass,uid,uidNumber,gidNumber     eq
index   cn,mail,surname,givenname               eq,subinitial
loglevel 4
access to attr=userPassword
               by self write
               by anonymous auth
               by dn="cn=courier,ou=daemons,dc=test,dc=ru" read
               by * none
       access to attr=accountStatus
               by dn="cn=courier,ou=daemons,dc=test,dc=ru" read
               by dn="cn=postfix,ou=daemons,dc=test,dc=ru" read
       access to *
               by * read
access to attr=objectclass
    by dn="cn=root,dc=test,dc=ru" write
    by dn="cn=courier,ou=daemons,dc=test,dc=ru" read
    by * none
Ldap.conf :
allow bind_v2
host 127.0.0.1
base dc=test,dc=ru
ldap_version 3
rootbinddn cn=root,dc=test,dc=ru
scope one
ssl off
My database, containing servers info is following:

dn: dc=test,dc=ru
objectClass: dcObject
objectClass: organization
o: Test Server
dc: test
dn: ou=Users,dc=test,dc=ru
objectClass: organizationalUnit
ou: Users
description: Home Users
dn: ou=mailusers,dc=test,dc=ru
objectClass: top
objectClass: organizationalunit
ou: mailusers
description: users with mailaccounts at my home.
dn: ou=daemons,dc=test,dc=ru
objectClass: top
objectClass: organizationalunit
ou: daemons
description: daemons thats connect to LDAP
dn: cn=postfix,ou=daemons,dc=test,dc=ru
objectClass: top
objectClass: person
cn: postfix
sn: postfix
userPassword: secret
dn: cn=courier,ou=daemons,dc=test,dc=ru
objectClass: top
objectClass: person
cn: courier
sn: courier
userPassword: secret
dn: uid=pvm,ou=mailusers,dc=test,dc=ru
uid: pvm
cn: Potapov V.M.
mail: [EMAIL PROTECTED]
sn: pvm
uidNumber: 1000
gidNumber: 1000
mailHost: suse.test.ru
homeDirectory: /var/imap/home/pvm
mailMessageStore: /var/imap/home/pvm/Maildir
mailbox: pvm/Maildir/
objectClass: qmailuser
objectClass: courierMailAccount
objectClass: inetOrgPerson
mailForwardingAddress: [EMAIL PROTECTED]
userPassword: secret
After I see that the all info in database searching successfully and 
try to configuring courier.
My authdaemonrc:
modulelist="authpam"
authmodulelistorig="authpam"
daemons=5
version=""
authdaemonvar=/var/run/authdaemon.courier-imap

Authldaprc:
LDAP_SERVER             127.0.0.1
LDAP_PORT               389
LDAP_BASEDN             ou=mailaccounts,dc=test,dc=ru
Shouldn't your basedn be mailusers ?

ed

LDAP_BINDDN             cn=courier,ou=daemons,dc=test,dc=ru
LDAP_BINDPW             secret
#LDAP_CLEARPW            secret
LDAP_TIMEOUT            5
LDAP_AUTHBIND           1
LDAP_DOMAIN             test.ru
LDAP_MAIL               mail
LDAP_FILTER             (objectClass=CourierMailAccount)
LDAP_GLOB_UID           vmail
LDAP_GLOB_GID           vmail
LDAP_HOMEDIR            homeDirectory
LDAP_MAILDIR            mailMessageStore
LDAP_DEFAULTDELIVERY    defaultDelivery
#LDAP_MAILDIRQUOTA       mailQuota
LDAP_FULLNAME           cn
LDAP_CRYPTPW            userPassword
LDAP_DEREF              never
LDAP_TLS                0
And as result in maillog I see :
Apr 27 17:36:34 suse pop3d: Connection, ip=[::ffff:192.168.1.80]
Apr 27 17:36:34 suse pop3d: LOGIN: DEBUG: ip=[::ffff:192.168.1.80], 
command=USER
Apr 27 17:36:34 suse pop3d: LOGIN: DEBUG: ip=[::ffff:192.168.1.80], 
command=PASS
Apr 27 17:36:34 suse pop3d: LOGIN: DEBUG: ip=[::ffff:192.168.1.80], 
username=pvm
Apr 27 17:36:39 suse pop3d: LOGIN FAILED, ip=[::ffff:192.168.1.80]

suse:/var/log # ldapsearch -x -b 'dc=test,dc=ru' '(objectclass=userPassword)'
# extended LDIF
#
# LDAPv3
# base <dc=test,dc=ru> with scope sub
# filter: (objectclass=userPassword)
# requesting: ALL
#
# search result
search: 2
result: 0 Success
# numResponses: 1

I try Ldap_authbind 0 , ldap_clearpw and it have no result
What I'm doing wrong?


-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g.
Take an Oracle 10g class now, and we'll give you the exam FREE.
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users




-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g. 
Take an Oracle 10g class now, and we'll give you the exam FREE. 
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users