[courier-users] authldap rebinding as blank

Mon, 07 Mar 2011 16:13:47 -0800 

Currently running courier-auth ver 0.63.0 on a RedHat EL5 machine (Linux
redhatmail.barnard-inc.com 2.6.18-238.5.1.el5 #1 SMP Mon Feb 21 05:53:18 EST
2011 i686 i686 i386 GNU/Linux)

 

I am connecting to a Windows 2003 R2 Std machine and trying to get it to
authenticate a mail user, without success.  The problem appears to be that
the authldap will not accept the returned value from a query that is in a
subtree.  For example, I have a user with the email address of:

[email protected]

This user is in:  OU=IT, OU=Administration, DC=barnard-inc, DC=com

Unless, I change LDAP_BASEDN to equal that OU, then authldap will return:

Mar  7 15:11:32 redhatmail authdaemond: ldap_search_st() failed

 

When I sniff this traffic, it shows the LDAP server (hoff) returning 1
result with the user's CN, which is what it should do, but then authldap
tries to rebind with a blank user instead of the user it just found.  

Attached below is the authldaprc file and the sniff showing the network
traffic. This sniff can be opened with wireshark.

 

 

 

LDAP_URI                ldap://hoff.barnard-inc.com

LDAP_PROTOCOL_VERSION   3

LDAP_BASEDN             dc=barnard-inc, dc=com

LDAP_BINDDN             cn=adreader, cn=Users, dc=barnard-inc, dc=com

LDAP_BINDPW             123456

LDAP_TIMEOUT            2

LDAP_AUTHBIND           1

LDAP_MAIL               mail

LDAP_FILTER           (objectClass=user)

LDAP_DOMAIN            barnard-inc.com

LDAP_GLOB_UID           504

LDAP_GLOB_GID           502

LDAP_HOMEDIR            sAMAccountName

LDAP_MAILROOT        /home/qmaildirs

LDAP_DEFAULTDELIVERY    defaultDelivery

LDAP_FULLNAME           cn

LDAP_DEREF              never

LDAP_TLS                0

 

Thanks,

Scott Lundberg

[email protected]

p.406.586.1995

f.406.586.3530

Attachment: dumptest.cap
Description: Binary data

------------------------------------------------------------------------------
What You Don't Know About Data Connectivity CAN Hurt You
This paper provides an overview of data connectivity, details
its effect on application quality, and explores various alternative
solutions. http://p.sf.net/sfu/progress-d2d
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Reply via email to