On Monday 11 July 2005 04:50, Mihai Costache wrote:
> hi,
>
> i have a little problem with smtp-auth when i want
> to put some access policies to my ldap base.
>
> all works great when i don't put access policies in
> my slapd.conf, but when i added it only pop
> connection work, smtp-auth doesn't work
>
> thanks
>
> here is my setting from qmail-ldap:
>
> #cat /var/qmail/control/ldaplogin
> cn=qmail,o=domain,c=com
>
> #cat /var/qmail/control/ldappassword
> secretpass
>
> #cat /var/qmail/control/qmail-smtpd.rules
>
> :allow,SMTPAUTH="TLSREQUIRED",BLOCKRELAYPROBE="",RCPTCHECK="",SANITYCHECK="
> :",NOPBS="",RETURNMXCHECK=""
>
> from my slapd.conf
> --- snip ---
> access to attr=userPassword
> by self write
> by anonymous auth
> by dn.base="cn=root,o=domain,c=com" write
> by dn.base="cn=qmail,o=domain,c=com" read
> by * none
> access to *
> by self read
> by dn.base="cn=root,o=domain,c=com" write
> by dn.base="cn=qmail,o=domain,c=com" read
> by anonymous auth
> ---- snip ---
Shouldn't the lines granting root and qmail access to the attributes read
something like:
by dn="cn=root,o=domain,c=com" write
by dn="cn=qmail,o=domain,c=com" read
Basically, replace the "dn.base" with "dn."
With your slapd.conf as it is now, can you see the userPassword field when you
do an ldapsearch authenticated as your root user?
--Ed
