[rlug] ldap si dovecot

Mon, 20 Feb 2012 06:30:21 -0800 


 Pe debian 6 incerc sa fac un dovecot sa merga
cu autentificare via LDAP. Ambele servicii, si ldap-ul
si dovecot sunt instalate pe acceasi masina. Ldap-ul
l-am verificat este funcional(il pot accesa prin phpldapadmin).

Userii ii am in calea(copy/paste din phpldapadmin):

ou=people,ou=online,dc=domeniu,dc=ro
si un user:
uid=4000,ou=people,ou=online,dc=domeniu,dc=ro


in dovecot.conf am asa:

protocols = imap imaps
log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_privileged_group = mail
auth_debug=yes
auth_verbose=yes

protocol imap {

}

protocol pop3 {

  pop3_uidl_format = %08Xu%08Xv

}


protocol managesieve {

  sieve=~/.dovecot.sieve

  sieve_storage=~/sieve

}

auth default {
  mechanisms = plain

#  passdb pam {
#  }

#  userdb passwd {
#  }

  # LDAP database
    passdb ldap {
# Path for LDAP configuration file, see doc/dovecot-ldap.conf for example 
    args = /etc/dovecot/dovecot-ldap.conf
            }

  # LDAP database
    userdb ldap {
    # Path for LDAP configuration file, see doc/dovecot-ldap.conf for example
    args = /etc/dovecot/dovecot-ldap.conf
              }


  user = root

}


dict {
}

plugin {
}




in dovecot-ldap.conf am:

hosts = localhost
dn = cn=admin,dc=domeniu,dc=ro
dnpass = parola
default_pass_scheme = CRYPT
tls = no
auth_bind = yes
auth_bind_userdn = cn=%u,ou=people,ou=online,dc=domeniu,dc=ro
ldap_version = 3
base = ou=people,ou=online,dc=domeniu,dc=ro
scope = subtree
user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid
user_filter = (&(objectClass=posixAccount)(uid=%u))
pass_attrs = uid=user,userPassword=password
pass_filter = (&(objectClass=posixAccount)(uid=%u))
Am pus un client de mail setat pe IMAP, si nu ma pot autentifica(PLAIN - password transmited insecured cum e in Thunderbird) - zice ca autentificare 
nesuportata de IMAP. In log-ri apare doar:
Feb 20 16:19:01 med dovecot: imap-login: Disconnected: rip=192.168.10.148, lip=192.168.10.254 
Feb 20 16:19:01 med dovecot: auth(default): new auth connection: pid=28659

Dovecot, la pornire face bind cu succes(cred eu...) pe ldap:

Feb 20 16:27:10 med dovecot: Dovecot v1.0.15 starting up
Feb 20 16:27:10 med slapd[27679]: conn=13 fd=15 ACCEPT from IP=127.0.0.1:37349 (IP=0.0.0.0:389) Feb 20 16:27:10 med slapd[27679]: conn=13 op=0 BIND dn="cn=admin,dc=domeniu,dc=ro" method=128 Feb 20 16:27:10 med slapd[27679]: conn=13 op=0 BIND dn="cn=admin,dc=domeniu,dc=ro" mech=SIMPLE ssf=0 
Feb 20 16:27:10 med slapd[27679]: conn=13 op=0 RESULT tag=97 err=0 text=
Feb 20 16:27:11 med dovecot: auth(default): new auth connection: pid=28706
Feb 20 16:27:11 med dovecot: auth(default): new auth connection: pid=28705
Feb 20 16:27:11 med dovecot: auth(default): new auth connection: pid=28707


  Ma poate "lumina" careva?

Multumesc


----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

Attachment: pgpBTB3i8JOVf.pgp
Description: PGP Digital Signature

_______________________________________________
RLUG mailing list
[email protected]
http://lists.lug.ro/mailman/listinfo/rlug

Raspunde prin e-mail lui