Re: ldap/imapd
Dmitriy Kirhlarov schreef: On Tue, Jun 07, 2005 at 12:10:31PM -0400, Igor Brezac wrote: Many stories in the internet with using saslauthd and NOT using ldapS. What stories? saslauthd can use ldaps just fine. http://asg.web.cmu.edu/cyrus/download/imapd/install-configure.html http://deb.utalca.cl/?p=26 http://www.magic-lamp.org/howto_cyrusimap_ldap.0.html as example. I not want use saslauthd and want use ldap-over-ssl. Are you saying you want to use auxprop rather than saslauthd or your only requirement is to use ldaps. Both auxprop and saslauthd can be configured to use ldaps. I want use auxprop rather than saslauthd if possible (not strong requirement). I use saslauthd. And I have to use ldapS (it's strong requirement) That's what I use too. This is my /etc/saslauthd.conf: ldap_servers: ldaps://192.168.10.249/ ldap_auth_method: fastbind ldap_tls_cacert_file: /path/to/rootcert.pem ldap_filter: cn=%u,ou=lrl,o=wlg With regards, Paul van der Vlis Groningen, Netherlands. --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: ldap/imapd
On Tue, Jun 07, 2005 at 12:10:31PM -0400, Igor Brezac wrote: Many stories in the internet with using saslauthd and NOT using ldapS. What stories? saslauthd can use ldaps just fine. http://asg.web.cmu.edu/cyrus/download/imapd/install-configure.html http://deb.utalca.cl/?p=26 http://www.magic-lamp.org/howto_cyrusimap_ldap.0.html as example. I not want use saslauthd and want use ldap-over-ssl. Are you saying you want to use auxprop rather than saslauthd or your only requirement is to use ldaps. Both auxprop and saslauthd can be configured to use ldaps. I want use auxprop rather than saslauthd if possible (not strong requirement). And I have to use ldapS (it's strong requirement) You setup pts/ldap. You do not have any ldapdb related configuration. I suggest you learn more about sasl. See https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/doc/options.html?rev=1.30content-type=text/x-cvsweb-markup for ldapdb options. Yes. Thnx -- Dmitriy Kirhlarov OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 Moscow, Russia P:+7 095 105 7245 F:+7 095 105 7246 E:[EMAIL PROTECTED] OILspace - The resource enriched - www.oilspace.com --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
ldap/imapd
Hi, list. I want use cyrus-imapd with ldap authentication. ldap-server not local. Many stories in the internet with using saslauthd and NOT using ldapS. I not want use saslauthd and want use ldap-over-ssl. My system and packages: uname -rs pkg_info -Ix cyrus FreeBSD 5.4-RELEASE-p1 cyrus-imapd-2.2.12 The cyrus mail server, supporting POP3 and IMAP4 protocols cyrus-sasl-2.1.20_1 RFC SASL (Simple Authentication and Security Layer) cyrus-sasl-ldapdb-2.1.21 SASL LDAPDB auxprop plugin my imapd.conf: admins: root cyrus khamits allowanonymouslogin: 1 configdirectory: /var/imap defaultdomain: clh.cluster partition-default: /var/spool/imap fulldirhash: 1 hashimapspool: 1 imapidresponse: 1 ldap_filter: (uid=%D) ldap_member_attribute: uid ldap_member_base: ou=users,o=higis ldap_member_method: filter ldap_restart: 1 ldap_uri: ldaps://clh.cluster/ sasl_pwcheck_method: auxprop sievedir: /var/imap/sieve sieveusehomedir: 1 servername: clh.cluster singleinstancestore: 1 tls_ca_file: /etc/ssl/CA/cacert.pem tls_cert_file: /etc/ssl/CA/certs/cyrus-imapd.crt tls_key_file: /etc/ssl/CA/ssl.key/cyrus-imapd.key I install cmu-backend.conf as cyrus.conf When I run /usr/local/etc/rc.d/imapd.sh start I get this messages in the log: Jun 7 17:25:30 clh0 master[65028]: process started Jun 7 17:25:31 clh0 master[65032]: about to exec /usr/local/bin/ksrvtgt Jun 7 17:25:31 clh0 master[65032]: can't exec /usr/local/bin/ksrvtgt for startup: No such file or directory Jun 7 17:25:31 clh0 master[65028]: process 65032 exited, status 71 Jun 7 17:25:31 clh0 master[65033]: about to exec /usr/local/cyrus/bin/ctl_cyrusdb Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: recovering cyrus databases Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: skiplist: recovered /var/imap/mailboxes.db (0 records, 144 bytes) in 0 seconds Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: skiplist: recovered /var/imap/annotations.db (0 records, 144 bytes) in 0 seconds Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: done recovering cyrus databases Jun 7 17:25:31 clh0 master[65034]: about to exec /usr/local/cyrus/bin/ctl_mboxlist Jun 7 17:25:31 clh0 master[65028]: process 65034 exited, status 75 Jun 7 17:25:31 clh0 master[65028]: unable to create notifyd listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: unable to create lmtpunix listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: unable to create ptloader listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: ready for work Jun 7 17:25:31 clh0 master[65035]: about to exec /usr/local/bin/ksrvtgt Jun 7 17:25:31 clh0 master[65035]: can't exec /usr/local/bin/ksrvtgt on schedule: No such file or directory Where is error in my config? -- Dmitriy Kirhlarov OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 Moscow, Russia P:+7 095 105 7245 F:+7 095 105 7246 E:[EMAIL PROTECTED] OILspace - The resource enriched - www.oilspace.com --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: ldap/imapd
On Tue, 7 Jun 2005, Dmitriy Kirhlarov wrote: Hi, list. I want use cyrus-imapd with ldap authentication. ldap-server not local. Many stories in the internet with using saslauthd and NOT using ldapS. What stories? saslauthd can use ldaps just fine. I not want use saslauthd and want use ldap-over-ssl. Are you saying you want to use auxprop rather than saslauthd or your only requirement is to use ldaps. Both auxprop and saslauthd can be configured to use ldaps. My system and packages: uname -rs pkg_info -Ix cyrus FreeBSD 5.4-RELEASE-p1 cyrus-imapd-2.2.12 The cyrus mail server, supporting POP3 and IMAP4 protocols cyrus-sasl-2.1.20_1 RFC SASL (Simple Authentication and Security Layer) cyrus-sasl-ldapdb-2.1.21 SASL LDAPDB auxprop plugin my imapd.conf: admins: root cyrus khamits allowanonymouslogin: 1 configdirectory: /var/imap defaultdomain: clh.cluster partition-default: /var/spool/imap fulldirhash: 1 hashimapspool: 1 imapidresponse: 1 ldap_filter: (uid=%D) ldap_member_attribute: uid ldap_member_base: ou=users,o=higis ldap_member_method: filter ldap_restart: 1 ldap_uri: ldaps://clh.cluster/ sasl_pwcheck_method: auxprop sievedir: /var/imap/sieve sieveusehomedir: 1 servername: clh.cluster singleinstancestore: 1 tls_ca_file: /etc/ssl/CA/cacert.pem tls_cert_file: /etc/ssl/CA/certs/cyrus-imapd.crt tls_key_file: /etc/ssl/CA/ssl.key/cyrus-imapd.key You setup pts/ldap. You do not have any ldapdb related configuration. I suggest you learn more about sasl. See https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/doc/options.html?rev=1.30content-type=text/x-cvsweb-markup for ldapdb options. -Igor I install cmu-backend.conf as cyrus.conf When I run /usr/local/etc/rc.d/imapd.sh start I get this messages in the log: Jun 7 17:25:30 clh0 master[65028]: process started Jun 7 17:25:31 clh0 master[65032]: about to exec /usr/local/bin/ksrvtgt Jun 7 17:25:31 clh0 master[65032]: can't exec /usr/local/bin/ksrvtgt for startup: No such file or directory Jun 7 17:25:31 clh0 master[65028]: process 65032 exited, status 71 Jun 7 17:25:31 clh0 master[65033]: about to exec /usr/local/cyrus/bin/ctl_cyrusdb Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: recovering cyrus databases Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: skiplist: recovered /var/imap/mailboxes.db (0 records, 144 bytes) in 0 seconds Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: skiplist: recovered /var/imap/annotations.db (0 records, 144 bytes) in 0 seconds Jun 7 17:25:31 clh0 ctl_cyrusdb[65033]: done recovering cyrus databases Jun 7 17:25:31 clh0 master[65034]: about to exec /usr/local/cyrus/bin/ctl_mboxlist Jun 7 17:25:31 clh0 master[65028]: process 65034 exited, status 75 Jun 7 17:25:31 clh0 master[65028]: unable to create notifyd listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: unable to create lmtpunix listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: unable to create ptloader listener socket: No such file or directory Jun 7 17:25:31 clh0 master[65028]: ready for work Jun 7 17:25:31 clh0 master[65035]: about to exec /usr/local/bin/ksrvtgt Jun 7 17:25:31 clh0 master[65035]: can't exec /usr/local/bin/ksrvtgt on schedule: No such file or directory Where is error in my config? -- Igor --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html