Re: [courier-users] Authldap configuration
Owen O' Shaughnessy writes: I have imported the supplied authldap.ldif schema that is in the build environment, and have imported it into the ldap base, and can see it in the correct place: courier@mta:/etc/ldap/slapd.d/cn=config/cn=schema# ls cn={0}core.ldif cn={1}cosine.ldif cn={2}nis.ldif cn={3}inetorgperson.ldif cn={4}courier.ldif I then try to add a user to the configured directory, so I create a ldif file like: dn: uid=o...@shaugh.com,ou=Users,dc=province,dc=com objectClass: top objectClass: inetorgperson objectClass: courier uid: o...@shaugh.com o: shaugh.com ou: d100 mailbox: Maildir quota: 51200 clearPassword: password userPassword: {SHA}dfsfljdslfjlkjlk;;k;lkpowiwqlkewqlwq= disableimap: 0 disablepop3: 0 disablewebmail: 0 sharedgroup: public mailhost: 127.0.0.1 mail: yes homeDirectory: mailspool/o...@shaugh.com sn: OShaughnessy givenName: Owen cn:Owen OShaughnessy uidNumber: 501 gidNumber: 500 Which I try and import with: ldapadd -x -D cn=Manager,dc=shaugh,dc=com -w password -f owen.ldif But I get ldap_add: Invalid syntax (21) additional info: objectClass: value #2 invalid per syntax Which means that my objectClass: courier line is wrong, either I am referencing the schema wrong, or I haven't If you've imported authldap.schema, you should be specifying a CourierMailAccount objectClass, because that's what authldap.schema defines. pgpeXa44YhnP4.pgp Description: PGP signature -- Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnnow-d2d___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Authldap configuration
On Tue, Jan 29, 2013 at 3:32 AM, Sam Varshavchik mr...@courier-mta.com wrote: If you've imported authldap.schema, you should be specifying a CourierMailAccount objectClass, because that's what authldap.schema defines. Thanks Sam, thats it. The authldap.schema, like previous versions, has a definition for mailhost but the authldap.ldif doesn't have a definition for it. Is this not needed anymore or is it an omission from the ldif file? Owen. -- Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnnow-d2d ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Authldap configuration
Owen O' Shaughnessy writes: On Tue, Jan 29, 2013 at 3:32 AM, Sam Varshavchik mr...@courier-mta.com wrote: If you've imported authldap.schema, you should be specifying a CourierMailAccount objectClass, because that's what authldap.schema defines. Thanks Sam, thats it. The authldap.schema, like previous versions, has a definition for mailhost but the authldap.ldif doesn't have a definition for it. Is this not needed anymore or is it an omission from the ldif file? No, the current authldap.schema has it commented out, too. I think that mailhost is now defined in some other schema. pgpZ6ZIrBWm3d.pgp Description: PGP signature -- Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnnow-d2d___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Authldap configuration....
Aine Douglas wrote: Shouldn't the uid component be just below dc in order for authlib to find it? Or does the authldap module search recursively below the basedn for a uid field matching what was presented for authentication? The default search type is subtree, which will include all entries below the base DN. The reason I ask is that the server I'm working on will handle many more domains and users, and I'd like to organise the LDAP such that the UID's aren't all in the same branch of the tree, but rather a branch per domain name and all the domains respective UID's there. If authlib/authldap recursively searches, then this is possible, but if I'm missing something then clearly I can't do this!! It'll work. Are you organizing the entries for the sake of delegated management? Sorting them in that fashion won't increase the efficiency of the directory. If that's your motivation, you might save yourself some complexity in your management tools... - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Authldap configuration....
Edwin L. Culp W. wrote: You might just want to use the about but add LDAP_FILTER (objectClass=CourierMailAccount) ...could, but unless he has multiple entries with the same mail attribute, it won't do much. You will probably want to add something like LDAP_URI ldap://localhost/dc=domainname,dc=com?mail?sub?(objectClass=CourierMailAccount) Courier doesn't claim to support such a syntax, so I'm not sure why you'd do that. - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Authldap configuration....
Quoting Aine Douglas [EMAIL PROTECTED]: Hi guys, I'm setting up a new email server, and am at the stage where I'm about to configure up OpenLdap with a suitable schema. I reviewed the last server's config, and its confusing me... hoping someone here can help. The last server has courier authlib authenticating against an OpenXchange ldap schema, and authldaprc has the following setting: LDAP_BASEDNdc=domainname, dc=com LDAP_MAIL uid The users that authlib sucessfully authenticates against are located in LDAP at: [EMAIL PROTECTED],ou=Users,ou=OxObjects,dc=domainname,dc=com Shouldn't the uid component be just below dc in order for authlib to find it? Or does the authldap module search recursively below the basedn for a uid field matching what was presented for authentication? The reason I ask is that the server I'm working on will handle many more domains and users, and I'd like to organise the LDAP such that the UID's aren't all in the same branch of the tree, but rather a branch per domain name and all the domains respective UID's there. If authlib/authldap recursively searches, then this is possible, but if I'm missing something then clearly I can't do this!! You might just want to use the about but add LDAP_FILTER (objectClass=CourierMailAccount) and in your ldap reorganization. You will probably want to add something like LDAP_URI ldap://localhost/dc=domainname,dc=com?mail?sub?(objectClass=CourierMailAccount) in your configuration. If you have a better and more efficient way of doing it, I would be interested. Hope this helps, ed Any guidance appreciate. Thanks, Aine. - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users