Hello,<br><br>I am updating the mail server at my work and in this process I decided to change the Courier-IMAP for the Cyrus-IMAP, however I still came across myself with a problem without solution (at least for me). Here, all users have an personal ID who is used to effect the authentication in some systems (also in the mail). For example, an user with the personal ID 12345 possess the mail
<a href="mailto:user@domain.com">user@domain.com</a><br><br><br>If I create the mailbox in cyrus with the personal ID (<span style="font-family: courier new,monospace;">cm user.12345</span>), I can connect through imap/pop3 and cyrus get access to the mailbox without problems (using as user 12345), however when sending a message for this user, postfix delivery saw LMTP for cyrus, that does not locate mailbox (with the error:
<span style="font-family: courier new,monospace;">lmtpunix [5514]: to verify_user (user.12345) failed: Mailbox you donate not exist</span>). Then if I create mailbox with the user's mail (<span style="font-family: courier new,monospace;">
cm <a href="mailto:user.user@domain.com">user.user@domain.com</a></span>), the message is delivery without problems from postfix to cyrus (that it finds mailbox), however I can't have access to mailbox saw IMAP/POP using as login the person code (12345) and only the email (
<a href="mailto:user@domain.com">user@domain.com</a>). <br><br>The authentication of cyrus is made by SASL using the mechanism PAM (that it validates through LDAP). <br><br><br>It follows some configurations to facilitate the understanding:
<br>/etc/imapd.conf --------------------------------------<br><span style="font-family: courier new,monospace;">configdirectory: /var/lib/imap</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
partition-default: /var/spool/imap</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">admins: cyrus</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
sievedir: /var/lib/imap/sieve</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">sendmail: /usr/sbin/sendmail</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
hashimapspool: true</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">sasl_pwcheck_method: saslauthd</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
sasl_mech_list: PLAIN</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">tls_ca_file: /usr/share/ssl/certs/ca-
bundle.crt</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">virtdomains: userid</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
defaultdomain: <a href="http://domain.com">domain.com</a></span><br>/etc/imapd.conf --------------------------------------<br><br>/etc/postfix/main.cf --------------------------------<br><span style="font-family: courier new,monospace;">
virtual_transport = lmtp:unix:/var/lib/imap/socket/lmtp</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">canonical_maps = proxy:ldap:/etc/postfix/ldap/canonical.cf</span>
<br>/etc/postfix/main.cf --------------------------------<br><br>usuário.ldif -------------------------<br><span style="font-family: courier new,monospace;">dn: uid=12345,ou=users,dc=domain,dc=com</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">uid: 12345</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">cn: Test User</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">sn: test</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">loginShell: /bin/false</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">uidNumber: 90001</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">mail: <a href="mailto:user@domain.com">user@domain.com
</a></span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">quota: 20971520</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
gidNumber: 513</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">homeDirectory: /home/user</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">
mailbox: /home/user/Maildir/</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">mailHost: <a href="http://siaimail10.domain.com">siaimail10.domain.com</a></span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">description: description</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">enableMail: S</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">objectClass: top</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">objectClass: person</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">objectClass: posixAccount</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">objectClass: shadowAccount</span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;">objectClass: CourierMailAccount</span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;">objectClass: inetLocalMailRecipient
</span><br>usuário.ldif -------------------------<br><br> <br> I tried through postfix, modify/create/use some macro (those used in <a href="http://master.cf">master.cf</a>: <span style="font-family: courier new,monospace;">
${user} ${extension}</span>) that it passed to cyrus the personal ID (in the place of the address) but I did not have success. <br> <br> I made with the SASL authenticate in LDAP using the UID, but did not give very certain, therefore cyrus uses proper login to locate mailbox, and thus I don't deliver the message saw lmtp (therefore mailbox was with the name of the user).
<br> <br> <br> The only thing next than I found of what necessary patch of the Kolab was one that allows (theoretically, I did not make tests) to consult the virtual domínios through ldap. <br> <br>I used canonical_maps in postfix quering ldap for the mail (
<a href="mailto:user@domain.com">user@domain.com</a>) and returning email (<a href="mailto:12345@dominio.com">12345@dominio.com</a>), but for virtual domains I would have to add a new attribute in LDAP with the personal ID + the domain.
<br><br> Someone has experience in this integration and that it can help me? <br> <br> <br> thank's for attention.<br>Neto.<br><br clear="all"><br>-- <br>José Morelli Neto<br><a href="http://josemorelli.net">http://josemorelli.net
</a>