cyrus-imapd sasl ldap problem

Igor Brezac igor at ipass.net
Wed Aug 17 07:41:11 EDT 2005


On Wed, 17 Aug 2005, Dieter Kluenter wrote:

> Hi,
>
> Jesus Ruiz <darth.timeus at gmail.com> writes:
>
>> Hi, i have been trying to install the cyrus-imapd to authenticate
>> through sasl and i need sasl read it data from a ldap server. I'm
>> running redhat AS 4
> [...]
>> the /etc/imapd.conf file is:
>> configdirectory: /var/imap
>> partition-default: /var/spool/imap
>> admins: postman
>> lmtp_downcase_rcpt: 1
>> #authentication ldap
>> sasl_pwcheck_method: saslauthd

>> sasl_ldap_servers: ldap://localhost/ ldaps://localhost/
>> sasl_ldap_bind_dn: cn=someone,dc=mydomain,dc=com
>> sasl_ldap_password: xxx
>> sasl_ldap_basedn: ou=mail_users,dc=mydomain,dc=c­om

These are not valid sasl options.  These look like saslauthd/ldap options
saslauthd.conf (without sasl_ prefix)

>> sasl_ldapdb_mech: DIGEST-MD5
>> sasl_auxprop_plugin: ldap

this needs to be
sasl_auxprop_plugin: ldapdb

>> sasl_auto_transition: yes
>> sasl_saslauthd_path: /var/state/saslauthd/mux
>> sasl_sasldb_path: /etc/sasldb2
>> ##end ldap authentication
>> virtualdomains: yes
>> defaultdomain: mydomain.com
> [...]
>
> You may either authenticate by saslauthd or by ldapdb, but not using
> both.

You can use both.

sasl_pwcheck_method: saslauthd auxprop
sasl_auxprop_plugin: ldapdb

-- 
Igor


More information about the Cyrus-sasl mailing list