ldapdb smtpd.conf postfix sends unbind to ldap

Igor Brezac igor at ipass.net
Mon Jan 16 09:44:51 EST 2006


On Mon, 16 Jan 2006, Dennis Matotek wrote:

> Hi,
>
> Can someone just confirm the basics for me?
>
> set up /etc/postfix/sasl/smtpd.conf
> 	ldapdb_uri
> 	ldapdb_id
> 	ldapdb_pw
> 	ldapdb_mech
> 	set in /etc/postfix/main.cf
>
> smtpd_sasl_auth_enable = yes
>
> smtpd_client_restrictions = 
> permit_mynetworks,permit_sasl_authenticated,check_client_access 
> hash:/etc/postfix/access
>
> smtpd_recipient_restrictions = 
> permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination
>
> smtpd_sasl_path = /etc/postfix/sasl:/usr/lib/sasl2
>
> smtp_sasl_password_maps = /etc/postfix/sasl/smtpd.conf
>
> smtpd_sasl_security_options = noanonymous
>
> In one post I saw to add:
> auxprop_plugin: slapd
> to /usr/lib/sasl2/slapd.conf (doesn't make a big difference anyway).

This is openldap specific and cannot be used with other applications.

Use need to use auxprop_plugin: ldapdb

Try to use loglevel 256 to debug ldap server.  I recommend you use sample 
client and server to test the ldapdb plugin setup (these utils come with 
the cyrus-sasl source).

-Igor


More information about the Cyrus-sasl mailing list