SASL2 + remote openldap?
Jim John
jimjohnlists at yahoo.com
Fri Jul 7 19:57:59 EDT 2006
Hello. I am unsure if SASL2 is able to communciate with my remote LDAP. I ran it with /usr/sbin/saslauthd -a ldap, but I get "saslauthd[29495]: do_auth : auth failure: [user=myuser1] [service=imap] [realm=] [mech=ldap] [reason=Unknown]" and " plaintext myuser1 SASL(-13): authentication failure: checkpass failed".
I think the problem is that it is not connecting to my remote ldap because the remote ldap has no log of a connection. I did not create a certificate for binding to the remote ldap. I used a certificate I created for a local ldap. Is that the reason? Do I need to specify a port or a port that supports SSL in /etc/sasl2/saslauthd.conf?
Also, how does SASL2 know which node to search for the username and which attribute for the password? Do I need to add the location of the subtree for the search to the /etc/sasl2/saslauthd.conf beyond just the base? I am using a qmail schema. Thanks for any help.
Here is my saslauthd.conf file
ldap_servers: ldap://my.remote.address/
ldap_bind_dn: cn=Manager,dc=My.Remote.LDAP,dc=com
ldap_bind_pw: mypassword
ldap_search_base:
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.andrew.cmu.edu/mailman/private/cyrus-sasl/attachments/20060707/dcc87135/attachment.html
More information about the Cyrus-sasl
mailing list