Cyrus, sasldb and cyradm

Andreas Winkelmann ml at
Tue Sep 19 08:09:41 EDT 2006

Am Tuesday 19 September 2006 13:31 schrieb Antonio Navarro Navarro:

Please do not Top-Post.

> I have a mailbox for the admin user because I need to use the mail system.
> This is the only way I am able to use e-mail accounts in the Cyrus Imap
> server.

admin-Users should not have Mailboxes. Under some circumstances you will see 
other Namespaces, than a normal User, for example. It's not only a question 
of "too much" Access-Rights.

> I suppose that I must provide a password for the cyrus admin user, but I'm
> unable to do it (the user created in the sasldb database is
> cyrus at instead of only 'cyrus')

Every Account in sasldb has two parts. The Username and the Realm 
(username at realm). If you create an Account with user at domain.tld, "domain.tld" 
is used as realm. If you omit the @domain, either the String behind "-u" or 
the Hostname of the Server is used as Realm.

For virtdomain's, create an Account without @domain-Part. Either use a 
automatically generated Realm (Hostname) or specify one with "-u".

# saslpasswd2 -c -u whatever.tld cyrus

# sasldblistusers2
cyrus at whatever.tld: userPassword

Add this Realm with "defaultdomain: whatever.tld" to imapd.conf. Then if you 
use only "cyrus" as Username and if virtdomains is enabled, the 
"defaultdomain" is used as Realm.


More information about the Cyrus-sasl mailing list