sasl_log_level: Use the same sasldb on two Cyrus Imapd servers
Martin Schweizer
schweizer.martin at gmail.com
Wed Oct 24 10:43:04 EDT 2007
Hello Andreas
Sorry for the delay. I was out of town.
2007/10/18, Andreas Winkelmann <ml at awinkelmann.de>:
> On Donnerstag, 18. Oktober 2007, Martin Schweizer wrote:
>
> > > > - I checked a lot of documentation but I did not find out how I can
> > > > set the log level for sasldb. I know the option is (sasl_)log_level
> > > > (tested also only log_level) but with no success (also checked
> > > > sasl.h). I get no more sasl debugging information then the standard
> > > > ones.
> > >
> > > Don't expect too much from this log_level Option.
> >
> > I'm expect some more error messages regarding my problem below, for
> > example why my authentication fails.
>
> Hmm, generally log_level does not suppress Error-Messages. Just
> Debug-Messages. And in the the case of sasldb there are not much
> Debug-Messages available.
>
> > > > - My goal is to use the same sasldb file for the server which works as
> > > > master/client replicants. I disscused this issue at end of the last
> > > > year with Andreas. Now I did some testing around this but I got no
> > > > success (see posting below).
> > >
> > > Where is your Problem with the Hints below?
> > >
> > > > What do I wrong? Any hints are welcome.
> >
> > I tested your hints with the option -u domain.tld but could not
> > successfully login to the cyrus imap server. Or should I change
> > someting in the imapd,conf when I use the option -u domain.tld?
>
> Like I wrote:
>
> > > > An entry in sasldb contains 3 or maybe 4 parts. Username, Realm,
> > > > Password (and Type: the "userPassword"). If your users uses only a
> > > > Username, without @domain-Part, the Hostname of the Server is used for
> > > > this key. This is servername in imapd.conf for Cyrus-Imapd.
> > > >
> > > > Either create entries with:
> > > >
> > > > # saslpasswd -cu domain.tld username
> > > >
> > > > And tell your users to use "user at domain.tld" as Username. This should
> > > > work on both servers, then.
>
> You have to set the realm, in the case of Cyrus-Imapd it is the
> servername:-Option.
This is what I'm not understand. I use the option -u domain.tld -c
testuser. After this SASL asks about the password. Now should I
change some entries in the imapd.conf or do I only logon with
testuser at domain.tld? I tested this scenario without success (did no
changes in imapd.conf). Do I understand something wrong here?
Regards,
--
Martin Schweizer
schweizer.martin at gmail.com
Tel.: +41 32 512 48 54 (VoIP)
Fax: +1 619 3300587
More information about the Cyrus-sasl
mailing list