cyrus-sasl / ldap problem

Igor Brezac igor at ipass.net
Tue Oct 29 09:22:22 EST 2002


Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
./testsaslauthd -u username -p password

If you do not get OK, check syslog for saslauthd errors.

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User
> cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest, here
> is the error I get...thanks everyone so much in advance:
>
> [root at Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
> S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
> THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN cliff.clavin {6}
> S: + go ahead
> C: <omitted>
> S: L01 NO Login failed: generic failure
> Authentication failed. generic failure
> Security strength factor: 0
> C: Q01 LOGOUT
> Connection closed.
>
>
> Here is the entry from /var/log/imap.log:
>
> Oct 29 08:47:14 Lunar master[6197]: about to exec /usr/libexec/cyrus/imapd
> Oct 29 08:47:14 Lunar imap[6197]: executed
> Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext
> cliff.clavin SASL(-1): generic failure: checkpass failed
> Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
>
>
> Here are my config files:
>
> <<imap.conf>>
>
> configdirectory: /var/lib/imap
> partition-default: /var/spool/imap
> admins: cliff.clavin cyrus gchagnon
> allowanonymouslogin: no
> sieveuserhomedir: no
> sievedir: /var/lib/imap/sieve
> sendmail: /usr/sbin/sendmail
> hashimapspool: true
> sasl_pwcheck_method: saslauthd
> sasl_passwd_check: saslauthd
> sasl_ldap_server: localhost
> #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> sasl_ldap_basedn: dc=gregbox,dc=com
> sasl_mech_list: PLAIN
> tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
>
> <<saslauthd.conf>>
>
> ldap_servers: ldap://localhost/
> ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> ldap_bind_pw: *******
>
> <<slapd.conf (important parts)>>
> database        ldbm
> suffix          "dc=gregbox,dc=com"
> rootdn          "cn=Manager,dc=gregbox,dc=com"
> rootpw          *******
> directory       /var/lib/ldap
>
> index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> index   cn,mail,surname,givenname                       eq,subinitial
>
>
>
> _________________________________________________________________
> Protect your PC - get McAfee.com VirusScan Online
> http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
>
>

-- 
Igor





More information about the Info-cyrus mailing list