Virtual domains and LDAP

[Ken Murchison]

James Satterfield wrote:
> I'm using a virtual domain setup based on usernames. So I have a domain
> uberduper.com and a user jsatter at uberduper.com
> I've got imapd setup to use saslauthd, and saslauthd setup to auth against LDAP.
> If I assign the uid of jsatter at uberduper.com in ldap, testsaslauthd can
> successfully auth, but imapd cannot. Looking at the logs suggests that imapd
> isn't passing the entire username jsatter at uberduper.com to saslauthd. Just
> "jsatter"

This is because you have specified uberduper.com as your defaultdomain, 
which causes Cyrus to strip the domain.  defaultdomain is usually only 
used for backwards compatibility when upgrading an existing single 
domain installation.  Read the virtdomains docs in the distro for details.


> 
> Thanks,
> James.
> 
> Config snippets:
> imapd.conf
> 
> virtdomains: yes
> defaultdomain:  uberduper.com
> configdirectory: /usr/local/var/imap
> partition-default: /usr/local/var/spool/imap
> allowplaintext: yes
> admins: root cyrus
> singleinstancestore: yes
> duplicatesuppression: yes
> sieveusehomedir: false
> sievedir: /usr/local/var/imap/sieve
> sendmail: /usr/sbin/sendmail
> sasl_pwcheck_method: saslauthd
> sasl_mech_list: plain
> lmtpsocket: /usr/local/var/imap/socket/lmtp
> idlesocket: /usr/local/var/imap/socket/idle
> notifysocket: /usr/local/var/imap/socket/notify
> 
> 
> saslauthd.conf
> ldap_servers: ldap://64.62.153.124/
> ldap_bind_dn: cn=root,dc=uberduper,dc=com
> ldap_bind_pw: secret
> ldap_search_base: dc=uberduper,dc=com
> ldap_auth_method: custom
> 
> 
> auth.log
> Aug  4 20:44:36 knight saslauthd[48297]: do_auth         : auth failure:
> [user=jsatter] [service=imap] [realm=] [mech=ldap] [reason=Unknown]
> 
> 
> 


-- 
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp