cyrus-imapd 2.2.3 and saslauthd/ldap domainless logins.

Igor Brezac igor at ipass.net
Tue Feb 24 23:22:36 EST 2004


On Wed, 25 Feb 2004, TN wrote:

> How strange. It works for me without all this malarky....I'm using
> virtual domains & ldap too, and it works whether or not
> the domains are userid or both methods, and my cyrus admin does not have
> appended @ stuff. ldap is my only mech too, so another mech is not
> intervening.
>

The admin user works by accident because cyrus cannot determine the domain
part (most likely the interface reverse lookup is not available or you use
localhost to connect to the cyrus server).

-Igor

>
>
>
>
>
>
> Edward Rudd wrote:
>
> >MY cyrus admin user IS in the ldap.  The issue was with how cyrus was
> >auto appending the machine's domain to the username if it did not
> >contain an @ which i do not want it to do.. So the virtdomains: userid
> >is the solution for my setup..
> >
> >
> >On Tue, 2004-02-24 at 16:56, TN wrote:
> >
> >
> >>Another option which I use is I just add the cyrus admin as a regular
> >>user in the ldap db, so it just gets looked up as usual.
> >>
> >>This might have the advantage of working for people who want ip-bound
> >>virtual domains (ie. virtualdomains: yes) instead of userid.
> >>
> >>cheers
> >>-Trevor.
> >>
> >>
> >>
> >>Edward Rudd wrote:
> >>
> >>
> >>
> >>>Aha, Thanks very much that did it..
> >>>Setting virtdomains to 'userid' instead of 'true' fixed the issue..
> >>>On Tue, 2004-02-24 at 15:54, Igor Brezac wrote:
> >>>
> >>>
> >>>
> >>>
> >>>>On Tue, 24 Feb 2004, Edward Rudd wrote:
> >>>>
> >>>>
> >>>>
> >>>>
> >>>>
> >>>>>I have a cyrus-imapd 2.2.3 installation and am using saslauthd from my
> >>>>>cyrus-sasl 2.1.15 installation, normal authentication to my virtual
> >>>>>domain users works fine.. (test at nowhere.org, test at someotherdomain.org,
> >>>>>etc...)
> >>>>>However I can not login as the administrator (cyrus) which has no domain
> >>>>>component to the username.. Logging in fails every time and the auth.log
> >>>>>shows that saslauthd is being sent cyrus at mylocal.domain instead of just
> >>>>>cyrus.. And creating an entry in my ldap to handle cyrus at mylocal.domain
> >>>>>only has cyrus log the user into a mailbox in the virtual domain system
> >>>>>(ie not a super user)..
> >>>>>Is there a way to get cyrus imapd to NOT add on the domain to a user w/o
> >>>>>it?
> >>>>>Otherwise I can not administer my domains at all..
> >>>>>and running the testsaslauthd program tests perfectly fine.. so it is
> >>>>>cyrus-imapd sending the data....
> >>>>>
> >>>>>
> >>>>>
> >>>>>
> >>>>Did you specify defaultdomain param?  You will need to use
> >>>>admin at defaultdomain userid when you want to administer your cyrus
> >>>>installation.
> >>>>
> >>>>Alternatively, you can use 'virtdomains: userid'.  Cyrus will not attempt
> >>>>to resolve unqualified userids and it will assume that unqualified userids
> >>>>belong to 'defaultdomain' if specified.
> >>>>
> >>>>
> >>>>
> >>>>
>
> ---
> Home Page: http://asg.web.cmu.edu/cyrus
> Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>

-- 
Igor
---
Home Page: http://asg.web.cmu.edu/cyrus
Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




More information about the Info-cyrus mailing list