Saslauthd ldap and virtual domains
Martin Wheldon
martin.wheldon at yhgfl.net
Wed Jun 9 10:47:13 EDT 2004
Hi,
I'm currently running cyrus-sasl 2.1.17, cyrus-imap 2.2.3, openldap
2.2.4 which was working fine and still is for a single domain.
Now I've added a second domain I have it a authentication problem.
My mailboxes are named as follows:-
Mwheldon
mwheldon at yhgfl.net
The problem shows its self if the passwords for both accounts are different.
i.e
Attempting to login to mailbox mwheldon works fine. Attempting to login to
mailbox mwheldon at yhgfl.net fails.
If passwords for both mailboxes are identical you login OK.
What seems to be happening is that SASL is stripping the domain from the
uid.
Here are my configs.
Saslauthd.conf
ldap_servers: ldap://localhost/
ldap_version: 3
ldap_search_base: dc=yhgfl-demo, dc=net
ldap_verbose: on
ldap_debug: 3
ldap_default_domain: yhgfl-demo.net
ldap_filter: uid=%u
ldap_auth_method: bind
Imapd.conf
configdirectory: /usr/local/etc/cyrus
partition-default: /var/spool/cyrus
admins: cyrus mail-admin at yhgfl-demo.net mail-admin at yhgfl.net
srvtab: /usr/local/certs
allowanonymouslogin: no
allowplaintext: yes
sasl_pwcheck_method: saslauthd
sasl_ldap_servers: localhost
unixhierarchysep: yes
loginrealms: yhgfl-demo.net yhgfl.net
defaultdomain: yhgfl-demo.net
virtdomains: userid
Hope someone can help.
Thanks in advance
Martin Wheldon
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus
mailing list