VirtDomains, DefaultDomain, and SASL

SAiello at SAiello at
Wed Jun 2 13:02:08 EDT 2004

Is there a better list I should send this question ? I am guessing from lack 
of response I am sending to the wrong list. Sorry and thank you for any 
pointers to the proper place to get help.

----------  Forwarded Message  ----------

Subject: VirtDomains, DefaultDomain, and SASL
Date: Tuesday 01 June 2004 02:54 pm
From: "SAiello at" <SAiello at>
To: info-cyrus at

Hello All,

I have:

sasl is set to use ldap. My sasl ldap conf file follows:
ldap_servers:   ldap://localhost
ldap_bind_dn:   cn=cyrus,ou=users,dc=internal,dc=root
ldap_bind_pw:   neener
ldap_version:   3
ldap_timeout:   10
ldap_time_limit:        10
ldap_scope:     sub
ldap_search_base:       dc=root
ldap_auth_method:       bind
ldap_filter:    (&(dc:dn:=%d)(mail=%U))
ldap_password_attr:     userPassword

My imapd.conf follows:
admins:                 cyrus
hashimapspool:          yes
allowanonymouslogin:    no
allowplaintext:         yes
lmtp_allowplaintext:    yes
lmtp_downcase_rcpt:     yes
virtdomains:            yes
defaultdomain:          internal
altnamespace:           yes
sasl_pwcheck_method:    saslauthd
sasl_mech_list:         PLAIN LOGIN

when using imtest like "imtest -a user at", I can
authenticate fine. Also "imtest -a cyrus at internal", works too.  But
"imtest -a cyrus", doesn't work. Shouldn't the defaultdomain value
be appended when authenticating via sasl ? And would login via "cyrus" be a
global admin, and not just an admin for the "internal" domain ?


Cyrus Home Page:
Cyrus Wiki/FAQ:
List Archives/Info:

More information about the Info-cyrus mailing list