VirtDomains, DefaultDomain, and SASL

SAiello at Jentoo.com SAiello at Jentoo.com
Tue Jun 1 14:54:52 EDT 2004


Hello All,

I have:
cyrus-imapd-2.2.3
cyrus-sasl-2.1.14
openldap-2.1.26

sasl is set to use ldap. My sasl ldap conf file follows:
ldap_servers:   ldap://localhost
ldap_bind_dn:   cn=cyrus,ou=users,dc=internal,dc=root
ldap_bind_pw:   neener
ldap_version:   3
ldap_timeout:   10
ldap_time_limit:        10
ldap_scope:     sub
ldap_search_base:       dc=root
ldap_auth_method:       bind
ldap_filter:    (&(dc:dn:=%d)(mail=%U))
ldap_password_attr:     userPassword

My imapd.conf follows:
admins:                 cyrus
hashimapspool:          yes
allowanonymouslogin:    no
allowplaintext:         yes
lmtp_allowplaintext:    yes
lmtp_downcase_rcpt:     yes
virtdomains:            yes
defaultdomain:          internal
altnamespace:           yes
sasl_pwcheck_method:    saslauthd
sasl_mech_list:         PLAIN LOGIN

when using imtest like "imtest -a user at domain.com 127.0.0.1", I can 
authenticate fine. Also "imtest -a cyrus at internal 127.0.0.1", works too.  But
"imtest -a cyrus 127.0.0.1", doesn't work. Shouldn't the defaultdomain value 
be appended when authenticating via sasl ? And would login via "cyrus" be a 
global admin, and not just an admin for the "internal" domain ?

Thanks,
  Steven
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




More information about the Info-cyrus mailing list