saslauthd authentication problem
Paul Wolstenholme
wolstena at sfu.ca
Fri Sep 3 13:55:11 EDT 2004
I have saslauthd configured to use ldap. The uid have an "@".
Authentication works using testsaslauthd:
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=0 BIND
dn="cn=Administrator,o=shoutout" method=128
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=0 BIND
dn="cn=Administrator,o=shoutout" mech=SIMPLE ssf=0
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=0 RESULT tag=97
err=0 text=
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=1 SRCH
base="o=shoutout" scope=2 filter="(uid=paul at shoutout.ca)"
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=1 SRCH attr=dn
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=1 SEARCH RESULT
tag=101 err=0 nentries=1 text=
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=2 BIND anonymous
mech=implicit ssf=0
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=2 BIND
dn="uid=paul at shoutout.ca,ou=users,ispmanDomain=shoutout.ca,o=shoutout"
method=128
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=2 BIND
dn="uid=paul at shoutout.ca,ou=users,ispmanDomain=shoutout.ca,o=shoutout"
mech=SIMPLE ssf=0
Sep 3 10:38:36 localhost slapd[1248]: conn=118 op=2 RESULT tag=97
err=0 text=
However, authentication failds whenusing imtest:
imtest -u 'paul at shoutout.ca' localhost
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=3 BIND anonymous
mech=implicit ssf=0
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=3 BIND
dn="cn=Administrator,o=shoutout" method=128
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=3 BIND
dn="cn=Administrator,o=shoutout" mech=SIMPLE ssf=0
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=3 RESULT tag=97 err=0
text=
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=4 SRCH
base="o=shoutout" scope=2 filter="(uid=wolstena)"
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=4 SRCH attr=dn
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=4 SEARCH RESULT
tag=101 err=0 nentries=1 text=
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=5 BIND anonymous
mech=implicit ssf=0
Sep 3 10:37:12 localhost slapd[1248]: conn=87 op=5 BIND
dn="ispmanClientId=1,ispmanResellerId=2,ou=ispman,o=shoutout"
method=128
I thought I may need a ldap_filter in my imapd.conf file:
ldap_filter: (uid=%u)
But, this does not seem to make any difference. Could someone point me
in the right direction here. Thanks
Cheers,
Paul
PS:
Here's version info:
name : Cyrus IMAPD
version : v2.2.8-Invoca-RPM-2.2.8-1 2004/07/29 15:44:37
vendor : Project Cyrus
support-url: http://asg.web.cmu.edu/cyrus
os : Linux
os-version : 2.6.8-1.521
environment: Built w/Cyrus SASL 2.1.18
Running w/Cyrus SASL 2.1.18
Built w/Sleepycat Software: Berkeley DB 4.2.52: (March 2,
2004)
Running w/Sleepycat Software: Berkeley DB 4.2.52: (March
2, 2004)
Built w/OpenSSL 0.9.7a Feb 19 2003
Running w/OpenSSL 0.9.7a Feb 19 2003
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus
mailing list