cyrus virtual domains -- real not passed to saslauthd with
virtdomains: userid
lartc
lartc at manchotnetworks.net
Mon Apr 10 07:04:24 EDT 2006
hi igor,
thanks for your note -- yes i have the -r flag, but still no realm
coming thru.
this morning, i added ldap_default_realm and ldap_realm to my
saslauthd.conf, and all is happy.
thanks
charles
On Fri, 2006-04-07 at 15:13 -0400, Igor Brezac wrote:
> On Fri, 7 Apr 2006, lartc wrote:
>
> > hi all,
> >
> > no joy even after googling for hours and looking thru the archives ...
> >
> > i cannot get imap to pass the realm either in the userid or realm field
> > to saslauthd.
> >
> > i can successfully authenticate user at domain.com using testsaslauthd,
> > however, imtest test fails and debugging saslauthd does not show the
> > realm.
>
> Use saslauthd -r or use %r or %R tokens in ldap_filter:
> (ldap_filter: ( & (mail=%u%R) (uid=%U) )
>
> -Igor
>
> >
> > below are my configs.
> >
> > any help greatly appreciated :-)
> >
> > cheers
> >
> > charles
> >
> > /etc/saslauthd.conf
> > ldap_servers: ldap://ldap.domain.com/
> > ldap_search_base: dc=domain,dc=com
> > ldap_version: 3
> > ldap_filter: ( & (mail=%u) (uid=%U) )altnamespace: yes
> >
> > /etc/imapd.conf
> > allowanonymouslogin: no
> > allowapop: no
> > allowplaintext: yes
> > annotation_db: berkeley
> > anysievefolder: yes
> > autocreatequota: 10240
> > configdirectory: /var/lib/imap
> > createonpost: true
> > defaultdomain: domain.com
> > duplicate_db: berkeley-nosync
> > duplicatesuppression: no
> > hashimapspool: yes
> > idlesocket: /var/lib/imap/socket/idle
> > imapidresponse: no
> > ldap_realm: domain.com
> > lmtp_downcase_rcpt: yes
> > lmtp_over_quota_perm_failure: yes
> > lmtpsocket: /var/spool/postfix/public/lmtp
> > loginrealms: domain.com domain2.com
> > mboxlist_db: berkeley
> > partition-default: /var/spool/imap
> > reject8bit: no
> > sasl_mech_list: PLAIN
> > sasl_pwcheck_method: saslauthd
> > sasl_ldap_realm: domain.com
> > sendmail: /usr/sbin/sendmail.postfix
> > servername: domain.com
> > sievedir: /var/lib/imap/sieve
> > subscription_db: berkeley
> > tls_ca_file: /etc/x509/ca.service/domain.com.pem
> > tls_cert_file: /etc/x509/service.cyrus/public/service.cyrus.domain.com.pem
> > tls_key_file: /etc/x509/service.cyrus/private/service.cyrus.domain.com.pem
> > tls_require_cert: no
> > tlscache_db: berkeley
> > username_tolower: yes
> > unixhierarchysep: yes
> > virtdomains: userid
> >
> >
> >
> >
> >
> > ----
> > Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> >
>
--
"simplified chinese" is not nearly as easy as they would
have you believe ... a superlative oxymoron" --anonymous
More information about the Info-cyrus
mailing list