Cyrus-imapd not providing realm information

tarjei tarjei at nu.no
Mon Aug 25 08:51:56 EDT 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Again,
tarjei wrote:
> lartc wrote:
>> Hi,
> 
>> I've got the same setup -- you should have 
> 
>> ldap_realm: yourdomain.com

It seems that the parameter that needed to be set was
ldap_default_realm, as I found when reading
http://thread.gmane.org/gmane.mail.imap.cyrus/22049.

Again, thanks for helping me.

Kind regards,
Tarjei


> 
>> in /etc/saslauthd.conf
> 
>> and you should start saslauthd daemon with the "-r" argument
> 
> 
> Hi Charles, thank you for your quick reply.
> 
> I tried your suggestions, but they do not seem to solve my problem. The
> same problem persists.
> 
> Kind regards,
> tarjei
> 
>> hth,
> 
>> charles
> 
> 
> 
> 
>> On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote:
>> Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an
>> virtdomains setup.
> 
>> Relevant info:
>> OS: Centos 5.2
>> Cyrus-Imapd: 2.3.7
>> Sasl: 2.1.22
> 
>> imapd.conf:
>> altnamespace: yes
>> autocreatequota:-1
>> createonpost: no
>> autocreate_sieve_script: /var/lib/imap/sieve/default.script
>> autocreateinboxfolders: Spam|Drafts|Sent|Trash
>> autosubscribeinboxfolders: Spam|Drafts|Sent|Trash
>> autosubscribesharedfolders: Spam|Ikke-Spam
>> defaultdomain: example.com
>> virtdomains: userid
>> servername: mail.example.com
>> unixhierarchysep: 1
>> sasl_mech_list: plain
>> sasl_pwcheck_method: saslauthd
>> cmtp_overquota_perm_failure: no
> 
>> saslauthd.conf:
>> ldap_servers:     ldaps://ldap.example.com
>> ldap_version:     3
>> ldap_timeout:     10
>> ldap_time_limit:  10
>> ldap_search_base: dc=example,dc=com
>> ldap_bind_dn:     uid=saslauthd,ou=Services,dc=example,dc=com
>> ldap_password:    password
>> ldap_scope:       sub
>> ldap_uidattr:     mail
>> ldap_filter_mode: yes
>> ldap_filter:      (mail=%u@%r)
> 
>> testsaslauth works:
>> testsaslauthd -u tarjei -r example.com -p password
>> 0: OK "Success."
> 
>> but imtest fails:
>> imtest -u tarjei at example.com -a tarjei at example.com -t "" localhost
>> ...
>> S: A01 NO authentication failure
>> Authentication failed. generic failure
> 
>> I then find the following in the log files:
>> saslauthd[27506]: do_auth         : auth failure: [user=tarjei]
>> [service=imap] [realm=] [mech=ldap] [reason=Unknown]
> 
>> And in the ldap log:
>> SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)"
> 
> 
>> It seems to me that for some reason, the imap server is not passing on
>> the full username - but just the part before the domainname.
> 
>> Does anyone know what I am doing wrong? I seem so close :)
> 
>> Kind regards,
>> Tarjei
> 
> ----
> Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIsqrrYVRKCnSvzfIRAjBHAKCBQYe6u8ZZOd7ssM68vSQ6en8oAwCgrUl+
8dnhnjUTrfUoeL/nU6OZxp8=
=cPzT
-----END PGP SIGNATURE-----


More information about the Info-cyrus mailing list