Cyrus-Imap and auxprop ldap

Dan White dwhite at
Fri May 7 09:34:51 EDT 2010

On 07/05/10 11:21 +0200, Julien Vehent wrote:
># grep -E "sasl|ldap" /etc/imapd.conf |grep -v "#"
>sasl_pwcheck_method: auxprop
>sasl_auxprop_plugin: ldapdb
>sasl_auto_transition: no
>sasl_ldapdb_uri: ldap://localhost
>sasl_ldapdb_id: cyrus
>sasl_ldapdb_pw: cyrusadmin
>sasl_ldapdb_mech: DIGEST-MD5
>But without luck so far. 
># nc localhost 143
>* OK ses0gnoc Cyrus IMAP4 v2.2.13-Debian-2.2.13-19 server ready
>. login julien password
>. NO Login failed: authentication failure
>. logout
>* BYE LOGOUT received
>. OK Completed
>And I do not see any connection going to localhost:389 (sniffing with
>tcpdump on lo).

Verify that your ldapdb auxprop plugin can be initialized:

echo "ldapdb_uri: ldap://localhost" > /usr/lib/sasl2/pluginviewer.conf

(the other parameters are not necessary)

pluginviewer | grep ldapdb

(saslpluginviewer on debian based systems)

For further trouble shooting, temporarily increase your syslog auth
facility to debug:

auth.debug /var/log/auth.log

and increase sasl library logging with:

sasl_log_level: 7

in imapd.conf

Dan White

More information about the Info-cyrus mailing list