Map realm to user

Pedro Silva psilva at onesource.pt
Wed Jan 11 10:32:34 EST 2012


Thanks for the suggestion.
I tried what you said bust the result was the same...

Here is what my logfile looks like using a webmail imap client
When I authenticate with 'user:pass'

cyrus/imap[24503]: accepted connection
cyrus/imap[24503]: login: servername [x.x.x.x] 'user' plaintext User 
logged in
cyrus/imap[24503]: open: user 'user' opened INBOX

now when I use 'user at domain:pass'

cyrus/imap[24572]: accepted connection
cyrus/imap[24572]: login: servername [x.x.x.x] 'user at domain' plaintext 
User logged in

but no inbox is opened and no error is reported.

Here's my imapd.conf configuration

##########################
lmtp_overquota_perm_failure: yes
configdirectory: /var/lib/cyrus
defaultpartition: default
partition-default: /var/spool/cyrus/mail
partition-news: /var/spool/cyrus/news
newsspool: /var/spool/news
duplicatesuppression: 0
altnamespace: no
unixhierarchysep: no
lmtp_downcase_rcpt: yes
admins: cyrus
allowanonymouslogin: no
autocreatequota: 0
umask: 077
sieveusehomedir: false
sievedir: /var/spool/sieve
hashimapspool: true
allowplaintext: yes
sasl_mech_list: PLAIN
allowapop: no
sasl_minimum_layer: 0
servername: exemple.com
loginrealms: exemple.com
sasl_pwcheck_method: auxprop saslauthd
sasl_auto_transition: no
tls_cert_file: /etc/ssl/multicert.pem
tls_key_file: /etc/ssl/private/multicert.key
tls_ca_path: /etc/ssl/certs
tls_session_timeout: 1440
tls_cipher_list: TLSv1+HIGH:!aNULL:@STRENGTH
lmtpsocket: /var/run/cyrus/socket/lmtp
idlemethod: poll
idlesocket: /var/run/cyrus/socket/idle
notifysocket: /var/run/cyrus/socket/notify
syslog_prefix: cyrus
#######################################



On 10-01-2012 17:58, Andrew Morgan wrote:
> On Tue, 10 Jan 2012, Pedro Silva wrote:
>
>> Hi,
>> I have a postfix/cyrus/sasl mail server authenticating against an ldap
>> server.
>>
>> It all works fine using a 'login:password' authentication but I would
>> also like to user 'login at realm:password' authentication for the mail
>> accounts (imap and pop3).
>>
>> The authentication bit work fine when I use 'login at realm' (in imap) but
>> no mailbox is opened...
>> Well my question is: is it possible to map 'login' and 'login at realm' to
>> the same mailbox? and if so how can I do that?
>
> Assuming you are not using virtual domains in Cyrus, the "servername" 
> setting in imapd.conf is used as the realm when no realm is given 
> (using 'login').  If you set servername to the realm you want to use, 
> then 'login' and 'login at realm' should be the same for Cyrus.
>
>     Andy


More information about the Info-cyrus mailing list