cyrus-imap: 'realm' is missing when authenticate against LDAP with ldapdb plugin

Dan White dwhite at olp.net
Tue Feb 26 09:30:05 EST 2013


On 02/26/13 13:26 +0800, Lingfeng Xiong wrote:
>Hi all,
>These days, I'm trying to setup my new cyrus-imapd installation. My
>OpenLDAP installation is already setup with SASL authentication.
>In my imapd.conf, I set these lines:
>
>> sasl_pwcheck_method: auxprop
>> sasl_auxprop_plugin: ldapdb
>> sasl_ldapdb_uri: ldap://MY-LDAP-SERVER
>> sasl_ldapdb_id: CYRUS-PROXY-USER-NAME
>> sasl_ldapdb_pw: CYRUS-PROXY-USER-PASSWORD
>> sasl_ldapdb_mech: DIGEST-MD5
>> sasl_log_level: 7
>
>When I tried to login with a user like 'test at example.net', I desire it look
>for 'uid=test at example.net,cn=digest-md5,cn=auth' in OpenLDAP. But according
>to OpenLDAP's log, it passed 'uid=test,cn=digest-md5,cn=auth' to it.
>Apparently, 'realm' has been ignored.
>Is there anyway for me to make cyrus-imapd query the username with it's
>realm to OpenLDAP? Or my methodology is completely incorrect?

Do you have virtdomains enabled (or set to userid)?

Does this only happen with one domain (@example.net)? If so, then do you
have a defaultdomain option set?

-- 
Dan White


More information about the Info-cyrus mailing list