On Tue, 18 May 2010 12:37:47 -0400, Victor Duchovni
<victor.ducho...@morganstanley.com> wrote:
> On Tue, May 18, 2010 at 05:44:43PM +0200, Julien Vehent wrote:
>
>> I want to set up SASL authentication using LDAPDB, but it seems that
>> postfix connects to LDAP but doesn't send anything to it...
>>
>> I try to authenticate using 'auth plain <base64>', and I receive :
>>
>> 535 5.7.8 Error: authentication failed: authentication failure
>
> Is the LDAP library linked into Postfix compiled with Cyrus SASL
support?
> The "ldapdb" auxprop plugin needs an LDAP library that can do SASL
binds.
> If your LDAP library is not SASL (rather than simple bind) enabled, this
> may not work.
I believe it is, since I see connexion to the LDAP server. ldd confirms it
too:
----
# ldd /usr/sbin/postfix
linux-gate.so.1 => (0xb7788000)
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1
(0xb774b000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0xb771e000)
libssl.so.0.9.8 => /usr/lib/i686/cmov/libssl.so.0.9.8 (0xb76d3000)
libcrypto.so.0.9.8 => /usr/lib/i686/cmov/libcrypto.so.0.9.8
(0xb757b000)
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb7564000)
libdb-4.7.so => /usr/lib/libdb-4.7.so (0xb740c000)
libnsl.so.1 => /lib/i686/cmov/libnsl.so.1 (0xb73f5000)
libresolv.so.2 => /lib/i686/cmov/libresolv.so.2 (0xb73df000)
libc.so.6 => /lib/i686/cmov/libc.so.6 (0xb7298000)
libdl.so.2 => /lib/i686/cmov/libdl.so.2 (0xb7294000)
libz.so.1 => /usr/lib/libz.so.1 (0xb7280000)
libpthread.so.0 => /lib/i686/cmov/libpthread.so.0 (0xb7267000)
/lib/ld-linux.so.2 (0xb7789000)
----
>
> Take a look at the "Notes LDAPDB auxprop options" section of:
>
> http://www.sendmail.org/~ca/email/cyrus2/options.html
>
> for additional LDAP server-side requirements.
The same directory is queried by cyrus-imapd using LDAPDB as well, and it
works fine. So I assume the configuration/mistake is postfix specific and
not in the LDAP conf.
Julien
