On Tue, 18 May 2010 13:54:51 -0400, Victor Duchovni
<victor.ducho...@morganstanley.com> wrote:
> On Tue, May 18, 2010 at 07:47:12PM +0200, Julien Vehent wrote:
>
>
> 1. Your Postfix is not directly linked with LDAP at all, it looks like
> you are on a Debian system, and the LDAP table driver is dynamically
> loaded. So we don't know whether the LDAP library you are using has
> SASL support or not.
>
> 2. Mere TCP connection to the LDAP server does not prove support for
> LDAP SASL bind in the LDAP client.
>
> You need to determine whether your LDAP library supports SASL. Running
> "ldd" on Postfix binaries won't tell you that, you need to run "ldd"
> on the LDAP library used by the dynamically laoded Postfix LDAP table
> driver
> and also, on the SASL LDAP plugin.
>
Alright. So 'postfix-ldap' package installs
'/usr/lib/postfix/dict_ldap.so', which is linked to libsasl2:
----
# ldd /usr/lib/postfix/dict_ldap.so
[...]
libldap_r-2.4.so.2 => /usr/lib/libldap_r-2.4.so.2 (0xb7879000)
[...]
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb769a000)
[...]
----
In '/usr/lib/sasl2' I also have 'libldapdb.so', which, I assume, is the
ldapdb driver, and this one is also linked to sasl:
----
# ldd libldapdb.so
[...]
libldap_r-2.4.so.2 => /usr/lib/libldap_r-2.4.so.2 (0xb7833000)
[...]
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb76b2000)
[...]
----
I don't know what else could possibly be called by postfix. Any hint is
most welcomed.
>
> What is in the IMAP server SASL configuration file?
The following:
----
# grep -E "sasl|ldap" /etc/imapd.conf |grep -v "^#"
sasl_pwcheck_method: auxprop
sasl_auxprop_plugin: ldapdb
sasl_auto_transition: no
sasl_ldapdb_uri: ldap://localhost
sasl_ldapdb_id: cyrus
sasl_ldapdb_pw: zzzzZZZZZzzzzzZZZZ
----
Julien
