result_format = %s OK is OK, this is checked in other places >You need to use a search base that will not trigger a referral, or >use the right LDAP server. Alternatively, the LDAP server may need >to be configured to grant additional access to your "mailgw" id.
why you think this is access problem? On Thu, Mar 31, 2011 at 6:54 PM, Victor Duchovni < victor.ducho...@morganstanley.com> wrote: > On Thu, Mar 31, 2011 at 06:36:30PM +0300, vadim korsak wrote: > > > I created such ldap map file: > > > > /etc/postfix/ldap-users.cf > > server_host = 10.100.5.1 > > search_base = OU=Users,DC=XXXX,dc=local > > version = 3 > > bind = yes > > bind_dn = CN=mailgw,OU=SYS,DC=XXXX,DC=lan > > bind_pw = password > > scope = sub > > result_attribute = mail > > result_format = %s OK > > The result format looks wrong, perhaps you mean "OK %s", with the result > intended for potential use as an access table? > > > query_filter = (&(objectClass=person)(mail=%s)) > > > > but on lookup getting error: > > postmap -q "foouser" ldap:/etc/postfix/ldap-users.cf > > postmap: warning: dict_ldap_lookup: Search error 10: Referral > > You need to use a search base that will not trigger a referral, or > use the right LDAP server. Alternatively, the LDAP server may need > to be configured to grant additional access to your "mailgw" id. > > -- > Viktor. >
