* Stuart Henderson:
> you could perhaps use "auth_bind = yes" to have Dovecot attempt a bind
> with the user-supplied password [...]
Thanks, that sounds like an approach worth investigating to me. Current
access control settings for the LDAP server do not permit this method of
binding, but I migh
On 2021-11-07, Ralph Seichter wrote:
> * Alexander Dalloz:
>
>> Don't know about Ubuntu specifics [...]
>
> Thank you for the pointers. Am I right to interpret the Dovecot docs as
> stating that SSHA384 is not supported by the official packages, and that
> my only recourse might be building from t
* Alexander Dalloz:
> Don't know about Ubuntu specifics [...]
Thank you for the pointers. Am I right to interpret the Dovecot docs as
stating that SSHA384 is not supported by the official packages, and that
my only recourse might be building from the source code and adding some
external code in t
Am 07.11.2021 um 14:35 schrieb Ralph Seichter:
While using LDAP-based authentication, I have come across the message
auth: Error: [...] Unknown scheme SSHA384
Based on the docs at [1] I use the dovecot.org packages provided for
Ubuntu 20.04 LTS which, as you can see, are not yet documented i
While using LDAP-based authentication, I have come across the message
auth: Error: [...] Unknown scheme SSHA384
Based on the docs at [1] I use the dovecot.org packages provided for
Ubuntu 20.04 LTS which, as you can see, are not yet documented in the
HTML page, put are available via [2]. Specif
%s flag should be very useful for this. See
https://wiki.dovecot.org/Authentication/RestrictAccess
---Aki TuomiDovecot oy
Original message From: Alexander Dalloz
Date: 13/07/2018 17:50 (GMT+02:00) To: dovecot@dovecot.org Subject: Re:
Whitelist file for LDAP authentication
Am 13.07.2018 um 10:30 schrieb whpang:
Hi,
The dovecot version is 2.2.33.2 and we are using LDAP to do the authentication
for SMTP service.
[ ... ]
Anyone can help to advice how to configure dovecot to have a whitelist for user
LDAP authentication? Thank you very much.
Best regards
will fail and exit in the first passdb.
Anyone can help to advice how to configure dovecot to have a whitelist for user
LDAP authentication? Thank you very much.
Best regards,
William Pang
Academic Computing and Technology Services Section
Information and Communication Technology Office
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, 30 Oct 2017, Mantas Gegužis wrote:
I am trying to configure Dovecot (2.2.27) with LDAP passdb, specifically with
authentication binds (https://wiki.dovecot.org/AuthDatabase/LDAP/AuthBinds).
Atribute shadowExpire has a unix time stamp value
Hi,
I am trying to configure Dovecot (2.2.27) with LDAP passdb,
specifically with authentication binds
(https://wiki.dovecot.org/AuthDatabase/LDAP/AuthBinds).
Atribute shadowExpire has a unix time stamp value. Is there a way to
write pass_filter like shadowExpire
Or maybe there is better
Can you try adding the following options
user_filter = (&(samAccountName=%Ln)(objectClass=person))
pass_filter = (&(samAccountName=%Ln)(objectClass=person))
pass_attrs= userPassword=password
default_pass_scheme = CRYPT
a.
On 22/06/15 23:00, Luca Bertoncello wrote:
Alexandros Soumpl
Hi,
I would suggest starting with a simplified config. by example:
hosts = my.server.local
auth_bind = yes
ldap_version = 3
base = CN=Person,CN=Schema,CN=Configuration,DC=company,DC=local
base = DC=company,DC=local
scope = subtree
user_attrs = \
=home=/home/imapproxy/%u, \
=mail=mail
On Monday 22 June 2015 14:19:52 Luca Bertoncello wrote:
> Hi again
>
> I'm trying to authenticate a user against an LDAP Server (well, our
> AD, but it can LDAP).
>
> This is my configuration:
>
> hosts = my.server.local
> auth_bind = yes
> ldap_version = 3
> base = CN=Person,CN=Schema,CN=Config
Alexandros Soumplis schrieb:
> If you allow anonymous search on AD maybe you can try to set auth_bind =
> no .
I'm sorry, but I think, the AD does NOT allow anonymous search...
I'm new in this company and I don't know exactly the server, but every try
I did without any authentication, failed...
If you allow anonymous search on AD maybe you can try to set auth_bind =
no .
a.
On 22/06/15 17:19, Luca Bertoncello wrote:
Hi again
I'm trying to authenticate a user against an LDAP Server (well, our
AD, but it can LDAP).
This is my configuration:
hosts = my.server.local
auth_bind = yes
Hi again
I'm trying to authenticate a user against an LDAP Server (well, our
AD, but it can LDAP).
This is my configuration:
hosts = my.server.local
auth_bind = yes
ldap_version = 3
base = CN=Person,CN=Schema,CN=Configuration,DC=company,DC=local
scope = subtree
user_attrs = \
=home=/home/i
On Wed, Sep 10, 2014 at 01:09:11PM -0700, Bob Miller wrote:
> Hi,
>
> > [joliver@localhost ~]$ cat /etc/dovecot/dovecot-ldap.conf.ext
> > hosts = localhost
> > base = ou=Users,dc=my,dc=domain
> > ldap_version = 3
> > auth_bind = yes
> > auth_bind_userdn = uid=%u,ou=Users,dc=my,dc=domain
> >
>
>
Hi,
> [joliver@localhost ~]$ cat /etc/dovecot/dovecot-ldap.conf.ext
> hosts = localhost
> base = ou=Users,dc=my,dc=domain
> ldap_version = 3
> auth_bind = yes
> auth_bind_userdn = uid=%u,ou=Users,dc=my,dc=domain
>
this looks different than mine. here is my example config file, maybe
it helps:
d credentials
>
> I am not clear from this if you are using pam auth first and ldap auth
> 2nd, or if you are trying to use pam to do your ldap authentication for
> you. Assuming the former, I would guess that you are either failing the
> auth_bind, or the attributes you are using for
d, or if you are trying to use pam to do your ldap authentication for
you. Assuming the former, I would guess that you are either failing the
auth_bind, or the attributes you are using for user_filter/pass_filter
aren't matching the username format. I would start by checking the
setting
CentOS 6.5, dovecot 2.0.9-7
I was using http://www.linuxmail.info/postfix-dovecot-ldap-centos-5/ to
get LDAP auth working. And what's really annoying is, it worked...
until I screwed something up and had to pull my work back from a backup.
Now it doesn't work :-(
[joliver@localhost ~]$ telnet lo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 19 Apr 2013, val john wrote:
uris = ldap://ldap.example.com:389
dn = cn=admin,dc=example,dc=com
dnpass = abc
tls = no
ldap_version = 3
base = ou=users,dc=example,dc=com
scope = subtree
user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=
Hi guys im new to dovecot , and im trying to authenticate dovecot to LDAP
this my configuration
dovecot --version
1.2.15
dovecot -n
# 1.2.15: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.5
log_timestamp: %Y-%m-%d %H:%M:%S
protocols: imap pop3
login_dir: /var/run/dove
At 10AM +0100 on 14/11/12 you (Marco Gatti) wrote:
> 2012/11/13 Ben Morrow :
> > At 2PM +0100 on 13/11/12 you (Marco Gatti) wrote:
> >
> >> I'll try to give more details.
> >> I have to build a multiple domain mail server with the use of windows
> >> AD authentication.
> >> I've managed to add so
2012/11/13 Willie Gillespie :
> On 11/13/2012 03:35 AM, Marco Gatti wrote:
>>
>> Is there a way dovecot can authenticate via ldap different windows
>> 2008 AD users that have access to the same e-mail account (like user
>> authorization in ms exchange)?
>
>
> Symlinks on the Dovecot maildirs? You'
2012/11/13 Ben Morrow :
> At 2PM +0100 on 13/11/12 you (Marco Gatti) wrote:
>> 2012/11/13 Robert Schetterer :
>> > Am 13.11.2012 11:35, schrieb Marco Gatti:
>> >> Hi, I was looking for a particular case of dovecot configuration I
>> >> cannot find anywhere.
>> >> Is there a way dovecot can authent
2012/11/13 Robert Schetterer :
> Am 13.11.2012 14:56, schrieb Marco Gatti:
>> 2012/11/13 Robert Schetterer :
>>> Am 13.11.2012 11:35, schrieb Marco Gatti:
Hi, I was looking for a particular case of dovecot configuration I
cannot find anywhere.
Is there a way dovecot can authenticate
On 11/13/2012 03:35 AM, Marco Gatti wrote:
Is there a way dovecot can authenticate via ldap different windows
2008 AD users that have access to the same e-mail account (like user
authorization in ms exchange)?
Symlinks on the Dovecot maildirs? You'd have to read up on the caveats
of that: htt
At 2PM +0100 on 13/11/12 you (Marco Gatti) wrote:
> 2012/11/13 Robert Schetterer :
> > Am 13.11.2012 11:35, schrieb Marco Gatti:
> >> Hi, I was looking for a particular case of dovecot configuration I
> >> cannot find anywhere.
> >> Is there a way dovecot can authenticate via ldap different window
Am 13.11.2012 14:56, schrieb Marco Gatti:
> 2012/11/13 Robert Schetterer :
>> Am 13.11.2012 11:35, schrieb Marco Gatti:
>>> Hi, I was looking for a particular case of dovecot configuration I
>>> cannot find anywhere.
>>> Is there a way dovecot can authenticate via ldap different windows
>>> 2008 AD
2012/11/13 Robert Schetterer :
> Am 13.11.2012 11:35, schrieb Marco Gatti:
>> Hi, I was looking for a particular case of dovecot configuration I
>> cannot find anywhere.
>> Is there a way dovecot can authenticate via ldap different windows
>> 2008 AD users that have access to the same e-mail accoun
Am 13.11.2012 11:35, schrieb Marco Gatti:
> Hi, I was looking for a particular case of dovecot configuration I
> cannot find anywhere.
> Is there a way dovecot can authenticate via ldap different windows
> 2008 AD users that have access to the same e-mail account (like user
> authorization in ms ex
Hi, I was looking for a particular case of dovecot configuration I
cannot find anywhere.
Is there a way dovecot can authenticate via ldap different windows
2008 AD users that have access to the same e-mail account (like user
authorization in ms exchange)?
For example I want to extend AD schema to l
El 01/12/11 18:26, Stephen Bowman escribió:
How does everyone handle this case?
Users are authenticated by LDAP, and do not have accounts on the IMAP/dovecot
server. When a new user is added to LDAP, the home directory (/home/newuser)
needs to be created on the IMAP/dovecot server so dovecot
Timo Sirainen wrote:
> On 2.12.2011, at 1.03, Sven Hartge wrote:
>> Timo Sirainen wrote:
>>> I hope some day there won't be any problems with Dovecot using
>>> multiple UIDs.
>>
>> Meaning?
> There are different problems with multiple UIDs that are more
> difficult to solve than with a single
On 2.12.2011, at 1.03, Sven Hartge wrote:
> Timo Sirainen wrote:
>> On 2.12.2011, at 0.41, Sven Hartge wrote:
>
>>> Or switch to a virtual setup, where the users don't get real users on
>>> the imap server (they can't log in, so they don't need any real user
>>> on that server) and every mail is
Timo Sirainen wrote:
> On 2.12.2011, at 0.41, Sven Hartge wrote:
>> Or switch to a virtual setup, where the users don't get real users on
>> the imap server (they can't log in, so they don't need any real user
>> on that server) and every mail is owned by your virtual mail user.
> Well, it of co
On 2.12.2011, at 0.41, Sven Hartge wrote:
> Or switch to a
> virtual setup, where the users don't get real users on the imap server
> (they can't log in, so they don't need any real user on that server) and
> every mail is owned by your virtual mail user.
Well, it of course makes things easier, b
Stephen Bowman wrote:
> How does everyone handle this case?
> Users are authenticated by LDAP, and do not have accounts on the
> IMAP/dovecot server. When a new user is added to LDAP, the home
> directory (/home/newuser) needs to be created on the IMAP/dovecot
> server so dovecot can create the
On 1.12.2011, at 19.26, Stephen Bowman wrote:
> How does everyone handle this case?
>
> Users are authenticated by LDAP, and do not have accounts on the IMAP/dovecot
> server. When a new user is added to LDAP, the home directory (/home/newuser)
> needs to be created on the IMAP/dovecot server
On 01-12-11 18:26, Stephen Bowman wrote:
> How does everyone handle this case?
>
> Users are authenticated by LDAP, and do not have accounts on the
> IMAP/dovecot server. When a new user is added to LDAP, the home
> directory (/home/newuser) needs to be created on the IMAP/dovecot
> server so dov
How does everyone handle this case?
Users are authenticated by LDAP, and do not have accounts on the IMAP/dovecot
server. When a new user is added to LDAP, the home directory (/home/newuser)
needs to be created on the IMAP/dovecot server so dovecot can create the mail
directories inside it (/h
On Lunes 03 Octubre 2011 17:34:47 Romer Ventura escribió:
> So you are saying I can define multiple passdb and userdb, each pointing to
> a different ldap config file?
That's it. You may define as many as you need, and each one is independent. If
the 1st one fails dovecot will try the 2nd one, th
10:22 AM
To: dovecot@dovecot.org
Subject: Re: [Dovecot] Multiple LDAP authentication servers
On Lunes 03 Octubre 2011 16:29:39 Romer Ventura escribió:
> Is there any way to get dovecot to try a second LDAP server if the
> first one fails to authenticate..?
Sure; just add a second passdb (may
-Original Message-
From: dovecot-boun...@dovecot.org [mailto:dovecot-boun...@dovecot.org] On
Behalf Of Romer Ventura
Sent: Monday, October 03, 2011 9:30 AM
To: dovecot@dovecot.org
Subject: [Dovecot] Multiple LDAP authentication servers
Hello,
We are performing a Domain migration and
On Lunes 03 Octubre 2011 16:29:39 Romer Ventura escribió:
> Is there any way to get dovecot to try a second LDAP server if the first
> one fails to authenticate..?
Sure; just add a second passdb (maybe you also need a second userdb) pointing
to the other server. Something like
passdb ldap {
Hello,
We are performing a Domain migration and I was wondering if there was any
way to get Dovecot to authenticate to more than 1 LDAP server? Currently
dovecot is configure to query the "mail" attribute from Active Directory and
when found it binds with the credentials the user provided.
Hi,
I have got Postfix, Dovecot IMAP and squirrelmail up and running on my ubuntu
server 10.04 for a testing purpose. My question is in order to be able to
login, do I need to create user accounts for each users on the server? I have
about 20 users at the moment, and it's going to take time. I
W dniu 31.07.2011 22:48, Paweł Lęcznar pisze:
Hello,
I am trying to configure Dovecot with LDAP authentication. My LDAP
tree structure is as following:
dc=root,dc=pl
\_ ou=Users
\_ uid=test
\_ ou=Mail
\_ ou=domain.pl
\_ uid=alias_to_test
I cannot
Hello,
I am trying to configure Dovecot with LDAP authentication. My LDAP tree
structure is as following:
dc=root,dc=pl
\_ ou=Users
\_ uid=test
\_ ou=Mail
\_ ou=domain.pl
\_ uid=alias_to_test
I cannot authenticate using
'uid=alias_to_test,ou=doma
On Tue, 2011-05-10 at 18:21 +0200, Héctor Moreno Blanco wrote:
> We have installed dovecot 2.0.10. With LDAP authentication. Users
> authenticate successfully but in the authentication process there are errors
> that I don't understand because it's everything all right:
&
Hello Timo,
We have installed dovecot 2.0.10. With LDAP authentication. Users authenticate
successfully but in the authentication process there are errors that I don't
understand because it's everything all right:
May 10 18:00:49 carpe3 dovecot: auth: Error: ldap_unbind
May 10 18:00
On Fri, 2011-04-15 at 12:03 -0400, Alex Cherniak wrote:
> Is it possible to authenticate users against multiple independent AD domains?
Add multiple passdbs and userdbs pointing to different dovecot-ldap.conf
files, which contain different hosts.
> In my dovecot-ldap.conf I entered two hosts:
>
Is it possible to authenticate users against multiple independent AD domains?
In my dovecot-ldap.conf I entered two hosts:
hosts = host1 host 2
auth_bind_userdn = %d\%n
ldap_version = 3
base = cn=users,dc=%d,dc=net
auth_bind = yes
but OpenLDAP seems to stop authentication as soon as the first hos
Sorry for the missing subject.
>Hi,
>
>I use a OpenLDAP for authentication. To authenticate a full DN as the user
>name must be used, like "cn=jim,ou=users,dc=example,dc=com". There are several
>domains, like example2.com and example3.com. I want to use Dovecot with ldap
>and >authentication
On 4/17/2009, noahisaac (n...@miller.cc) wrote:
I've got Dovecot version 1.0.7
Best bet is to upgrade... lits of fixes and improvements since this
version...
1.1.14 is current stable version, and is available (well, maybe not
quite yet since it was only released yesterday, but at least 1.1.13
On 4/17/2009, noahisaac (n...@miller.cc) wrote:
> I've got Dovecot version 1.0.7
Best bet is to upgrade... lits of fixes and improvements since this
version...
1.1.14 is current stable version, and is available (well, maybe not
quite yet since it was only released yesterday, but at least 1.1.13 i
e
verbose with
it's log entries (I've already got auth_debug set to yes, but I'm not
getting very much info)?
Thanks!
Noah
--
View this message in context: http://www.nabble.com/Active-
Directory-LDAP-authentication-fails-after-a-time-
tp23102450p23102450.html
Sent from the Dovecot mailing list archive at Nabble.com.
g very much info)?
Thanks!
Noah
--
View this message in context:
http://www.nabble.com/Active-Directory-LDAP-authentication-fails-after-a-time-tp23102450p23102450.html
Sent from the Dovecot mailing list archive at Nabble.com.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lukasz Mierzwa
Sent: sexta-feira, 4 de maio de 2007 10:47
To: dovecot@dovecot.org; Venilton Junior
Subject: Re: [Dovecot] Help with LDAP authentication - user / user+domain
Friday 04 of May 2007 15:34:51 Venilton Junior napisał(a):
> Hel
Friday 04 of May 2007 15:34:51 Venilton Junior napisał(a):
> Hello Folks,
>
>
>
> I've my dovecot working well and authenticating in my ldap servers.
>
>
>
> But I'd like configure my users to authenticate in two ways. One is just
> submitting the username and the other one is providing [EMAIL PROT
Hello Folks,
I've my dovecot working well and authenticating in my ldap servers.
But I'd like configure my users to authenticate in two ways. One is just
submitting the username and the other one is providing [EMAIL PROTECTED] .
I'm moving from a cyrus-imap solution to dovecot and I've
Timo Sirainen wrote:
On 10.4.2007, at 20.31, Tim Alberts wrote:
Apr 4 08:44:38 msi2 dovecot: auth(default): dovecot-auth:
../../../libraries/liblber/io.c:491: ber_get_next: Assertion
`ber->ber_buf == ((void *)0)' failed.
Apr 4 08:44:38 msi2 dovecot: auth(default):
pam(secretuser,192.168.0.2
On 10.4.2007, at 20.31, Tim Alberts wrote:
Apr 4 08:44:38 msi2 dovecot: auth(default): dovecot-
auth: ../../../libraries/liblber/io.c:491: ber_get_next:
Assertion `ber->ber_buf == ((void *)0)' failed.
Apr 4 08:44:38 msi2 dovecot: auth(default): pam(secretuser,
192.168.0.200): Child process
Timo Sirainen wrote:
On 10.4.2007, at 19.48, Tim Alberts wrote:
Apr 4 08:44:38 msi2 dovecot: auth(default): dovecot-auth:
../../../libraries/liblber/io.c:491: ber_get_next: Assertion
`ber->ber_buf == ((void *)0)' failed.
Apr 4 08:44:38 msi2 dovecot: auth(default):
pam(secretuser,192.168.0.2
On 10.4.2007, at 19.48, Tim Alberts wrote:
Apr 4 08:44:38 msi2 dovecot: auth(default): dovecot-auth: ../../../
libraries/liblber/io.c:491: ber_get_next: Assertion `ber->ber_buf
== ((void *)0)' failed.
Apr 4 08:44:38 msi2 dovecot: auth(default): pam(secretuser,
192.168.0.200): Child process
since I
implemented the LDAP authentication.
Checking through the server maillog, I see the following entry:
Apr 4 08:44:38 msi2 dovecot: auth(default): dovecot-auth:
../../../libraries/liblber/io.c:491: ber_get_next: Assertion
`ber->ber_buf == ((void *)0)' failed.
Apr 4 08:44:38
67 matches
Mail list logo
