On Mon, 24 May 2010 16:43:18 -0400, Victor Duchovni
wrote:
> On Mon, May 24, 2010 at 09:18:44PM +0200, Julien Vehent wrote:
>
>> === case 2: authentification succeeds
===
>>
>> Same authz-regex in slapd, same smtpclient command, I just removed the
>> smtpd_sasl_lo
On Mon, May 24, 2010 at 09:18:44PM +0200, Julien Vehent wrote:
> === case 2: authentification succeeds ===
>
> Same authz-regex in slapd, same smtpclient command, I just removed the
> smtpd_sasl_local_domain value:
>
>
> # postconf |grep "smtpd_sasl"
> smtpd_
On Mon, 24 May 2010 14:04:45 -0400, Victor Duchovni
wrote:
> On Mon, May 24, 2010 at 07:30:56PM +0200, Julien Vehent wrote:
>
>> Final solution provided by the Openldap mailing list:
>>
>> > Just change your authz-regexp line to
>> >
>> > authz-regexp "^uid=([^,]+).*,cn=[^,]*,cn=auth$"
>> >
On Mon, May 24, 2010 at 07:30:56PM +0200, Julien Vehent wrote:
> Final solution provided by the Openldap mailing list:
>
> > Just change your authz-regexp line to
> >
> > authz-regexp "^uid=([^,]+).*,cn=[^,]*,cn=auth$"
> > "ldap:///dc=linuxwall,dc=info??sub?(|(uid=$1)(mail=$1))"
>
* Julien Vehent :
> Final solution provided by the Openldap mailing list:
>
> > Just change your authz-regexp line to
> >
> > authz-regexp "^uid=([^,]+).*,cn=[^,]*,cn=auth$"
> > "ldap:///dc=linuxwall,dc=info??sub?(|(uid=$1)(mail=$1))"
>
>
> And the authentication works.
> I think
Final solution provided by the Openldap mailing list:
> Just change your authz-regexp line to
>
> authz-regexp "^uid=([^,]+).*,cn=[^,]*,cn=auth$"
> "ldap:///dc=linuxwall,dc=info??sub?(|(uid=$1)(mail=$1))"
And the authentication works.
I think it's worth a line in the sasl howto to
On Fri, 21 May 2010 13:12:08 +0200, Julien Vehent
wrote:
>
>
> I re-read the SASL howto and I'm quite confinced that my configuration
is
> fine (but once again, you're never a 100% sure).
>
> Any idea ?
>
I found something interesting in the Slapd logs. When Postfix sends the
UID of the user
On Thu, 20 May 2010 18:46:34 +0200, Julien Vehent
wrote:
> Like most of the time, I discover that I've been too hasty to answer !
>
> Postfix IS chrooted on Debian by default. At least, smtpd is. And by
> removing the chroot in master.conf, I can now see that DIGEST-MD5 is
> negociated with Slapd
Like most of the time, I discover that I've been too hasty to answer !
Postfix IS chrooted on Debian by default. At least, smtpd is. And by
removing the chroot in master.conf, I can now see that DIGEST-MD5 is
negociated with Slapd. (it still doesn't work though...)
-
May 20 18:32:13 samchiel
On Thu, 20 May 2010 06:52:17 +0200, Patrick Ben Koetter
wrote:
>
> Different to Cyrus IMAP, Postfix does not pass config vars to libsasl
> during
> startup from its own config file, but lets libsasl read the
configuration
> from
> an external file i.e. smtpd.conf. As a result of that you don't ne
On Wed, 19 May 2010 19:35:06 -0400, Victor Duchovni
wrote:
>
> Why did you change "cyrus" to "postfix"? Does this "postfix"
> user have the same rights as "cyrus" to do proxy authentication?
>
Indeed, it does.
# ldapwhoami -Y DIGEST-MD5 -U postfix -H ldap://localhost -R
linuxwall.info -X
* Julien Vehent :
> On Wed, 19 May 2010 14:36:24 -0400, Victor Duchovni
> wrote:
> >
> > This looks different from my recollection of the the smtpd.conf you
> > posted, you may want to make sure that the "sasl_ldapdb_id" and
> > passwords are the same, and I don't know what "auto_transition"
> >
On Thu, May 20, 2010 at 12:23:46AM +0200, Julien Vehent wrote:
> On Wed, 19 May 2010 14:36:24 -0400, Victor Duchovni
> wrote:
> >
> > This looks different from my recollection of the the smtpd.conf you
> > posted, you may want to make sure that the "sasl_ldapdb_id" and
> > passwords are the same
On Wed, 19 May 2010 14:36:24 -0400, Victor Duchovni
wrote:
>
> This looks different from my recollection of the the smtpd.conf you
> posted, you may want to make sure that the "sasl_ldapdb_id" and
> passwords are the same, and I don't know what "auto_transition"
> does, but it may be pertinent al
On Wed, May 19, 2010 at 08:19:40AM +0200, Julien Vehent wrote:
> > What is in the IMAP server SASL configuration file?
>
> The following:
>
>
> # grep -E "sasl|ldap" /etc/imapd.conf |grep -v "^#"
> sasl_pwcheck_method: auxprop
> sasl_auxprop_plugin: ldapdb
> sasl_auto_transition: no
> sasl_
On Tue, 18 May 2010 13:54:51 -0400, Victor Duchovni
wrote:
> On Tue, May 18, 2010 at 07:47:12PM +0200, Julien Vehent wrote:
>
>
> 1.Your Postfix is not directly linked with LDAP at all, it looks like
> you are on a Debian system, and the LDAP table driver is dynamically
> loaded.
On Tue, May 18, 2010 at 07:47:12PM +0200, Julien Vehent wrote:
> > Is the LDAP library linked into Postfix compiled with Cyrus SASL support?
> > The "ldapdb" auxprop plugin needs an LDAP library that can do SASL binds.
> > If your LDAP library is not SASL (rather than simple bind) enabled, this
>
On Tue, 18 May 2010 12:37:47 -0400, Victor Duchovni
wrote:
> On Tue, May 18, 2010 at 05:44:43PM +0200, Julien Vehent wrote:
>
>> I want to set up SASL authentication using LDAPDB, but it seems that
>> postfix connects to LDAP but doesn't send anything to it...
>>
>> I try to authenticate using '
On Tue, May 18, 2010 at 05:44:43PM +0200, Julien Vehent wrote:
> I want to set up SASL authentication using LDAPDB, but it seems that
> postfix connects to LDAP but doesn't send anything to it...
>
> I try to authenticate using 'auth plain ', and I receive :
>
> 535 5.7.8 Error: authentication f
Hey guys,
I want to set up SASL authentication using LDAPDB, but it seems that
postfix connects to LDAP but doesn't send anything to it...
I try to authenticate using 'auth plain ', and I receive :
535 5.7.8 Error: authentication failed: authentication failure
Connection to LDAP works fine at t
20 matches
Mail list logo
