Re: Virtual domains and LDAP

[Ken Murchison]

James Satterfield wrote:
I'm using a virtual domain setup based on usernames. So I have a domain
uberduper.com and a user [EMAIL PROTECTED]
I've got imapd setup to use saslauthd, and saslauthd setup to auth against LDAP.
If I assign the uid of [EMAIL PROTECTED] in ldap, testsaslauthd can
successfully auth, but imapd cannot. Looking at the logs suggests that imapd
isn't passing the entire username [EMAIL PROTECTED] to saslauthd. Just
"jsatter"
This is because you have specified uberduper.com as your defaultdomain, 
which causes Cyrus to strip the domain.  defaultdomain is usually only 
used for backwards compatibility when upgrading an existing single 
domain installation.  Read the virtdomains docs in the distro for details.


Thanks,
James.
Config snippets:
imapd.conf
virtdomains: yes
defaultdomain:  uberduper.com
configdirectory: /usr/local/var/imap
partition-default: /usr/local/var/spool/imap
allowplaintext: yes
admins: root cyrus
singleinstancestore: yes
duplicatesuppression: yes
sieveusehomedir: false
sievedir: /usr/local/var/imap/sieve
sendmail: /usr/sbin/sendmail
sasl_pwcheck_method: saslauthd
sasl_mech_list: plain
lmtpsocket: /usr/local/var/imap/socket/lmtp
idlesocket: /usr/local/var/imap/socket/idle
notifysocket: /usr/local/var/imap/socket/notify
saslauthd.conf
ldap_servers: ldap://64.62.153.124/
ldap_bind_dn: cn=root,dc=uberduper,dc=com
ldap_bind_pw: secret
ldap_search_base: dc=uberduper,dc=com
ldap_auth_method: custom
auth.log
Aug  4 20:44:36 knight saslauthd[48297]: do_auth         : auth failure:
[user=jsatter] [service=imap] [realm=] [mech=ldap] [reason=Unknown]




--
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp