I'm using a virtual domain setup based on usernames. So I have a domain uberduper.com and a user [EMAIL PROTECTED] I've got imapd setup to use saslauthd, and saslauthd setup to auth against LDAP. If I assign the uid of [EMAIL PROTECTED] in ldap, testsaslauthd can successfully auth, but imapd cannot. Looking at the logs suggests that imapd isn't passing the entire username [EMAIL PROTECTED] to saslauthd. Just "jsatter"
This is because you have specified uberduper.com as your defaultdomain, which causes Cyrus to strip the domain. defaultdomain is usually only used for backwards compatibility when upgrading an existing single domain installation. Read the virtdomains docs in the distro for details.
Thanks, James.
Config snippets: imapd.conf
virtdomains: yes defaultdomain: uberduper.com configdirectory: /usr/local/var/imap partition-default: /usr/local/var/spool/imap allowplaintext: yes admins: root cyrus singleinstancestore: yes duplicatesuppression: yes sieveusehomedir: false sievedir: /usr/local/var/imap/sieve sendmail: /usr/sbin/sendmail sasl_pwcheck_method: saslauthd sasl_mech_list: plain lmtpsocket: /usr/local/var/imap/socket/lmtp idlesocket: /usr/local/var/imap/socket/idle notifysocket: /usr/local/var/imap/socket/notify
saslauthd.conf ldap_servers: ldap://64.62.153.124/ ldap_bind_dn: cn=root,dc=uberduper,dc=com ldap_bind_pw: secret ldap_search_base: dc=uberduper,dc=com ldap_auth_method: custom
auth.log Aug 4 20:44:36 knight saslauthd[48297]: do_auth : auth failure: [user=jsatter] [service=imap] [realm=] [mech=ldap] [reason=Unknown]
-- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp