hi igor, thanks for your note -- yes i have the -r flag, but still no realm coming thru.
this morning, i added ldap_default_realm and ldap_realm to my saslauthd.conf, and all is happy. thanks charles On Fri, 2006-04-07 at 15:13 -0400, Igor Brezac wrote: > On Fri, 7 Apr 2006, lartc wrote: > > > hi all, > > > > no joy even after googling for hours and looking thru the archives ... > > > > i cannot get imap to pass the realm either in the userid or realm field > > to saslauthd. > > > > i can successfully authenticate [EMAIL PROTECTED] using testsaslauthd, > > however, imtest test fails and debugging saslauthd does not show the > > realm. > > Use saslauthd -r or use %r or %R tokens in ldap_filter: > (ldap_filter: ( & (mail=%u%R) (uid=%U) ) > > -Igor > > > > > below are my configs. > > > > any help greatly appreciated :-) > > > > cheers > > > > charles > > > > /etc/saslauthd.conf > > ldap_servers: ldap://ldap.domain.com/ > > ldap_search_base: dc=domain,dc=com > > ldap_version: 3 > > ldap_filter: ( & (mail=%u) (uid=%U) )altnamespace: yes > > > > /etc/imapd.conf > > allowanonymouslogin: no > > allowapop: no > > allowplaintext: yes > > annotation_db: berkeley > > anysievefolder: yes > > autocreatequota: 10240 > > configdirectory: /var/lib/imap > > createonpost: true > > defaultdomain: domain.com > > duplicate_db: berkeley-nosync > > duplicatesuppression: no > > hashimapspool: yes > > idlesocket: /var/lib/imap/socket/idle > > imapidresponse: no > > ldap_realm: domain.com > > lmtp_downcase_rcpt: yes > > lmtp_over_quota_perm_failure: yes > > lmtpsocket: /var/spool/postfix/public/lmtp > > loginrealms: domain.com domain2.com > > mboxlist_db: berkeley > > partition-default: /var/spool/imap > > reject8bit: no > > sasl_mech_list: PLAIN > > sasl_pwcheck_method: saslauthd > > sasl_ldap_realm: domain.com > > sendmail: /usr/sbin/sendmail.postfix > > servername: domain.com > > sievedir: /var/lib/imap/sieve > > subscription_db: berkeley > > tls_ca_file: /etc/x509/ca.service/domain.com.pem > > tls_cert_file: /etc/x509/service.cyrus/public/service.cyrus.domain.com.pem > > tls_key_file: /etc/x509/service.cyrus/private/service.cyrus.domain.com.pem > > tls_require_cert: no > > tlscache_db: berkeley > > username_tolower: yes > > unixhierarchysep: yes > > virtdomains: userid > > > > > > > > > > > > ---- > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous ---- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html