Hi,
does anybody have a hint for me concerning the setup of sasl/ldap in a
openpkg environment? Testing authentication using testsaslauthd like
auth1# /v/authback/sw/sbin/testsaslauthd -u test -p test
just returns the following line:
0: NO "authentication failed"
and not (!!!) more.
Increasing debug level in saslauthd.conf by the following directives
ldap_debug: 5
ldap_verbose: on
does not show anything (!!!) - which normally it does without any probs.
strace neither returns any useful output:
fcntl(6, F_SETLKW, {...}Process 25899 attached - interrupt to quit
) = 0
accept(5, {sa_family=AF_UNIX, [EMAIL PROTECTED], [16]) = 7
fcntl(6, F_SETLKW, {type=0 /* F_??? */, whence=SEEK_SET,
start=582055342478975168, len=134548332}) = 0
read(7, "\0\0", 2) = 2
read(7, "\0\0\0\0", 4) = 4
read(7, "\0\0", 2) = 2
read(7, "\1\0\0\0", 4) = 4
read(7, "\0\0", 2) = 2
read(7, "\0\0\0\0", 4) = 4
read(7, "\0\0", 2) = 2
open("/v/authback/sw/etc/sasl/saslauthd.conf", O_RDONLY) = 15
fstat(15, {st_mode=S_IFBLK|S_ISVTX|0557, st_rdev=makedev(0, 0), ...}) = 0
break(0x8166000) = 0
read(15, "##\n## saslauthd.conf -- SASL Au"..., 16384) = 1213
__sysctl([185213963.163390501], 2, " Daemon Configuration\n##\n\n#
whit"..., [1852795252], NULL, 0) = 0
__sysctl([188659312.543515489], 2, "rated list of LDAP
servers\nldap_"..., [1634755955], NULL, 0) = 0
__sysctl([198720856.980644453], 2, "p://127.0.0.1/\n\n#
authentication"..., [1633971232], NULL, 0) = 0
__sysctl([191990326.193602819], 2, "ted LDAP servers\nldap_bind_dn:
c"..., [1667854964], NULL, 0) = 0
__sysctl([168481521.186518332], 2,
"rvices,dc=test,dc=net\nldap_bind"..., [1702051189], NULL, 0) = 0
getpid() = 25899 (ppid 1)
gettimeofday({980906079, 1633971232}, NULL) = 0
write(3, "p\n\n# LDAP version to use (2|3)\n#"..., 158) = 158
write(7, "ld", 2) = 2
write(7, "NO", 2) = 2
close(7) = 0
fcntl(6, F_SETLKW, {type=0x6874 /* F_??? */, whence=0x2f64 /* SEEK_???
*/, start=114849388494848, len=7021956244000735232}
I don't see any binding request to ldap, but ldap works pretty fine (I
use it as an authentication backend for Radius), so I suppose sasl
doesn't really try to contact ldap server. As far as I see in the strace
output, process just reads the config file but does not do anything else ...
There is no problem in using getpwent or shadow (didn't try
kerberos[45], pam rimap or sasldb yet), but it works pretty fine in
other environments, where I used packaged software.
saslauthd.conf is
auth1# grep -v ^$ saslauthd.conf | grep -v ^#
ldap_servers: ldap://127.0.0.1/
ldap_bind_dn: cn=ldap,ou=services,dc=test,dc=net
ldap_bind_pw: xxxxx
ldap_timeout 5
ldap_deref: never
ldap_referrals: no
ldap_restart: yes
ldap_search_base: ou=people,dc=test,dc=net
ldap_auth_method: bind
ldap_filter: uid=%u
ldap_debug: 5
ldap_verbose: on
Any hints?
______________________________________________________________________
The OpenPKG Project www.openpkg.org
User Communication List openpkg-users@openpkg.org
