On Fri, 21 May 2010 13:12:08 +0200, Julien Vehent <[email protected]> wrote: > > > I re-read the SASL howto and I'm quite confinced that my configuration is > fine (but once again, you're never a 100% sure). > > Any idea ? >
I found something interesting in the Slapd logs. When Postfix sends the UID of the user it wants to authenticate as, it sends the email address of the user, ie, for julien, it would send [email protected] Therefore,slapd looks for a user that has [email protected] in its UID, and obviously doesn't find it... How can I correct this ? ---- May 24 11:55:30 samchiel slapd[13163]: => get_ctrls May 24 11:55:30 samchiel slapd[13163]: => get_ctrls: oid="2.16.840.1.113730.3.4.18" (critical) May 24 11:55:30 samchiel slapd[13163]: parseProxyAuthz: conn 3 authzid="u:[email protected]" May 24 11:55:30 samchiel slapd[13163]: slap_sasl_getdn: conn 3 id=u:[email protected] [len=23] May 24 11:55:30 samchiel slapd[13163]: slap_sasl_getdn: u:id converted to [email protected],cn=DIGEST-MD5,cn=auth May 24 11:55:30 samchiel slapd[13163]: >>> dnNormalize: <[email protected],cn=DIGEST-MD5,cn=auth> May 24 11:55:30 samchiel slapd[13163]: <<< dnNormalize: <[email protected],cn=digest-md5,cn=auth> May 24 11:55:30 samchiel slapd[13163]: ==>slap_sasl2dn: converting SASL name [email protected],cn=digest-md5,cn=auth to a DN May 24 11:55:30 samchiel slapd[13163]: [rw] authid: "[email protected],cn=digest-md5,cn=auth" -> "ldap:///dc=linuxwall,dc=info??sub([email protected])" May 24 11:55:30 samchiel slapd[13163]: slap_parseURI: parsing ldap:///dc=linuxwall,dc=info??sub?([email protected]) ---- Thanks, Julien
