Hi,
I am running RedHat Linux 7.2 and recently
downloaded the latest version of OpenLDAP 2.1.2 installed with Sleepycat 4.0.
The ladp server was installed successfully, although these is a small problem
during startup as the mailHost of the qmail.schema is now included in the
misc.schema. I built the initial ldap database using ldapadd and each of
the entries can be searched from the database using ldapsearch.
However, I cannot get result from the
LDAP database using qmail-ldaplookup -u or -m or telnet to localhost 110 to for
pop3 access. The error message from pop3 showed "unable to contact the LDAP
server". It seems to me that there is LDAP version incompatibility.
I understand that the enclosed information is
bulky, but I realy wish someone can give me hinds to proceed.
Thanks.
KF
The contents of this database is extracted from
slapdcat below:
dn: dc=school,dc=imsbiz,dc=com
objectClass: dcObject
objectClass: organization
dc: school.imsbiz.com
o: School Team Organization
structuralObjectClass: organization
creatorsName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
createTimestamp: 20020613092511Z
modifiersName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
modifyTimestamp: 20020613092511Z
dn:
ou=QmailLDAP,dc=school,dc=imsbiz,dc=com
objectClass: top
objectClass: organizationalUnit
ou: QmailLDAP
structuralObjectClass:
organizationalUnit
creatorsName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
createTimestamp: 20020613092512Z
modifiersName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
modifyTimestamp: 20020613092512Z
dn:
ou=smtweb.netvigator.com,dc=school,dc=imsbiz,dc=com
objectClass: top
objectClass: organizationalUnit
ou: smtweb.netvigator.com
description: Default Testing Domain
x121Address: 82083400
structuralObjectClass:
organizationalUnit
creatorsName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
createTimestamp: 20020613092845Z
modifiersName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
modifyTimestamp: 20020613092845Z
dn:
cn=qmailadm,ou=smtweb.netvigator.com,dc=school,dc=imsbiz,dc=com
objectClass: top
objectClass: posixaccount
objectClass: qmailuser
objectClass: organizationalunit
userPassword:: cW1haWxhZG0=
uid: qmailadm
cn: qmailadm
ou: smtweb.netvigator.com
mail: [EMAIL PROTECTED]
deliveryMode: normal
deliveryMode: localdelivery
uidNumber: 1004
gidNumber: 1000
homeDirectory:
/home/smtweb.netvigator.com/qma/qmailadm
accountStatus: active
qmailDotMode: both
mailAlternateAddress: [EMAIL PROTECTED]
mailHost: smtweb.netvigator.com
UM-Status: E
mailForwardingAddress: [EMAIL PROTECTED]
UM-Language: 1
UM-AlertStatus: Y
UM-AlertInterval: 600
UM-PhoneNum: 10000001
UM-COS: 00
structuralObjectClass:
organizationalunit
creatorsName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
createTimestamp: 20020613092845Z
modifiersName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
modifyTimestamp: 20020613092845Z
dn:
cn=yimkf,ou=smtweb.netvigator.com,dc=school,dc=imsbiz,dc=com
objectClass: top
objectClass: posixaccount
objectClass: qmailuser
objectClass: organizationalunit
uid: yimkf
cn: yimkf
ou: smtweb.netvigator.com
mail: [EMAIL PROTECTED]
uidNumber: 1005
gidNumber: 1000
homeDirectory:
/home/smtweb.netvigator.com/yim/yimkf
qmailDotMode: both
accountStatus: active
mailHost: smtweb.netvigator.com
deliveryMode: normal
deliveryMode: localdelivery
mailAlternateAddress: [EMAIL PROTECTED]
UM-Status: E
UM-Language: 1
UM-AlertStatus: Y
UM-AlertInterval: 600
UM-PhoneNum: 11111119
UM-COS: 00
UM-PassPhrase: wANoYpPlwRU=
userPassword:: ZTQ0NTU5Nzk=
structuralObjectClass:
organizationalunit
creatorsName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
createTimestamp: 20020613092846Z
modifiersName: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com
modifyTimestamp: 20020613092846Z
The content of the LDAP.log is show
below:
Jun 13 18:38:16 smtweb slapd[32513]: daemon:
conn=18 fd=12 connection from IP=210.177.27.73:33700 (IP=0.0.0.0:389) accepted.
Jun 13 18:38:16 smtweb slapd[32518]: conn=18 op=0 BIND dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" method=128 Jun 13 18:38:16 smtweb
slapd[32518]: conn=18 op=0 RESULT tag=97 err=2 text=requested protocol
version not allowed Jun 13 18:38:16 smtweb slapd[32517]: conn=18 op=1
UNBIND Jun 13 18:38:16 smtweb slapd[32517]: conn=18 fd=12 closed Jun 13 18:39:05
smtweb slapd[32513]: daemon: conn=19 fd=12 connection from
IP=210.177.27.73:33725 (IP=0.0.0.0:389) accepted. Jun 13 18:39:05 smtweb
slapd[32520]: conn=19 op=0 BIND dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" method=128 Jun 13 18:39:05 smtweb
slapd[32520]: conn=19 op=0 RESULT tag=97 err=2 text=requested protocol
version not allowed Jun 13 18:39:05 smtweb slapd[32518]: conn=19 op=1
UNBIND Jun 13 18:39:05 smtweb slapd[32518]: conn=19 fd=12 closed Jun 13 18:40:36
smtweb slapd[32513]: daemon: conn=20 fd=12 connection from
IP=210.177.27.73:33726 (IP=0.0.0.0:389) accepted. Jun 13 18:40:36 smtweb
slapd[32517]: conn=20 op=0 BIND dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" method=128 Jun 13 18:40:36 smtweb
slapd[32517]: conn=20 op=0 RESULT tag=97 err=2 text=requested protocol
version not allowed Jun 13 18:40:36 smtweb slapd[32520]: conn=20 op=1
UNBIND Jun 13 18:40:36 smtweb slapd[32520]: conn=20 fd=12 closed Jun 13 18:42:23
smtweb slapd[32513]: daemon: conn=21 fd=12 connection from
IP=210.177.27.73:33729 (IP=0.0.0.0:389) accepted. Jun 13 18:42:23 smtweb
slapd[32518]: conn=21 op=0 BIND dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" method=128 Jun 13 18:42:23 smtweb
slapd[32518]: conn=21 op=0 RESULT tag=97 err=2 text=requested protocol
version not allowed Jun 13 18:42:23 smtweb slapd[32517]: conn=21 op=1
UNBIND Jun 13 18:42:23 smtweb slapd[32517]: conn=21 fd=12 closed
Qmail-showctl list:
qmail home directory:
/var/qmail.
user-ext delimiter: -.
paternalism (in decimal):
18.
silent concurrency limit:
125.
subdirectory split: 23.
user ids: 501, 502, 503, 0, 504, 505,
506, 507.
group ids: 501, 502.
me: My name is
smtweb.netvigator.com
ldapserver: My ldap server is
smtweb.netvigator.com
badmailfrom: (Default.) Any MAIL FROM is
allowed.
bouncefrom: (Default.) Bounce user name
is MAILER-DAEMON.
bouncehost: (Default.) Bounce host name
is smtweb.netvigator.com.
concurrencylocal: (Default.) Local
concurrency is 10.
concurrencyremote: (Default.) Remote
concurrency is 20.
databytes: SMTP DATA limit is 500000
bytes.
defaultdomain: Default domain name is
smtweb.netvigator.com.
defaulthost: Default host name is
smtweb.netvigator.com.
doublebouncehost: (Default.) 2B
recipient host: smtweb.netvigator.com.
doublebounceto: (Default.) 2B recipient
user: postmaster.
envnoathost: (Default.) Presumed domain
name is smtweb.netvigator.com.
helohost: (Default.) SMTP client HELO
host name is smtweb.netvigator.com.
idhost: (Default.) Message-ID host name
is smtweb.netvigator.com.
localiphost: (Default.) Local IP address
becomes smtweb.netvigator.com.
locals:
Messages for smtweb.netvigator.com are
delivered locally.
me: My name is
smtweb.netvigator.com.
percenthack: (Default.) The percent hack
is not allowed.
plusdomain: Plus domain name is
smtweb.netvigator.com.
qmqpservers: (Default.) No QMQP
servers.
queuelifetime: (Default.) Message
lifetime in the queue is 604800 seconds.
rcpthosts:
SMTP clients may send messages to
recipients at smtweb.netvigator.com.
morercpthosts: (Default.) No
effect.
morercpthosts.cdb: (Default.) No
effect.
smtpgreeting: (Default.) SMTP greeting:
220 smtweb.netvigator.com.
smtproutes: (Default.) No artificial
SMTP routes.
timeoutconnect: (Default.) SMTP client
connection timeout is 60 seconds.
timeoutremote: (Default.) SMTP client
data timeout is 1200 seconds.
timeoutsmtpd: (Default.) SMTP server
data timeout is 1200 seconds.
virtualdomains: (Default.) No virtual
domains.
now the qmail-ldap specific
files
ldapserver: My LDAP Server is
smtweb.netvigator.com.
ldapbasedn: LDAP basedn:
dc=school,dc=imsbiz,dc=com.
ldaplogin: LDAP login: cn=Directory
Manager,dc=school,dc=imsbiz,dc=com.
ldappassword: LDAP password:
password.
ldapuid: (Default.) Default UID is: not
defined.
ldapgid: (Default.) Default GID is: not
defined.
ldapmessagestore: (Default.) Prefix for
non absolute paths: not defined.
ldapdefaultdotmode: Default dot mode for
ldap users: both.
ldapdefaultquota: Default quota for ldap
users: 500000000S,10000C.
dirmaker: (Default.) Location of program
to create homedirs: not defined.
ldaplocaldelivery: local passwd lookup
is 0 (1 = on, 0 = off).
ldaprebind: ldap rebinding is 1 (1 = on,
0 = off).
ldapcluster: clustering is 0 (1 = on, 0
= off).
ldapclusterhosts: (Default.) No
alternate MailHosts for clustering listed.
quotawarning:
Mail box exceed pre-defined
quota.
custombouncetext: (Default.) No
custombouncetext.
maxrcptcount: 100 RCPT TOs are accepted
before sending 553 (0 = off).
tarpitcount: 100 RCPT TOs are accepted
before tarpitting (0 = off).
tarpitdelay: 300 seconds of delay to
introduce after each subsequent RCPT TO.
badrcptto: (Default.) Any RCPT TO is
allowed.
relaymailfrom: (Default.) Relaymailfrom
not enabled.
rbllist: (Default.) No RBL
listed.
maxrcptcount: I have no idea what this
file does.
OpenLDAP 2.1.2 slapd.conf:
# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v
1.23 2002/02/02 05:23:12 kurt Exp $
#
# See slapd.conf(5) for details on configuration
options.
# This file should NOT be world
readable.
#
##### Global Configuration Directives
# Define global ACLs to disable default read
access.
#
# Sample access control policy:
# Allow read access of root DSE
# Allow self write access
# Allow authenticated users read
access
# Allow anonymous users to
authenticate
# Directives needed to implement
policy:
#access to dn="" by * read
#access to *
# by self write
# by users read
# by anonymous auth
#
# if no access controls are present, the default
policy is:
# Allow read by all
#
# rootdn can always write!
access to attr=userPassword
by self write
by anonymous auth
by dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" write
by * none
access to *
by self write
by * read
by anonymous auth
by dn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" write
#attributetye [Not used]
#defaultaccess [Not used] #default
read
#ideltimeout [Not used] #default
disable
include
/usr/etc/openldap/schema/core.schema
include
/usr/etc/openldap/schema/corba.schema
include
/usr/etc/openldap/schema/cosine.schema
include
/usr/etc/openldap/schema/inetorgperson.schema
include
/usr/etc/openldap/schema/java.schema
#include
/usr/etc/openldap/schema/misc.schema
# The misc.Schema contain mailHost attribute which
conflict with qmail.schema
include
/usr/etc/openldap/schema/nis.schema
include
/usr/etc/openldap/schema/openldap.schema
include
/usr/etc/openldap/schema/qmail.schema
include
/usr/etc/openldap/schema/qmailControl.schema
#loglevel #default 256
#objectclass [Not used]
# Do not enable referrals until AFTER you have a
working directory
# service AND an understanding of
referrals.
#referral ldap://root.openldap.org
#sizelimit [Not used] #default 500
#timelimit [Not used] #default 3600
##### Backend Spefic Directives
backend bdb
# Load dynamic backend modules:
# modulepath /usr/libexec/openldap
# moduleload back_ldap.la
# moduleload back_ldbm.la
# moduleload back_passwd.la
# moduleload back_shell.la
##### Database Specific Directives
database bdb
#readonly [Not used] #default off
# Master replication Entry
#replica host=192.168.1.7:389 binddn="cn=Directory
Manager,dc=school,dc=imsbiz,dc=com" bindmethod=simple
credentials=password
#replogfile
/var/lib/ldap/ldapreplica.log
rootdn "cn=Directory Manager, dc=school, dc=imsbiz,
dc=com"
# Cleartext passwords, especially for the rootdn,
should
# be avoid. See slappasswd(8) and slapd.conf(5) for
details.
# Use of strong authentication
encouraged.
suffix "dc=school, dc=imsbiz, dc=com"
rootpw password
#updatedn [Not used]
#updateref [Not used]
##### BDB Database Directives
directory /usr/var/openldap-data
# The database directory MUST exist prior to
running slapd AND
# should only be accessible by the slapd/tools.
Mode 700 recommended.
#######################################################################
# ldbm database definitions
#######################################################################
#cachesize 5000 #default 1000
#dbcachesize 5000000 #default 100000
#dbnolocking [Not used]
#dbnosync [Not used]
#directory /usr/var/openldap-data
# Indices to maintain
index objectClass pres,eq
index cn,uid,mail,mailAlternateAddress pres,eq
index um-subscribernum,um-phonenum
pres,eq
pidfile /usr/var/slapd.pid
argsfile
/usr/var/slapd.args
