Re: [Dovecot] dovecot: auth(default): ldap(...): Authenticated user not found
On Sun, 29 Mar 2009, Stas SUSHKOV wrote: I'm trying to set up dovecot together with postfix and experience some problems. Here's in details what I have and what I want to get. I have a ldap server on localhost, a working setup of dovecot to serve sasl, imap using ldap, a working setup of Postfix for (s)smtp (I can authenticate which uses dovecot's sasl). What i wan't to get is a completely working email server for ldap users with their email forwardings (so far they have only 1 forwarding). The porblem I stuck on is the following: when sending mail through (s)smtp, after passing authentication, I get my email dropped. And I see this in logs: http://ciorne.softwareliber.ro/index.php/view/raw/aaf3eb42 ***Authenticated user not found!!!*** In your log, notice the 'user' in a successful IMAP login: dovecot: imap-login: Login: user=c00l2sv, method=PLAIN, rip=193.226.6.226, lip=193.226.5.152, TLS Later, when you pipe the mail to dovecot for delivery: dovecot: auth(default): ldap(c00l...@student.utcluj.ro): Authenticated user not found You need to modify the arguments in your call to deliver in Postfix's master.cf. The master socket should be looking for 'c00l2sv' instead of 'c00l...@student.utcluj.ro'. See: http://www.postfix.org/pipe.8.html (under argv=command) http://wiki.dovecot.org/LDA (under Parameters) -- Sahil Tandon sa...@tandon.net
Re: [Dovecot] dovecot: auth(default): ldap(...): Authenticated user not found
On Sun, 2009-03-29 at 11:39 -0400, Sahil Tandon wrote: On Sun, 29 Mar 2009, Stas SUSHKOV wrote: ***Authenticated user not found!!!*** In your log, notice the 'user' in a successful IMAP login: dovecot: imap-login: Login: user=c00l2sv, method=PLAIN, rip=193.226.6.226, lip=193.226.5.152, TLS Later, when you pipe the mail to dovecot for delivery: dovecot: auth(default): ldap(c00l...@student.utcluj.ro): Authenticated user not found You need to modify the arguments in your call to deliver in Postfix's master.cf. The master socket should be looking for 'c00l2sv' instead of 'c00l...@student.utcluj.ro'. See: http://www.postfix.org/pipe.8.html (under argv=command) http://wiki.dovecot.org/LDA (under Parameters) I got it now. That makes sense. So I followed the wiki: http://wiki.dovecot.org/LDA#Without_a_lookup and simply cut the -d {recipient} from the pipe. --- # delivery through dovecot dovecot unix - n n - - pipe flags=DRhu user=mail:mail argv=/usr/lib/dovecot/deliver -f ${sender} --- Now It accepts emails and it says that those are delivered, but I can't see those in my Maildir. Here's the log: http://ciorne.softwareliber.ro/index.php/view/raw/c9da1833 May I ask now, do I have to connect my ldap users through NSS (libnss-ldap) in order to make dovecot believe those are local users? -- () Campania Panglicii în ASCII /\ http://stas.nerd.ro/ascii/
Re: [Dovecot] dovecot: auth(default): ldap(...): Authenticated user not found
On Sun, 29 Mar 2009, Stas SUSHKOV wrote: On Sun, 2009-03-29 at 11:39 -0400, Sahil Tandon wrote: On Sun, 29 Mar 2009, Stas SUSHKOV wrote: ***Authenticated user not found!!!*** In your log, notice the 'user' in a successful IMAP login: dovecot: imap-login: Login: user=c00l2sv, method=PLAIN, rip=193.226.6.226, lip=193.226.5.152, TLS Later, when you pipe the mail to dovecot for delivery: dovecot: auth(default): ldap(c00l...@student.utcluj.ro): Authenticated user not found You need to modify the arguments in your call to deliver in Postfix's master.cf. The master socket should be looking for 'c00l2sv' instead of 'c00l...@student.utcluj.ro'. See: http://www.postfix.org/pipe.8.html (under argv=command) http://wiki.dovecot.org/LDA (under Parameters) I got it now. That makes sense. So I followed the wiki: http://wiki.dovecot.org/LDA#Without_a_lookup and simply cut the -d {recipient} from the pipe. In your setup, I do not see where the user's home directory is looked up before the mail is passed off to deliver, so you probably should not do this. --- # delivery through dovecot dovecot unix - n n - - pipe flags=DRhu user=mail:mail argv=/usr/lib/dovecot/deliver -f ${sender} --- Instead, try appending -d ${user} to the above set of arguments. -- Sahil Tandon sa...@tandon.net
Re: [Dovecot] dovecot: auth(default): ldap(...): Authenticated user not found
On Sun, 2009-03-29 at 14:20 -0400, Sahil Tandon wrote: On Sun, 29 Mar 2009, Stas SUSHKOV wrote: I got it now. That makes sense. So I followed the wiki: http://wiki.dovecot.org/LDA#Without_a_lookup and simply cut the -d {recipient} from the pipe. In your setup, I do not see where the user's home directory is looked up before the mail is passed off to deliver, so you probably should not do this. --- # delivery through dovecot dovecot unix - n n - - pipe flags=DRhu user=mail:mail argv=/usr/lib/dovecot/deliver -f ${sender} --- Instead, try appending -d ${user} to the above set of arguments. I tried several arguments like ${user}, ${sasl_user} and etc, but all I could get it: --- Mar 29 21:25:54 student postfix/pipe[4285]: 82D52F53A0: to=c00l...@student.utcluj.ro, relay=dovecot, delay=0.18, delays=0.09/0/0/0.09, dsn=4.3.0, status=deferred (temporary failure) --- I believe I have to set up libnss-ldap (https://help.ubuntu.com/community/LDAPClientAuthentication) in order to get the users on the server. I can't find any other solutions :( -- () Campania Panglicii în ASCII /\ http://stas.nerd.ro/ascii/
Re: [Dovecot] dovecot: auth(default): ldap(...): Authenticated user not found
On Sun, 2009-03-29 at 14:20 -0400, Sahil Tandon wrote: On Sun, 29 Mar 2009, Stas SUSHKOV wrote: --- Instead, try appending -d ${user} to the above set of arguments. Solved. I started to log the dovecot lda protocol (after adding ${user}), and found this: --- deliver(c00l2sv): 2009-03-29 21:58:17 Fatal: setgid(2000) failed with euid=8, gid=8, egid=8: Operation not permitted --- That was the key to solution. The next step was to read this: http://wiki.dovecot.org/LDA#Multiple_UIDs :) Thank you Sahil for assistance. I'll add a wiki page describing this setup, cause I didn't find anything like this yet. Cheers. -- () Campania Panglicii în ASCII /\ http://stas.nerd.ro/ascii/