Re: Integrted tool for adminstering Cyrus IMAP and LDAP. [auf Viren überprüft]

[Hans Moser]

Rafael Alcalde schrieb:

Suse (NOVELL) give up SLOX, there is no new releases for a year, and now 
the only way is to migrate to OX. But, it still have not a development 
environment, connectors to other systems like outlook or palm..., 

Do you speak about the community or commercial version of OX?
Do you know OXTender?
-> http://www.open-xchange.com/EN/product/oxtender.html

Hans


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Rafael Alcalde]

Suse (NOVELL) give up SLOX, there is no new releases for a year, and now 
the only way is to migrate to OX. But, it still have not a development 
environment, connectors to other systems like outlook or palm..., and 
there are a lot of requirements a company need that OX does not provide.


Perhaps OX can solve the problem in a little company for a while, but 
when you have several offices with a lot of resources to share, a lot of 
people with email accounts to administer... it is a heavy work of 
administration so OX became part of the problem.
Then you start to evaluate commercial software, easy to install, to 
administer... that let you grow... and think the way to get the money... ;)


Rudy Gevaert wrote:

Rafael Alcalde wrote:

We have SLOX but this a dead end way.


Why?  Could you explain that a bit more in depth? :)

Thanks!



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[lartc]

hi all,

do also look at gosa -- while it takes a bit of effort for installation,
the end result is fabulous.

http://gosa.gonicus.de/


cheers

charles
-- 
"simplified chinese" is not nearly as easy as they would
have you believe ... a superlative oxymoron --anonymous


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Rudy Gevaert]

Rafael Alcalde wrote:

We have SLOX but this a dead end way.


Why?  Could you explain that a bit more in depth? :)

Thanks!

--
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
Rudy Gevaert  [EMAIL PROTECTED]  tel:+32 9 264 4734
Directie ICT, afd. Infrastructuur  Direction ICT, Infrastructure dept.
Groep Systemen Systems group
Universiteit Gent  Ghent University
Krijgslaan 281, gebouw S9, 9000 Gent, Belgie   www.UGent.be
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Jernej Porenta]

Hello,

We have tested Zimbra, which is almost the solution you need:
- postfix (amavis,spamassassin, dspam)
- ldap (openldap, integrated or external)
- web frontend (administrative, webmail etc., AJAX)
- perdition (load balancing)

but no cyrus backend. They implemented their own storage backend and it is
quite fast for web operations, but it is slow on IMAP and POP3 side
compared to dovecot or cyrus.

The results of the testing are here:
http://www2.arnes.si/~krklubsls13/

If anyone interested in the results, I can publish them more.

In the end it turned out it is not the solution that we are looking for,
because most of our users (~100k) is using POP3/IMAP clients. Currently we
are still using mailbox format (UW-IMAP/qpopper) and we are in the process
of selecting new mailbox format.

cheers, Jernej

On Mon, 18 Sep 2006, Rafael Alcalde wrote:

> We have SLOX but this a dead end way.
> We have to change to other opensource solution... with postfix, LDAP,
> CYRUS,... and we  need a calendar system to share rooms, resources, etc...
> What do you suggest?
>
> donovan wrote:
> >
> > On Sep 13, 2006, at 8:29 AM, Alexander Dalloz wrote:
> >
> >> AndrXs Tarallo schrieb:
> >>
> >>> I have to deploy an Email Server based on Cyrus IMAP, Postfix and
> >>> LDAP. This is no problem, I have done it before.However our customer
> >>> requests for a web based tool for administering user accounts and
> >>> quotas.
> >>> We found tools capable of administering accounts in the LDAP Server
> >>> (ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We
> >>> want a tool where you can create a Cyrus account with LDAP
> >>> autentication filling one web based form, Same with modifications
> >>> and deletions.
> >>>
> >> ISPman - http://www.ispman.net/ - does all this. It is an integrated
> >> solution and does not just do the LDAP administration through a web
> >> interface.
> >>
> >>> Does someone has something to recomend? Thanks in advance.
> >
> > OSX server.
> > you may need to recompile postfix to add ldap support but after that,
> > your off to the races.
> >
> >>>
> >>> A/P Andres Tarallo
> >>>
> >> Alexander
> >>
> >>
> >> 
> >> Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> >> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> >>
> >
> > 
> > Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> 
> Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Rafael Alcalde]

We have SLOX but this a dead end way.
We have to change to other opensource solution... with postfix, LDAP, 
CYRUS,... and we  need a calendar system to share rooms, resources, etc...

What do you suggest?

donovan wrote:


On Sep 13, 2006, at 8:29 AM, Alexander Dalloz wrote:


AndrXs Tarallo schrieb:

I have to deploy an Email Server based on Cyrus IMAP, Postfix and 
LDAP. This is no problem, I have done it before.However our customer 
requests for a web based tool for administering user accounts and 
quotas.
We found tools capable of administering accounts in the LDAP Server 
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We 
want a tool where you can create a Cyrus account with LDAP 
autentication filling one web based form, Same with modifications 
and deletions.


ISPman - http://www.ispman.net/ - does all this. It is an integrated 
solution and does not just do the LDAP administration through a web 
interface.



Does someone has something to recomend? Thanks in advance.


OSX server.
you may need to recompile postfix to add ldap support but after that, 
your off to the races.




A/P Andres Tarallo


Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[donovan]

On Sep 13, 2006, at 8:29 AM, Alexander Dalloz wrote:


AndrXs Tarallo schrieb:

I have to deploy an Email Server based on Cyrus IMAP, Postfix and  
LDAP. This is no problem, I have done it before.However our  
customer requests for a web based tool for administering user  
accounts and quotas.
We found tools capable of administering accounts in the LDAP  
Server (ie LDAPmyADMIN) or cyrus accounts, but not an integrated  
tool.We want a tool where you can create a Cyrus account with LDAP  
autentication filling one web based form, Same with modifications  
and deletions.


ISPman - http://www.ispman.net/ - does all this. It is an  
integrated solution and does not just do the LDAP administration  
through a web interface.



Does someone has something to recomend? Thanks in advance.


OSX server.
you may need to recompile postfix to add ldap support but after that,  
your off to the races.




A/P Andres Tarallo


Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Alexander Dalloz]

AndrXs Tarallo schrieb:

I have to deploy an Email Server based on Cyrus IMAP, Postfix and 
LDAP. This is no problem, I have done it before.However our customer 
requests for a web based tool for administering user accounts and 
quotas. 

We found tools capable of administering accounts in the LDAP Server 
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want 
a tool where you can create a Cyrus account with LDAP autentication 
filling one web based form, Same with modifications and deletions.
 

ISPman - http://www.ispman.net/ - does all this. It is an integrated 
solution and does not just do the LDAP administration through a web 
interface.



Does someone has something to recomend? Thanks in advance.

A/P Andres Tarallo


Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

RE: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Leon Kolchinsky]

Hi,

You can try "LDAP enabled web-cyradm" web GUI. - 
http://www.web-cyradm.org/download.html
In fact I'm using this great tool (a little modified for our needs) and it's 
very nice.

Regards,
Leon Kolchinsky



-
I have to deploy an Email Server based on Cyrus IMAP, Postfix and 
LDAP. This is no problem, I have done it before.However our customer 
requests for a web based tool for administering user accounts and 
quotas. 

We found tools capable of administering accounts in the LDAP Server 
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want 
a tool where you can create a Cyrus account with LDAP autentication 
filling one web based form, Same with modifications and deletions.

Does someone has something to recomend? Thanks in advance.

A/P Andres Tarallo
WD&B Consultores
Montevideo - Uruguay



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[tarjei]

Simon Matter wrote:

  
I have to deploy an Email Server based on Cyrus IMAP, Postfix and
LDAP. This is no problem, I have done it before.However our customer
requests for a web based tool for administering user accounts and
quotas.

We found tools capable of administering accounts in the LDAP Server
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want
a tool where you can create a Cyrus account with LDAP autentication
filling one web based form, Same with modifications and deletions.

  
  
You could try phpldapadmin which can make use of customized templates for
that.
  

GoSA is the nicest interface I've found.
Tarjei

  
Simon

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
  





Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

[Simon Matter]

> I have to deploy an Email Server based on Cyrus IMAP, Postfix and
> LDAP. This is no problem, I have done it before.However our customer
> requests for a web based tool for administering user accounts and
> quotas.
>
> We found tools capable of administering accounts in the LDAP Server
> (ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want
> a tool where you can create a Cyrus account with LDAP autentication
> filling one web based form, Same with modifications and deletions.

You could try phpldapadmin which can make use of customized templates for
that.

Simon

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Integrted tool for adminstering Cyrus IMAP and LDAP.

[Andr�s Tarallo]

I have to deploy an Email Server based on Cyrus IMAP, Postfix and 
LDAP. This is no problem, I have done it before.However our customer 
requests for a web based tool for administering user accounts and 
quotas. 

We found tools capable of administering accounts in the LDAP Server 
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want 
a tool where you can create a Cyrus account with LDAP autentication 
filling one web based form, Same with modifications and deletions.

Does someone has something to recomend? Thanks in advance.

A/P Andres Tarallo
WD&B Consultores
Montevideo - Uruguay

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: imap and ldap

[Craig Ringer]

Oke I tried to reconfigure cyrus-sasl with the following options
--with-ldap=/etc/ldap (because I had to give a directory)

Everything was going fine, no errors during the installation but when I executed the 
command saslauthd -v
I get the same options.
saslauthd 2.1.15
authentication mechanisms: getpwent rimap shadow
I'm sure you've checked all these, but just in case:
 - did you run make install?
 - is the install path on your PATH?
 - do you already have a system-provided cyrus-sasl installed?
If the latter, it's quite likely that the saslauthd from that package is 
found before the one you compiled and installed. Try 'which saslauthd' 
to see which command your shell is excuting. Alternately, try explicitly 
running saslauthd with a full, explicit path.

Craig Ringer

Re: imap and ldap

[Igor Brezac]

On Thu, 11 Dec 2003, Rob Siemborski wrote:

> On Thu, 11 Dec 2003, Alain Williams wrote:
>
> > Tweak  master.c (version 1.82), starting line 138, insert:
> > #include 
> >
> > int allow_severity = LOG_DEBUG;
> > int deny_severity = LOG_ERR;
>
> I'm unclear why you needed to do this, since master doesn't link
> tcpwrappers, only the cyrus services do.
>

This is needed for ucd-snmpd 4.2.6 compiled with tcpwrappers and possibly
a few earlier revisions.  It has tcpwrapper support in agentx.

Index: master.c
===
RCS file: /cvs/src/cyrus/master/master.c,v
retrieving revision 1.85
diff -u -r1.85 master.c
--- master.c22 Oct 2003 18:50:14 -  1.85
+++ master.c11 Dec 2003 22:18:51 -
@@ -39,7 +39,7 @@
  * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
  */

-/* $Id: master.c,v 1.85 2003/10/22 18:50:14 rjs3 Exp $ */
+/* $Id: master.c,v 1.67.4.26 2003/10/17 20:37:42 rjs3 Exp $ */

 #include 

@@ -91,6 +91,10 @@
 #include 

 #include "cyrusMasterMIB.h"
+
+int allow_severity = LOG_DEBUG;
+int deny_severity = LOG_ERR;
+
 #endif

 #include "masterconf.h"

> Could you expand on what errors you were getting, and what commands were
> causing them?
>
> Also, writing documentation is great.  Either post what you did to the
> wiki or send us patches for the documentation we distributed.
>
> -Rob
>
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456
> Research Systems Programmer * /usr/contributed Gatekeeper
>
>

-- 
Igor

Re: imap and ldap

[Rob Siemborski]

On Thu, 11 Dec 2003, Igor Brezac wrote:

> This is needed for ucd-snmpd 4.2.6 compiled with tcpwrappers and possibly
> a few earlier revisions.  It has tcpwrapper support in agentx.

Ah, ok, committed.

-Rob

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456
Research Systems Programmer * /usr/contributed Gatekeeper

Re: imap and ldap

[Alain Williams]

On Thu, Dec 11, 2003 at 05:02:42PM -0500, Rob Siemborski wrote:
> On Thu, 11 Dec 2003, Alain Williams wrote:
> 
> > Tweak  master.c (version 1.82), starting line 138, insert:
> > #include 
> >
> > int allow_severity = LOG_DEBUG;
> > int deny_severity = LOG_ERR;
> 
> I'm unclear why you needed to do this, since master doesn't link
> tcpwrappers, only the cyrus services do.
> 
> Could you expand on what errors you were getting, and what commands were
> causing them?
> 
> Also, writing documentation is great.  Either post what you did to the
> wiki or send us patches for the documentation we distributed.

I shall complete what I am doing and then write it all up from the
notes that I have. A couple of weeks time.

-- 
Alain Williams

#include 

FATHERS-4-JUSTICE - Campaigning for equal rights for parents and the
best interests of our children. See http://www.fathers-4-justice.org

Re: imap and ldap

[Rob Siemborski]

On Thu, 11 Dec 2003, Alain Williams wrote:

> Tweak  master.c (version 1.82), starting line 138, insert:
>   #include 
>
>   int allow_severity = LOG_DEBUG;
>   int deny_severity = LOG_ERR;

I'm unclear why you needed to do this, since master doesn't link
tcpwrappers, only the cyrus services do.

Could you expand on what errors you were getting, and what commands were
causing them?

Also, writing documentation is great.  Either post what you did to the
wiki or send us patches for the documentation we distributed.

-Rob

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456
Research Systems Programmer * /usr/contributed Gatekeeper

Re: imap and ldap

[Alain Williams]

On Thu, Dec 11, 2003 at 10:32:33AM -0500, Igor Brezac wrote:
> 
> On Thu, 11 Dec 2003, Geert Reijnders wrote:
> 
> > Oke I tried to reconfigure cyrus-sasl with the following options
> > --with-ldap=/etc/ldap (because I had to give a directory)
> 
> It appears that saslauthd configure script cannot find openldap libs on
> your system.  Check saslauthd/config.log and search for LDAP.

I have just installed & configured cyrus on a SuSE Linux box, I was going to
put up a small write up, but here is some of it now.

I had to:

ln -s /usr/local/lib/sasl2 /usr/lib/sasl2

Tweak  master.c (version 1.82), starting line 138, insert:
#include 
   
 
int allow_severity = LOG_DEBUG;
int deny_severity = LOG_ERR;

I had a flirtation with kerberos (trying to authenticate off MS active directory) 
before
giving up and moving to ldap.
ln -s /etc/saslauthd.conf /usr/local/etc/saslauthd.conf
That file containing:
# Config file for SASL with ldap
# ADDW - December 2003

# The 2 ldap servers on the main site:
ldap_servers: ldap://172.17.5.1:389/ ldap://172.17.5.2:389/

# This doesn't work, the servers don't appear to be listening to ldaps
#ldap_servers: ldaps://172.17.5.1:636/

ldap_filter: SAMAccountName=%u
ldap_version: 3

# Who we bind as - ie the user that we use to ask the question:
ldap_bind_dn: cn=AccountName,ou=staff,dc=oaklands,dc=ac,dc=uk
ldap_bind_pw: TopSecret

# The ''domain'' within which we search:
ldap_search_base: ou=students,ou=academic,DC=oaklands,dc=ac,dc=uk

# end

Thanks to Trey Tabner <[EMAIL PROTECTED]> for giving me this useful URL:

http://www.bynari.net/Resellers/docs/bynari_ad_integration.txt

One of the distributed files is: saslauthd/LDAP_SASLAUTHD

I must admit, that I find the testing/verification side of authentication very
difficult to do if things go wrong, there is little information that is given to
help trace problems. There is also an assumption that you are intimate with the
workings of your authentication mechanism. But I like Cyrus, which is why I
will to document what I have done so that others can follow.


-- 
Alain Williams

#include 

FATHERS-4-JUSTICE - Campaigning for equal rights for parents and the
best interests of our children. See http://www.fathers-4-justice.org

RE: imap and ldap

[Igor Brezac]

On Thu, 11 Dec 2003, Geert Reijnders wrote:

> Oke I tried to reconfigure cyrus-sasl with the following options
> --with-ldap=/etc/ldap (because I had to give a directory)

It appears that saslauthd configure script cannot find openldap libs on
your system.  Check saslauthd/config.log and search for LDAP.

-Igor

>
> Everything was going fine, no errors during the installation but when I executed the 
> command saslauthd -v
> I get the same options.
>
>
> saslauthd 2.1.15
> authentication mechanisms: getpwent rimap shadow
>
> I don't get it. Is it the version I use because with ldap is experimental in this 
> version I read in the help.
>
> Greets
> Geert
>
>
>
> -Oorspronkelijk bericht-
> Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Namens Laurent Larquère
> Verzonden: donderdag 11 december 2003 15:31
> Aan: Geert Reijnders;[EMAIL PROTECTED]
> Onderwerp: Re: imap and ldap
>
>
> Hi
> you must have a "ldap capable" saslauthd
>
> # saslauthd -v
> saslauthd 2.1.17
> authentication mechanisms: getpwent pam rimap shadow ldap
>
> to obtain this, you have to configure  --with-ldap
>
>
> Geert Reijnders wrote:
>
> >Hi all
> >
> >Again I have a question. I want to setup a mail-server and the users
> >must be retrieved from the ldap-server. I have heard from several people and read 
> >in several guides that it is possible with saslauthd -a ldap and put the following 
> >option in the imapd.conf:
> >sasl_pwcheck_method: saslauthd
> >
> >But of course when I try to do that I get error messages. The first one
> >is when I execute the command saslauthd -a ldap:
> >
> >saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
> >
> >the solution is not by using pam because that is not an option in
> >saslauthd.
> >
> >The second one is when I try to open a mailbox in outlook express. Then
> >I get the messages that on line  (the line where sasl_pwcheck_method is 
> >located) that the command is unknown.
> >
> >What am I missing or doing wrong? I hope anyone could help me.
> >
> >Thanks in advance
> >
> >Geert Reijnders
> >
> >
> >
> >
> >
> >
> >
>
>

-- 
Igor

RE: imap and ldap

[Igor Brezac]

On Thu, 11 Dec 2003, Geert Reijnders wrote:

> Oke I tried to reconfigure cyrus-sasl with the following options
> --with-ldap=/etc/ldap (because I had to give a directory)

It appears that saslauthd configure script cannot find openldap libs on
your system.  Check saslauthd/config.log and search for LDAP.

-Igor

>
> Everything was going fine, no errors during the installation but when I executed the 
> command saslauthd -v
> I get the same options.
>
>
> saslauthd 2.1.15
> authentication mechanisms: getpwent rimap shadow
>
> I don't get it. Is it the version I use because with ldap is experimental in this 
> version I read in the help.
>
> Greets
> Geert
>
>
>
> -Oorspronkelijk bericht-
> Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Namens Laurent Larquère
> Verzonden: donderdag 11 december 2003 15:31
> Aan: Geert Reijnders;[EMAIL PROTECTED]
> Onderwerp: Re: imap and ldap
>
>
> Hi
> you must have a "ldap capable" saslauthd
>
> # saslauthd -v
> saslauthd 2.1.17
> authentication mechanisms: getpwent pam rimap shadow ldap
>
> to obtain this, you have to configure  --with-ldap
>
>
> Geert Reijnders wrote:
>
> >Hi all
> >
> >Again I have a question. I want to setup a mail-server and the users
> >must be retrieved from the ldap-server. I have heard from several people and read 
> >in several guides that it is possible with saslauthd -a ldap and put the following 
> >option in the imapd.conf:
> >sasl_pwcheck_method: saslauthd
> >
> >But of course when I try to do that I get error messages. The first one
> >is when I execute the command saslauthd -a ldap:
> >
> >saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
> >
> >the solution is not by using pam because that is not an option in
> >saslauthd.
> >
> >The second one is when I try to open a mailbox in outlook express. Then
> >I get the messages that on line  (the line where sasl_pwcheck_method is 
> >located) that the command is unknown.
> >
> >What am I missing or doing wrong? I hope anyone could help me.
> >
> >Thanks in advance
> >
> >Geert Reijnders
> >
> >
> >
> >
> >
> >
> >
>
>

-- 
Igor

Re: imap and ldap

[Etienne Goyer]

Hi,

Did you compiled your own cyrus-sasl or used a third-party package ?  If
you compiled, did you used the "--with-ldap" switch to configure ?  Do
you have OpenLDAP and assorted libs installed ?

On Thu, Dec 11, 2003 at 03:07:11PM +0100, Geert Reijnders wrote:
> Hi all
>  
> Again I have a question. I want to setup a mail-server and the users must be 
> retrieved from the ldap-server. I have heard from several people and read in several 
> guides that it is possible with saslauthd -a ldap and put the following option in 
> the imapd.conf:
> sasl_pwcheck_method: saslauthd
>  
> But of course when I try to do that I get error messages. The first one is when I 
> execute the command saslauthd -a ldap:
>  
> saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
>  
> the solution is not by using pam because that is not an option in saslauthd.
>  
> The second one is when I try to open a mailbox in outlook express. Then I get the 
> messages that on line  (the line where sasl_pwcheck_method is located) that the 
> command is unknown.
>  
> What am I missing or doing wrong? I hope anyone could help me.
>  
> Thanks in advance
>  
> Geert Reijnders
>  
> 
>  
>  
>  



-- 
Etienne GoyerLinux Québec Technologies Inc.
http://www.LinuxQuebec.com   [EMAIL PROTECTED]

RE: imap and ldap

[Geert Reijnders]

Oke I tried to reconfigure cyrus-sasl with the following options
--with-ldap=/etc/ldap (because I had to give a directory)

Everything was going fine, no errors during the installation but when I executed the 
command saslauthd -v
I get the same options.


saslauthd 2.1.15
authentication mechanisms: getpwent rimap shadow

I don't get it. Is it the version I use because with ldap is experimental in this 
version I read in the help.

Greets
Geert
 


-Oorspronkelijk bericht-
Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Namens Laurent Larquère
Verzonden: donderdag 11 december 2003 15:31
Aan: Geert Reijnders;[EMAIL PROTECTED]
Onderwerp: Re: imap and ldap


Hi
you must have a "ldap capable" saslauthd

# saslauthd -v
saslauthd 2.1.17
authentication mechanisms: getpwent pam rimap shadow ldap

to obtain this, you have to configure  --with-ldap


Geert Reijnders wrote:

>Hi all
> 
>Again I have a question. I want to setup a mail-server and the users 
>must be retrieved from the ldap-server. I have heard from several people and read in 
>several guides that it is possible with saslauthd -a ldap and put the following 
>option in the imapd.conf:
>sasl_pwcheck_method: saslauthd
> 
>But of course when I try to do that I get error messages. The first one 
>is when I execute the command saslauthd -a ldap:
> 
>saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
> 
>the solution is not by using pam because that is not an option in 
>saslauthd.
> 
>The second one is when I try to open a mailbox in outlook express. Then 
>I get the messages that on line  (the line where sasl_pwcheck_method is located) 
>that the command is unknown.
> 
>What am I missing or doing wrong? I hope anyone could help me.
> 
>Thanks in advance
> 
>Geert Reijnders
> 
>
> 
> 
> 
>  
>

<>

Re: imap and ldap

[Simon Matter]

> Hi all
>
> Again I have a question. I want to setup a mail-server and the users must
> be retrieved from the ldap-server. I have heard from several people and
> read in several guides that it is possible with saslauthd -a ldap and put
> the following option in the imapd.conf:
> sasl_pwcheck_method: saslauthd
>
> But of course when I try to do that I get error messages. The first one is
> when I execute the command saslauthd -a ldap:
>
> saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap

Did you compile your cyrus-sasl with ldap support? It looks like ldap
support is missing.

Simon

>
> the solution is not by using pam because that is not an option in
> saslauthd.
>
> The second one is when I try to open a mailbox in outlook express. Then I
> get the messages that on line  (the line where sasl_pwcheck_method is
> located) that the command is unknown.
>
> What am I missing or doing wrong? I hope anyone could help me.
>
> Thanks in advance
>
> Geert Reijnders
>
>
>
>
>
>

Re: imap and ldap

[Laurent Larquère]

Hi
you must have a "ldap capable" saslauthd
# saslauthd -v
saslauthd 2.1.17
authentication mechanisms: getpwent pam rimap shadow ldap
to obtain this, you have to configure  --with-ldap

Geert Reijnders wrote:

Hi all

Again I have a question. I want to setup a mail-server and the users must be retrieved 
from the ldap-server. I have heard from several people and read in several guides that 
it is possible with saslauthd -a ldap and put the following option in the imapd.conf:
sasl_pwcheck_method: saslauthd
But of course when I try to do that I get error messages. The first one is when I execute the command saslauthd -a ldap:

saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap

the solution is not by using pam because that is not an option in saslauthd.

The second one is when I try to open a mailbox in outlook express. Then I get the messages that on line  (the line where sasl_pwcheck_method is located) that the command is unknown.

What am I missing or doing wrong? I hope anyone could help me.

Thanks in advance

Geert Reijnders





 

imap and ldap

[Geert Reijnders]

Hi all
 
Again I have a question. I want to setup a mail-server and the users must be retrieved 
from the ldap-server. I have heard from several people and read in several guides that 
it is possible with saslauthd -a ldap and put the following option in the imapd.conf:
sasl_pwcheck_method: saslauthd
 
But of course when I try to do that I get error messages. The first one is when I 
execute the command saslauthd -a ldap:
 
saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
 
the solution is not by using pam because that is not an option in saslauthd.
 
The second one is when I try to open a mailbox in outlook express. Then I get the 
messages that on line  (the line where sasl_pwcheck_method is located) that the 
command is unknown.
 
What am I missing or doing wrong? I hope anyone could help me.
 
Thanks in advance
 
Geert Reijnders
 

 
 
 
<>

imap and ldap

[Geert Reijnders]

Hi all
 
Again I have a question. I want to setup a mail-server and the users must be retrieved 
from the ldap-server. I have heard from several people and read in several guides that 
it is possible with saslauthd -a ldap and put the following option in the imapd.conf:
sasl_pwcheck_method: saslauthd
 
But of course when I try to do that I get error messages. The first one is when I 
execute the command saslauthd -a ldap:
 
saslauthd[285] :set_auth_mech   : unknown authentication mechanism: ldap
 
the solution is not by using pam because that is not an option in saslauthd.
 
The second one is when I try to open a mailbox in outlook express. Then I get the 
messages that on line  (the line where sasl_pwcheck_method is located) that the 
command is unknown.
 
What am I missing or doing wrong? I hope anyone could help me.
 
Thanks in advance
 
Geert Reijnders
 

 
 
 
<>

Re: saslauthd, Realms, Cyrus-Imap and LDAP

[Edward Rudd]

Huh, this is odd. as in my tests and live usage of cyrus IMAPd
2.1.14/2.1.15. I am using realms with plain,crammd5, and digestmd5
authentication.. the user logs in as [EMAIL PROTECTED]and the
information gets passed to the ldap server perfectly find and split on
the '@'..  Though I am not using the saslauthd anymore, I am using the
ldapdb auxprop backend that is in the openldap 2.1.x contrib directory.

On Sun, 2003-09-28 at 21:01, Diego Rivera wrote:
> Hello all
> 
> I'm attempting a setup which allows me to have multiple completely
> separate mail domains in my server (separate IMAP boxes, separate
> delivery via Postfix, etc...).
> 
> I've run into one snag though - probably because I don't understand SASL
> as well as I'd like, but please gimme a hand here.
> 
> As it turns out, many different copies of imapd will be running - each
> with their own little (and different configuration).
> 
> I had it all working "fine" with one exception: PLAIN authentication
> doesn't support realms (this I found both in the docs and my testing).
> 
> SASLAUTHD DOES work with the LDAP tree I have, so I'm happy with that. 
> My issue becomes:  How do I tell each Cyrus-IMAP (and its accompanying
> Postfix) instance that ALL its users are in realm X, and that it should
> always FORCE the use of that realm for authentication against saslauthd?
> 
> Since ALL the users that hit a particular IMAP instance will be in the
> same realm (no cross-realm or anything like that), I don't see much of a
> problem with this kind of approach.
> 
> Would a patch for this be too difficult to hack together?  (for me to do
> I mean).
> 
> What other advice can you offer me?
> 
> Best wishes.
> 
> Diego
-- 
Edward Rudd <[EMAIL PROTECTED]>
Home Page 


signature.asc
Description: This is a digitally signed message part

saslauthd, Realms, Cyrus-Imap and LDAP

[Diego Rivera]

Hello all

I'm attempting a setup which allows me to have multiple completely
separate mail domains in my server (separate IMAP boxes, separate
delivery via Postfix, etc...).

I've run into one snag though - probably because I don't understand SASL
as well as I'd like, but please gimme a hand here.

As it turns out, many different copies of imapd will be running - each
with their own little (and different configuration).

I had it all working "fine" with one exception: PLAIN authentication
doesn't support realms (this I found both in the docs and my testing).

SASLAUTHD DOES work with the LDAP tree I have, so I'm happy with that. 
My issue becomes:  How do I tell each Cyrus-IMAP (and its accompanying
Postfix) instance that ALL its users are in realm X, and that it should
always FORCE the use of that realm for authentication against saslauthd?

Since ALL the users that hit a particular IMAP instance will be in the
same realm (no cross-realm or anything like that), I don't see much of a
problem with this kind of approach.

Would a patch for this be too difficult to hack together?  (for me to do
I mean).

What other advice can you offer me?

Best wishes.

Diego

-- 
===
* Diego Rivera*
* *
* "The Disease: Windows, the cure: Linux" *
* *
* E-mail: lriveraracsacocr  *
* Replace: ='@', ='.'*
* *
* GPG: BE59 5469 C696 C80D FF5C  5926 0B36 F8FF DA98 62AD *
* GPG Public Key avaliable at: http://pgp.mit.edu *
===


signature.asc
Description: This is a digitally signed message part

Re: Cyrus IMAP and LDAP

[Igor Brezac]

On Fri, 18 Jul 2003, Ana Ribas/Upcnet wrote:

> Hi list,
>
> Finally, saslauthd works fine with ldap authentication against my Lotus
> Domino eDirectory.
> My Cyrus IMAP server and my LDAP server aren't in the same machine.
> Now, I don't know how to relate the user, that is in the ldap server, with
> a mailbox that I've created for him with cyradm in the IMAP server.
>
> Can anyone tell me what I must to do now?
>
> My configuration:
>
> saslauthd.conf:
>   ldap_servers: ldap://albinoni.upc.es/
>   ldap_port: 389
>   ldap_uidattr: uid

This option does not exist.

>
> > saslauthd -a ldap
> > > testsaslauthd -u juanito -p juanito
> 0: OK "Success."
>
> imapd.conf:
>   configdirectory: /var/imap
>   defaultpartition: default
>   partition-default: /var/spool/imap
>   admins: cyrus
>   sendmail: /usr/lib/sendmail
>   sasl_pwcheck_method: saslauthd
>   postmaster: cyrus
>   allowanonymouslogin: no
>   allowplaintext: yes
>   servername: delius.upc.es
>   autocreatequota: 10240
>   reject8bit: no
>   quotawarn: 90
>   timeout: 30
>   poptimeout: 10
>   altnamespace: yes
>   lmtp_overquota_perm_failure: yes
>   duplicatesuppression: yes
>   hashimapspool: true
>   unixhierarchysep: no
>   maxmessagesize: 5012
>
> > ./cyradm delius.upc.es --auth plain
> Password:
> IMAP Password:
>
> delius.upc.es> lm
> user.juanito (\HasNoChildren)
>

You connected as 'cyrus' (admin)...

If you want to test 'juanito' try
cyradm --user juanito --auth login 

or use your favorite imap client.

-- 
Igor

Cyrus IMAP and LDAP

[Ana Ribas/Upcnet]

Hi list,

Finally, saslauthd works fine with ldap authentication against my Lotus
Domino eDirectory.
My Cyrus IMAP server and my LDAP server aren't in the same machine.
Now, I don't know how to relate the user, that is in the ldap server, with
a mailbox that I've created for him with cyradm in the IMAP server.

Can anyone tell me what I must to do now?

My configuration:

saslauthd.conf:
  ldap_servers: ldap://albinoni.upc.es/
  ldap_port: 389
  ldap_uidattr: uid

> saslauthd -a ldap
> > testsaslauthd -u juanito -p juanito
0: OK "Success."

imapd.conf:
  configdirectory: /var/imap
  defaultpartition: default
  partition-default: /var/spool/imap
  admins: cyrus
  sendmail: /usr/lib/sendmail
  sasl_pwcheck_method: saslauthd
  postmaster: cyrus
  allowanonymouslogin: no
  allowplaintext: yes
  servername: delius.upc.es
  autocreatequota: 10240
  reject8bit: no
  quotawarn: 90
  timeout: 30
  poptimeout: 10
  altnamespace: yes
  lmtp_overquota_perm_failure: yes
  duplicatesuppression: yes
  hashimapspool: true
  unixhierarchysep: no
  maxmessagesize: 5012

> ./cyradm delius.upc.es --auth plain
Password:
IMAP Password:

delius.upc.es> lm
user.juanito (\HasNoChildren)

Thanks.

- ANNA -