From: Anton Gorlov <Pnz.Stalker@mail.ru>
To: community@altlinux.ru
Subject: Re: [Comm] OpenLDAP - возможно баг?
Date: Thu, 7 Jul 2005 10:50:38 +0400
Message-ID: <484674078.20050707105038@mail.ru> (raw)
In-Reply-To: <200507070927.36585.mav@elserv.msk.su>
Здравствуйте, Alex.
Вы писали 7 июля 2005 г., 9:27:35:
> Дано:
> [mav@tmpsrv mav]$ cat /etc/altlinux-release
> ALT Linux Master 2.4 (Citron)
> [mav@tmpsrv mav]$ rpm -qa | grep openldap
> openldap-doc-2.1.30-alt3
> openldap-2.1.30-alt3
> openldap-clients-2.1.30-alt3
> openldap-servers-2.1.30-alt3
Установлено:
[root@fs root]# rpm -qa |grep ^openldap
openldap-clients-2.1.30-alt3
openldap-servers-2.1.30-alt3
openldap-2.1.30-alt3
> В LDAP лежат учетные записи пользователей. Настроен nss, samba, postfix.
> Понадобилось прикрутить cyrus-imapd. Попытался сделать авторизацию через LDAP
(imapd ->> saslauthd -> ldap). И наткнулся на интересную вещь - saslauthd не
> может авторизоваться в LDAP.
Работает. свой домен заменил на work. А так- полностью рабочие
конфиги.. В планах сделать тут ещё виртуальный домен..но пока не понял
как это сделать... (пользователи vasya@work и vasya@home не должны
пересекаться)
[root@rcc root]# rpm -qa |grep ^cyrus
cyrus-imapd-doc-2.2.12-alt0.M24.1
cyrus-sasl2-2.1.19-alt1
cyrus-imapd-2.2.10-alt1
cyrus-imapd-utils-2.2.12-alt0.M24.1
конфиг cyrus-sasl:
[root@rcc sasl2]# egrep -v "^#|^;|^$|^ *$" <saslauthd.conf
ldap_servers: ldaps://fs.local/
ldap_bind_dn: cn=admin,dc=work
ldap_bind_pw: *******!***
ldap_version: 3
ldap_timeout: 5
ldap_time_limit: 5
ldap_scope: one
ldap_search_base: ou=Users,dc=work
ldap_auth_method: bind
ldap_filter: (&(uid=%u)(mailStatus=enable))
[root@rcc etc]# egrep -v "^#|^;|^$|^ *$" < imapd.conf
admins: gorlov
allowapop: 1
allowplaintext: 1
annotation_db: skiplist
configdirectory: /var/lib/imap
defaultacl: gorlov lrsd
defaultdomain: work
duplicate_db: berkeley-nosync
duplicatesuppression: 0
hashimapspool: 1
idlesocket: /var/lib/imap/socket/idle
imapidresponse: 0
lmtp_downcase_rcpt: 1
mboxlist_db: skiplist
partition-default: /var/spool/imap
poptimeout: 5
reject8bit: 0
sasl_pwcheck_method: saslauthd
seenstate_db: skiplist
sendmail: /usr/sbin/sendmail
servername: work
sievedir: /var/lib/imap/sieve
subscription_db: flat
username_tolower: 1
[root@rcc etc]#
--
С уважением,
Anton mailto:Pnz.Stalker@mail.ru
FIDO: 2:5059/37
next prev parent reply other threads:[~2005-07-07 6:50 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-07-07 5:27 Alex Moskalenko
2005-07-07 6:29 ` Eugene Ostapets
2005-07-07 2:46 ` Alex Moskalenko
2005-07-07 6:55 ` Eugene Ostapets
2005-07-07 7:46 ` Alex Moskalenko
2005-07-07 6:37 ` Re[2]: " Anton Gorlov
2005-07-07 6:51 ` Eugene Ostapets
2005-07-07 6:50 ` Anton Gorlov [this message]
2005-07-07 7:52 ` Alex Moskalenko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=484674078.20050707105038@mail.ru \
--to=pnz.stalker@mail.ru \
--cc=community@altlinux.ru \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Community general discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
public-inbox-index community
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.community
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git