RE: [tpop3d-discuss] ldap auth problems

[Thai Q. Tran]

Since you plan to login via uid only, I would suggest you to search for
that attribute.  Here is an example of how you can do your conf file:

listen-address: 0.0.0.0()
mailbox: maildir:/home/Domain/$(user)/
append-domain: yes
auth-ldap-enable: yes

# The ldap url specified above is very specific, if you support 
# multiple domains you will have to be more general.
auth-ldap-url: ldap://localhost/ou=users,dc=domain,dc=com

auth-ldap-searchdn:
auth-ldap-password:
auth-ldap-scope: base

# The ldap filter below will tell it to search for your uid
# objectclass is optional, if you need more search for info about ldap
urls
auth-ldap-filter: (&(uid=$(local_part))(objectClass=mailUser))
# LDAP filter without object class
# auth-ldap-filter: (uid=$(local_part))


# I believe in your case the users home directory is where their mail is
# stored, if not correct it as needed.
auth-ldap-mailbox-attr: homeDirectory

# Exim stores the mail messages in the specified directory using a
certain
# user and group, specifiy the correct info.
auth-ldap-mail-user: nobody
auth-ldap-mail-group: nobody

Hope this helps...  The tpop3d site also has some helpful documentation,
if this helps please let me know.  If not sorry for leading you the
wrong direction.

Thanks,
Thai

-----Original Message-----
From: address@hidden
[mailto:address@hidden On Behalf Of jh
Sent: Sunday, April 27, 2003 1:39 AM
To: address@hidden
Subject: [tpop3d-discuss] ldap auth problems

Hello all.
 
 
>> How do your users log in will depend on how you search.  Can you
>> give me an example of how the users log in?
Login  process
 
I'm trying to get users authenticated with only (uid=username)
nothing else, regardless anything else, not for examble address@hidden
Only (uid=*)  is given when users login into mailserver.
 
Ldap is working because i authenticate exim users with ldap and
it works. 
 
 
>> Can you manually do a search with this?
 
Ok, here is my ldapsearch result, manual search works fine.
 
 
ldapsearch -b ou=users,dc=domain,dc=com "(uid=john)"
 
search works with this too, of course.
 
ldapsearch -b dc=domain,dc=com "(uid=john)"
 
 
search result.

# extended LDIF
#
# LDAPv3
# base <ou=users,dc=domain,dc=com> with scope sub
# filter: (uid=john)
# requesting: ALL
#
 
# john, users, domain.com
dn: uid=john,ou=users,dc=domain,dc=com
uid: john
cn: john
objectClass: InetOrgPerson
objectClass: posixAccount
objectClass: top
loginShell: /bin/false
uidNumber: 502
gidNumber: 502
homeDirectory: /home/Domain/John
sn: Doe
mail: address@hidden
userPassword:: 12345
 
# search result
search: 2
result: 0 Success
 
# numResponses: 2
# numEntries: 1
~