dovecot - Jun 2012 - Dovecot not liking AD config from wiki??

Hi,

I'm trying to setup Dovecot with MS AD and am using this as my guide:

http://wiki2.dovecot.org/HowTo/ActiveDirectoryNtlm


I can definitely access information on the AD server using wbinfo -g
and wbinfo -u.....



Currently my dovecot.conf file looks like this:


# v1.1:
#auth_ntlm_use_winbind = yes
# v1.2+:
auth_use_winbind = yes

auth_winbind_helper_path = /usr/local/bin/ntlm_auth

protocols = imap

# It's nice to have separate log files for Dovecot. You could do this
# by changing syslog configuration also, but this is easier.
log_path = /var/log/dovecot.log
info_log_path = /var/log/dovecot-info.log

# Disable SSL for now.
ssl = no
disable_plaintext_auth = no

# We're using Maildir format
#mail_location = maildir:~/Maildir
mail_location = mbox:/mail:INBOX=/mail/%u

# If you're using POP3, you'll need this:
#pop3_uidl_format = %g

# Authentication configuration:
auth_verbose = yes
auth_debug = yes
auth_username_format = %n
auth_mechanisms = plain ntlm login
userdb {
  driver = static
  args = uid=501 gid=501 home=/mail/%u
  driver = static
  allow_all_users=yes
}



According to the documentation I should be using:

userdb static {
...
}

which seems to be Dovecot v1. config, and additionally the
"allow_all_users=yes" statement when added seems again v1. config
since Dovecot 2. won't even start?


In the meantime when not using "allow_all_users" Dovecot throws up
these errors:

Jun 20 11:30:40 master: Warning: Killed with signal 15 (by pid=4149
uid=0 code=kill)
Jun 20 11:30:48 auth: Fatal: No passdbs specified in configuration
file. LOGIN mechanism needs one
Jun 20 11:30:48 master: Error: service(auth): command startup failed,
throttling for 2 secs
Jun 20 11:30:59 master: Warning: Killed with signal 15 (by pid=4182
uid=0 code=kill)
Jun 20 11:31:13 auth: Fatal: No passdbs specified in configuration
file. LOGIN mechanism needs one
Jun 20 11:31:13 master: Error: service(auth): command startup failed,
throttling for 2 secs
Jun 20 11:32:38 master: Warning: Killed with signal 15 (by pid=4245
uid=0 code=kill)
Jun 20 11:32:58 imap-login: Warning: Auth connection closed with 1
pending requests (max 0 secs, pid=4265, EOF)
Jun 20 11:32:58 auth: Fatal: master: service(auth): child 4266 killed
with signal 11 (core not dumped - set service auth {
drop_priv_before_exec=yes })

-- this was after adding:

passdb {
  driver = static
}


to the mix.


I'm using Dovecot 2.1.3 on FreeBSD 8.2 RELEASE x64.


Can anyone help me configuring Dovecot to authenticate?


Regards,


Kaya

I think the issue seems to be the mechanism between Dovecot and AD, so
basically PAM.....

I adapted my pam.d file to this:

# auth
auth            sufficient      pam_krb5.so             no_warn
try_first_pass debug
#auth           sufficient      pam_ssh.so              no_warn try_first_pass
auth            required        pam_unix.so             no_warn try_first_pass

# account
#account                required        pam_nologin.so
#account                required        pam_unix.so
account                 required        pam_krb5.so


in the hope that this config would work:

userdb {
 driver = static
 args = uid=501 gid=501 home=/mail/%u
 driver = static
#  args = uid=500 gid=500 home=/ZPOOL_1/%u
#  allow_all_users=yes
}

passdb {
 driver = pam
}


However I am still having issues :-(


Regards,


Kaya