Hi, I have two IMAP/LMTP Dovecot server in replica (version 2.3.4.1), I use LDAP/AD for /userdb, /replica is working. When I do a search like: /doveadm replicator status '*'/ I receive user duplicated, with and without the domain part, for example: /test/ /test at domain.com/ but they are the same user; this lead the replicator doing twice the work of replication. I think this is related to //etc/dovecot/dovecot-ldap.conf/ that is configured in this way: /hosts = xxx/ /base = dc=xxx,dc=xxx ldap_version=3 auth_bind = yes dn = cn=xxx,cn=Users,dc=xxx,dc=xxx dnpass = xxx scope = subtree user_attrs = sAMAccountName=home=/mnt/mail-storage-lv0007/%$,=uid=501,=gid=501 pass_attrs = sAMAccountName=user user_filter = (&(objectclass=person)(samaccountname=%n)) pass_filter= (&(objectclass=person)(samaccountname=%n)) iterate_attrs = sAMAccountName=user # With following filter we exclude all objects without an email address, all computers and all inactive accounts / /iterate_filter = (&(objectCategory=person)(mail=*)(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))) / I think that *iterate_attrs* and *iterate_filter* should be fixed, but I don't know how/./ Please could someone give me any hints? Thanks/ / Regards/ / -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20211202/ce853521/attachment-0001.htm> -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 3517 bytes Desc: S/MIME Cryptographic Signature URL: <https://dovecot.org/pipermail/dovecot/attachments/20211202/ce853521/attachment-0001.bin>
Anybody can help here? Thanks On 02/12/21 17:54, Claudio Corvino wrote:> > Hi, > > I have two IMAP/LMTP Dovecot server in replica (version 2.3.4.1), I > use LDAP/AD for /userdb, /replica is working. > > When I do a search like: > > /doveadm replicator status '*'/ > > I receive user duplicated, with and without the domain part, for example: > > /test/ > > /test at domain.com/ > > but they are the same user; this lead the replicator doing twice the > work of replication. > > I think this is related to //etc/dovecot/dovecot-ldap.conf/ that is > configured in this way: > > /hosts = xxx/ > > /base = dc=xxx,dc=xxx > ldap_version=3 > auth_bind = yes > dn = cn=xxx,cn=Users,dc=xxx,dc=xxx > dnpass = xxx > scope = subtree > user_attrs = > sAMAccountName=home=/mnt/mail-storage-lv0007/%$,=uid=501,=gid=501 > pass_attrs = sAMAccountName=user > user_filter = (&(objectclass=person)(samaccountname=%n)) > pass_filter= (&(objectclass=person)(samaccountname=%n)) > iterate_attrs = sAMAccountName=user > # With following filter we exclude all objects without an email > address, all computers and all inactive accounts > / > > /iterate_filter = > (&(objectCategory=person)(mail=*)(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))) > / > > > I think that *iterate_attrs* and *iterate_filter* should be fixed, but > I don't know how/./ > > Please could someone give me any hints? > > Thanks/ > / > > Regards/ > / >-------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20211203/428e8ba5/attachment.htm> -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 3517 bytes Desc: S/MIME Cryptographic Signature URL: <https://dovecot.org/pipermail/dovecot/attachments/20211203/428e8ba5/attachment.bin>
Hello Am 02.12.21 um 17:54 schrieb Claudio Corvino:> Hi, > > I have two IMAP/LMTP Dovecot server in replica (version 2.3.4.1), I use > LDAP/AD for /userdb, /replica is working. > > When I do a search like: > > /doveadm replicator status '*'/ > > I receive user duplicated, with and without the domain part, for example: > > /test/ > /test at domain.com/ > > but they are the same user; this lead the replicator doing twice the > work of replication. > > I think this is related to //etc/dovecot/dovecot-ldap.conf/ that is > configured in this way: > > /hosts = xxx/ > > /base = dc=xxx,dc=xxx > ldap_version=3 > auth_bind = yes > dn = cn=xxx,cn=Users,dc=xxx,dc=xxx > dnpass = xxx > scope = subtree > user_attrs > sAMAccountName=home=/mnt/mail-storage-lv0007/%$,=uid=501,=gid=501[...] This is for sure wrong. Try: user_attrs sAMAccountName=user,=home=/mnt/mail-storage-lv0007/%$,=uid=501,=gid=501 Kind regards, Christian Mack -- Christian Mack Universit?t Konstanz Kommunikations-, Informations-, Medienzentrum (KIM) Abteilung IT-Dienste Forschung und Lehre 78457 Konstanz +49 7531 88-4416 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5351 bytes Desc: S/MIME Cryptographic Signature URL: <https://dovecot.org/pipermail/dovecot/attachments/20211206/79649027/attachment.bin>