search for: binduser

...e Dovecot, but need clarification. I want to make sure my dovecot-ldap.conf is properly configured and need another set of eyes to look at it (of course dovecot.conf should also be correct, but one thing at a time). Here's my dovecot-ldap.conf file: hosts = 192.168.0.240 #uris = dn = cn=<BINDUSER>,ou=IT,ou=Central Office,dc=<DOMAIN>,dc=local dnpass = <>PASSWORD #sasl_bind = no #sasl_mech = #sasl_realm = #sasl_authz_id = auth_bind = yes #auth_bind_userdn = ldap_version = 3 base = dc=<DOMAIN>, dc=local deref = never scope = subtree #user_filter = (&(objectClass=posixA...

...tocol imap { imap_client_workarounds = delay-newmail } protocol pop3 { pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_uidl_format = %08Xu%08Xv } **************************************************** ************** cat dovecot-ldap.conf.ext ************** hosts = dcserver:389 dn = cn=binduser,cn=Users,dc=edicom,dc=es dnpass = bindpassword tls = no debug_level = -1 auth_bind = yes ldap_version = 3 base = CN=Users,DC=domain,DC=com deref = never scope = subtree user_filter = (&(memberOf=CN=correo,OU=Alfresco,DC=edicom,DC=es)(sAMAccountName=%u)) pass_attrs = userPassword=password,=proxy...

...ey.pem files) Protocol: 3 Server Timeout: 25 Search Scope: Entire Subtree Base DN: DC=internal,DC=external,DC=com Auth. Container: CN=Users,DC-internal,DC=external,DC=com Enable Extended Query: Query: memberof=CN=Domain Users,CN=Users,DC-internal,DC=external,DC=com Bind credentials: user: CN=binduser,CN=Users,DC-internal,DC=external,DC=com passwd: apassword User naming attribute: samAccountName Group naming attribute: cn Group member attribute: memberof This seems like it should be straight forward. What am I missing? Thanks -- Marco

...at mako-nsd4 samba]# net ads info LDAP server: 10.1.134.140 LDAP server name: DC-1.ds.myedu.edu Realm: DS.MYEDU.EDU Bind Path: dc=DS,dc=MYEDU,dc=EDU LDAP port: 389 Server time: Sat, 14 May 2016 08:40:08 PDT KDC server: 10.1.134.140 Server time offset: 1 [root at mako-nsd4 samba]# net ads status -U binduser Enter binduser's password: objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user objectClass: computer cn: mako-smb distinguishedName: CN=mako-smb,OU=DORS,OU=Organizational Units,DC=ds,DC=myedu,DC=edu instanceType: 4 whenCreated: 20140301124836.0Z whenChanged:...

...pop3-login: Disconnected (auth failed, 1 attempts in 6 secs): user=<muyuan>, method=PLAIN, rip=192.168.100.99, lip=10.10.120.20, TLS: Disconnected, session=<2T761RPnXADAqGRj> But when I use ldapsearch, it seems also ok I use this from dovecot host ldapsearch -D "cn=dovecot,ou=bindusers,dc=smuy,dc=net" -W -H ldap://ldap.sv. hm -b "ou=accounts,dc=smuy,dc=net" ?CZZ it works ok So I have no idea where to check? Or how can I got more detailed log from dovecot for that connection Sep 24 05:38:03 mail dovecot: auth: Error: LDAP: ldap_start_tls_s() failed: Conne...

...Port 636 ... while using the imported CA there. > > This as a start, feel free to ask more, I have at least 3 such > installations working. Thanks. Some progress. I changed the Transport to SSL-encrypted via 636 and created a a separate bind user. The bind user is entered as "CN=binduser,CN=users,DC=internal,DC=company,DC=com. The server checks out. However, when I run Diagnostics->Authentication although the user is checks out as authenticated, the groups the user belongs to are not listed. Must be still missing something. Marco.

hello, I have install samba4 on debian whezzy 64-bit All is working OK, but now I try to add qoutas to users and this tutorial did not working https://wiki.samba.org/index.php/Samba4/Winbind when i write getent passwd i did't see users from AD so e.g. # id Administrator id Administrator: There is no such user Pozdrowienia ------------------------------------------ dafr32 dafr32 at

...Timeout: 25 > Search Scope: Entire Subtree > Base DN: DC=internal,DC=external,DC=com > Auth. Container: CN=Users,DC-internal,DC=external,DC=com > Enable Extended Query: > ? Query: memberof=CN=Domain Users,CN=Users,DC-internal,DC=external,DC=com > Bind credentials: > ? user: CN=binduser,CN=Users,DC-internal,DC=external,DC=com > ? passwd: apassword > User naming attribute: samAccountName > Group naming attribute: cn > Group member attribute: memberof > > This seems like it should be straight forward.? What am I missing? > > Thanks Not entirely sure, but ...

...ported CA there. >> >> This as a start, feel free to ask more, I have at least 3 such >> installations working. > > Thanks. Some progress. I changed the Transport to SSL-encrypted > via 636 and created a a separate bind user. The bind user is > entered as "CN=binduser,CN=users,DC=internal,DC=company,DC=com. > > The server checks out. However, when I run Diagnostics->Authentication > although the user is checks out as authenticated, the groups the > user belongs to are not listed. > > Must be still missing something. UGH. It was working &...

...; >>> This as a start, feel free to ask more, I have at least 3 such >>> installations working. >> >> Thanks. Some progress. I changed the Transport to SSL-encrypted >> via 636 and created a a separate bind user. The bind user is >> entered as "CN=binduser,CN=users,DC=internal,DC=company,DC=com. >> >> The server checks out. However, when I run >> Diagnostics->Authentication >> although the user is checks out as authenticated, the groups the >> user belongs to are not listed. >> >> Must be still missing...

...r my Active Directory but iterations by doveadm -A runs in timeout. I tried now for three days and get it not to work. Best regards Holger /etc/dovecot/dovecot-ldap-userdb.conf is symlink to /etc/doveconf/doveconf-ldap.conf debug_level = 0 uris = ldaps://server1.office.hb-os.de:636 dn = cn=BINDUSER,cn=Users,dc=SUBDOM,dc=DOM,dc=de dnpass = MYPASSWORD auth_bind = yes ldap_version = 3 deref = never base = cn=Users,dc=SUBDOM,dc=DOM,dc=de scope = subtree user_attrs = =home=/usr/data/vmail/%d/%n, =mail=maildir:/usr/data/vmail/%d/%n/Maildir user_filter = (&(objectClass=person)(mail=%u)) pass_fi...

...AP</font><br> <font face="Tahoma">hosts = servidor2k3</font><br> <font face="Tahoma">scope = subtree</font><br> <font face="Tahoma">ldap_version = 3</font><br> <font face="Tahoma">dn = cn=binduser,ou=domain,dc=br</font><br> <font face="Tahoma">dnpass = bindpass</font><br> <font face="Tahoma">auth_bind = yes</font><br> <font face="Tahoma">deref = never</font><br> <font face="Tahoma"&gt...

...puting Group, Simon Fraser University [0] http://www.spinics.net/lists/linux-nfs/msg27440.html [1] Preamble to mounting. Again, the same problem happens with or without Kerberos. # net ads join createupn="nfs/nfsserver.example.com at AD.EXAMPLE.COM" createcomputer="OU" -U $BINDUSER%$BINDPASSWD # kinit -k NFSSERVER$ (and NFSCLIENT$, but we're going to mount -o sec=none as mentioned above) # net ads keytab add nfs # klist -ke Keytab name: WRFILE:/etc/krb5.keytab KVNO Principal ---- -------------------------------------------------------------------------- 3 host/nfsserv...

A little off topic, but this does revolve around Samaba. I'm hoping someone can help me get to a working aolution. I haven't been able to find a clear quide, but it must have been done by others. I'm trying to use setup a VPN using OpenVPN on Pfsense with authentication via my Samba AD (Version 4.9.4-Debian) I keep getting a "Could not connect to LDAP server" error when