search for: dnpass

...orks. The file is read immediately whenever parsing the configuration file, so if it changes afterwards it requires a configuration reload to see the changes. This functionality is especially useful for reading SSL certificates and keys. So i thought it's a good idea, to write the password for dnpass for my ldap in this notation in my config dnpass = <private/dnpass /etc/dovecot/private/dnpass contains only this myVerYSecretLdApPAssworD no space, no newline. But dovecot cannot authenticate on the ldap-host. I also tried dnpass = </private/dnpass dnpass = </etc/dovecot/private/dnpas...

...=56395 > Nov 19 09:22:23 auth: Debug: client passdb out: CONT 1 > Nov 19 09:22:23 auth: Debug: client in: CONT 1 (previous base64 data may contain sensitive data) > Nov 19 09:22:29 auth: Debug: client passdb out: FAIL 1 user=aaron.jenkins temp Your conf: auth_bind = yes dn = aaron.jenkins dnpass = dummypass1 auth_bind_userdn = CN=%u,CN=users,DC=ad,DC=automaton,DC=uk Can you really succeed a simple auth with the dn aaron.jenkins ? This ought to be a full DN. As I understand auth_bind_userdn, you do not need dn/dnpass anyway, because auth_bind_userdn prevents searching for the user's DN...

...2 userdb like this: userdb { driver = ldap args = /etc/dovecot/dovecot-ldap-maildir.conf.ext } userdb { driver = ldap args = /etc/dovecot/dovecot-ldap-dbox.conf.ext } and then defined these 2 args files: maildir: hosts = localhost dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local dnpass = <password> auth_bind = yes ldap_version = 3 base = DC=plutone,DC=local user_attrs = sAMAccountName=home=/var/vmail/%$ dbox: hosts = localhost dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local dnpass = <password> auth_bind = yes ldap_version = 3 base = OU=dboxusers,OU=lowpriori...

I'm having a great deal of difficulty with integrating dovecot 2.0.9 with a new installation of samba4 4.1.11 and would appreciate anyones help who has this working. *Problem 1:* if dn= cn=Administrator,dc=ourhome,dc=net with dnpass = ***** ---------------I get NT_STATUS_LOGON_FAILURE but dn = "Administrator at ourhome.net" with dnpass = **** works I guess I shouldn't complain but why doesn't the first one work? *Problem 2:* can't seem to get a working set of usr_attrs/user_filter,pass_attrs/pass_filter...

...;authentication binds" so you don't have to bind as a user with read privileges to everyone's userPassword attribute? For security purposes I'd like to see this functionality. And my next concern would become a non-issue if the above was supported, but is there a way to set the dnpass equal to a SSHA password? When I try setting it like this: dnpass = {SSHA}VhxqnmwCLVQj7g3rQV+g9F3XnaJ6bRXR in dovecot-ldap.conf It still tries to do a simple bind and fails. I get this error: dovecot-auth: LDAP: ldap_simple_bind_s() failed \ (dn cn=authadmin,ou=people,dc=domain,dc=com): Inva...

...GE----- Hash: SHA1 On Wed, 26 Nov 2014, Aaron Jenkins wrote: > I?ve attempted the user Mail with the same password with the same result (binding as my own user was a last-ditch attempt). OK, what about the: > As I understand auth_bind_userdn, you do not need > dn/dnpass anyway, because auth_bind_userdn prevents searching for the > user's DN Did you removed the dn/dnpass settings? What about the: > I wonder if the log shows the error from this setting or from the user's > login attempt. Could you try another user? If you login with another user...

...how Dovecot does not work as it should. I've been going back and forth, trying everything I could think of, but still can't get it to work. Here's the excerpt from the config file: hosts = 10.10.10.210 uris = ldap://10.10.10.210:389 dn = cn=Administrator,cn=Users,dc=srv,dc=SLD,dc=net dnpass = PASSWORD tls = no debug_level = -1 auth_bind = yes ldap_version = 3 base = DC=srv,dc=SLD,dc=net deref = never scope = subtree user_attrs =? sAMAccountName=user user_filter = (&(sAMAccountName=%n)(objectclass=person)) pass_attrs = sAMAccountName=user pass_filter = (&(sAMAccountName=%n)(obj...

I?ve removed the dn / dnpass. When attempting with new user: $ cat /var/log/dovecot-info.log Nov 27 00:09:29 imap-login: Info: Internal login failure (pid=5553 id=1) (internal failure, 1 successful auths): user=<test.user>, method=PLAIN, rip=10.211.55.29, lip=10.211.55.33, mpid=5558, TLS, session=<rQXRqdIIZwAK0zcd&g...

...> >> userdb { >> driver = ldap >> args = /etc/dovecot/dovecot-ldap-dbox.conf.ext >> } >> >> and then defined these 2 args files: >> maildir: >> >> hosts = localhost >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >> dnpass = <password> >> auth_bind = yes >> ldap_version = 3 >> base = DC=plutone,DC=local >> user_attrs = sAMAccountName=home=/var/vmail/%$ >> >> dbox: >> >> hosts = localhost >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >> dnp...

...ml We are using an LDAP backend for userdb and passdb lookups and this is causing multiple replication users to be created. Here is the broken setup: ############################################### userdb ############################################### hosts = localhost dn = cn=dovecot,dc... dnpass = PASSWORD ldap_version = 3 base = ou=instances,dc... deref = never scope = subtree user_attrs = \ =home=/mail/spool/hash-%0.2M{ldap:uid}/%{ldap:uid}, \ =mail=maildir:/mail/spool/hash-%0.2M{ldap:uid}/%{ldap:maildrop} user_filter = (&(objectClass=mailUser)(uid=%n)) iterate_attrs = uid=user i...

I updated dovecot-ldap.conf.ext so that it now reads as below: #Custom Settings hosts = 192.168.153.143 dn = user at domain.com dnpass = password auth_bind = yes auth_bind_userdn = %u at domain.com ldap_version = 3 base = dc=rpservices,dc=com #user_filter = (&(objectclass=person)(mail=%u)) user_filter = (&(objectclass=person)(uid=%u)) pass_filter = (&(objectclass=person)(uid=%u)) user_attrs = homeDirectory=/home/vmail/...

...ny* people are running that combination) It worked without issues, we are using in dovecot-ldap.conf.ext: > auth_bind = yes this user/passwd filter: > = (&(objectclass=person)(sAMAccountName=%n)(!(userAccountControl=514))) > dn = cn=search_dovecit,cn=users,dc=company,dc=com > dnpass = top_secret And not the 3268 port, but regular 389. Hope that helps. MJ On 12/04/2017 01:38 AM, Mark Foley wrote: > Unfortunately, I tried for weeks to figure out passdb ldap without success. I guess I'm just > not knowledgeable enough about how to use ldap and Active Directory. Th...

...: >> >> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> On Wed, 2 Nov 2016, Peter Fraser wrote: >>> >>> #Custom Settings >>> >>>> hosts = 192.168.153.143 >>>> dn = user at domain.com >>>> dnpass = password >>>> auth_bind = yes >>>> auth_bind_userdn = %u at domain.com >>>> ldap_version = 3 >>>> base = dc=rpservices,dc=com >>>> #user_filter = (&(objectclass=person)(mail=%u)) >>>> user_filter = (&(objectclass=pers...

...= </usr/local/etc/certs/certs/dovecot.pem ssl_key = </usr/local/etc/certs/private/dovecot.pem userdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } protocol lda { mail_plugins = } #Contents of dovecot-ldap.conf.ext hosts = 192.168.153.143 dn = user at domain.com dnpass = password auth_bind = yes auth_bind_userdn = domain\%u ldap_version = 3 base = dc=domain,dc=com pass_filter = (&(objectclass=person)(uid=%u)) user_attrs = homeDirectory=/home/vmail/%u,uid=1002,gid=1002 Amy help would be appreciated.

...host:port is allowed too. hosts =127.0.0.1:389 # LDAP URIs to use. You can use this instead of hosts list. Note that this # setting isn't supported by all LDAP libraries. #uris = # Distinguished Name - the username used to login to the LDAP server #dn = dn=cn=Manager,dc=cttechhosting,dc=net dnpass=secret # Password for LDAP server #dnpass = # Use SASL binding instead of the simple binding. Note that this changes # ldap_version automatically to be 3 if it's lower. Also note that SASL binds # and auth_bind=yes don't work together. #sasl_bind = no # SASL mechanism name to use. #sasl_...

...s=posixAccount)(uid=%u)(objectClass=myclass)(AllowUser=TRUE))/ This is my dovecot/ldap configuration below : /*# dovecot.conf* / /passdb {// // driver = ldap// // args = /etc/dovecot/dovecot-ldap.conf// //}/ *# dovecot-ldap.conf* /hosts = myurl:myport// //dn = cn=myuser,dc=mydomain,dc=com// //dnpass = ********// //a//uth_bind = yes// //auth_bind_userdn = uid=%u,ou=users,dc=mydomain,dc=com// //ldap_version = 3// //base = ou=Users,dc=mydomain,dc=com// //scope = base// //default_pass_scheme = SSHA512 / Do you have an idead ? Kind regards. -- Michael

...ore informations about the system: >> >> *Dovecot version 2.1.7* >> >> Output of grep -v '^ *\(#.*\)\?$' dovecot-sql.conf: >> > ^^^^^^^^^^^^^^^^ > >> >> *hosts = localhost* >> *dn = cn=admin* >> *dnpass = [password]* >> *sasl_bind = no* >> *tls = no* >> *auth_bind = yes* >> *ldap_version = 3* >> *base = dc=[domainname],dc=de* >> *user_attrs = uidNumber=uid,gidNumber=gid* >> *user_filter = (&(objectClass=posixAccount)(uid=%u))* >> *pass_attrs = ui...

...u, Nov 3, 2016 at 2:36 AM, Steffen Kaiser < skdovecot at smail.inf.fh-brs.de> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Wed, 2 Nov 2016, Peter Fraser wrote: > > #Custom Settings >> hosts = 192.168.153.143 >> dn = user at domain.com >> dnpass = password >> auth_bind = yes >> auth_bind_userdn = %u at domain.com >> ldap_version = 3 >> base = dc=rpservices,dc=com >> #user_filter = (&(objectclass=person)(mail=%u)) >> user_filter = (&(objectclass=person)(uid=%u)) >> pass_filter = (&(objec...

...ot-ldap.conf is properly configured and need another set of eyes to look at it (of course dovecot.conf should also be correct, but one thing at a time). Here's my dovecot-ldap.conf file: hosts = 192.168.0.240 #uris = dn = cn=<BINDUSER>,ou=IT,ou=Central Office,dc=<DOMAIN>,dc=local dnpass = <>PASSWORD #sasl_bind = no #sasl_mech = #sasl_realm = #sasl_authz_id = auth_bind = yes #auth_bind_userdn = ldap_version = 3 base = dc=<DOMAIN>, dc=local deref = never scope = subtree #user_filter = (&(objectClass=posixAccount)(uid=%u)) #pass_attrs = uid=user,userPassword=password...

...ay, here are a few more informations about the system: >>>> >>>> *Dovecot version 2.1.7* >>>> >>>> Output of grep -v '^ *\(#.*\)\?$' dovecot-ldap.conf.ext: >>>> *hosts = localhost* >>>> *dn = cn=admin* >>>> *dnpass = [password]* >>>> >>> > install the ldap-utils package - that one containing ldapsearch - and > execute: > > ldapsearch -W -D cn=admin -b 'dc=[domainname],dc=de' \ > '(&(objectClass=posixAccount)(uid=<<uid>>))' > > then ente...