'[Ispman-users] [wendel] saslauthd + ldap (without pam)'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ispman-users
Subject:    [Ispman-users] [wendel] saslauthd + ldap (without pam)
From:       wendelmaques <wendel () dotpix ! com ! br>
Date:       2005-04-17 23:00:24
Message-ID: B41D8FB3752DED4281FA4436 () [192 ! 168 ! 200 ! 201]
[Download RAW message or body]

How to auth cyrus without PAM:

Install saslauthd with LDAP support,
on FreeBSD use:

cd /usr/ports/security/cyrus-sasl2-saslauthd
make install WITH_OPENLDAP=yes WITH_BDB_VER=42 WITHOUT_GSSAPI=yes

create the file:
/usr/local/etc/saslauthd.conf (*BSD) or
/usr/etc/saslauthd.conf (Linux)
and add:
# >>> saslauthd.conf FILE CONTENT
ldap_servers: ldap://127.0.0.1/

ldap_bind_dn: uid=saslauthd,ou=admins,o=ispman
# you must create the user saslauthd above, you
# can do via ISPMan Web Interface in Configuration
# adding a new admin with level 1. Or you can
# use cyrus user (replace saslauthd by cyrus).

ldap_password: YOU_PASSWORD_HEREXXXXXXXXXXXXXX
# add above the password of user saslauthd or
# cyrus user.

ldap_filter: uid=%u
# saslauthd need above line to auth the user,
# you get a error if this line don't exists.

ldap_scope: sub
ldap_search_base: o=ispman
ldap_version: 3
# YOU MUST ADD ALL ABOVE LINES.
# <<< saslauthd.conf FILE CONTENT

in the file:
/usr/local/lib/sasl2/cyrus.conf (*BSD) or
/usr/lib/sasl2/cyrus.conf (Linux)
add:
# >>> cyrus.conf FILE CONTENT:
pwcheck_method: saslauthd
# <<< cyrus.conf FILE CONTENT:

Now, try to start/restart cyrus/saslauthd
ant test login via IMAP/POP3.

Debug notes:
If you want to debug the authentication
add you slapd.conf:

# >>> slapd.conf FILE CONTENT:
loglevel 256
# <<< slapd.conf FILE CONTENT:
and restart you openldap server,
the result is showed in syslog,
use:

# tail -f /var/log/messages (*BSD) or
# tail -f /var/log/syslog (Linux).

SASLAUTH info is logged in auth.log
# tail -f /var/log/auth.log


--
 wendelmaques
 http://www.dotpix.com.br/~wendel/site/


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Ispman-users mailing list
Ispman-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ispman-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic