[exim] Exim LDAP authenticatior

Etusivu
Poista viesti
Vastaa
Lähettäjä: Arne Tiedemann
Päiväys:  
Vastaanottaja: exim-users
Aihe: [exim] Exim LDAP authenticatior
Hello all,

my name is Arne Tiedemann and I'm trying to configure my Exim 4.51 installation to authenticate users.

Here my Configuration:

OS: FreeBSD 5.3
MTA: Exim 4.51
Couriert IMAP +LDAP authlib

Clients: MS Outlook / Thunderbird

================== Exim authenticator Config ========================================
ptext:
driver = plaintext
public_name = PLAIN
server_condition = ${if eq {${lookup ldap \
{user="uid=${extract{1}{@}{$2}},dc=root" pass=$3 \
ldap:///dc=root?uid?sub?(uid=${extract{1}{@}{$2}}) } \
{$value}}} {${extract{1}{@}{$2}}} {yes}{no}}
server_set_id = $2

# outlook express
ltext:
driver = plaintext
public_name = LOGIN
server_prompts = "Username:: : Password::"
server_condition = ${if eq {${lookup ldap \
{user="uid=${extract{1}{@}{$1}},dc=root" pass=$2 \
ldap:///dc=root?uid?sub?(uid=${extract{1}{@}{$1}}) } \
{$value}}} {${extract{1}{@}{$1}}} {yes}{no}}
server_set_id = $1

and I've test any other autenticatirs..

====================== end =====================================
====================== LDAP Config: ============================

Users are in the following OU's

    ou=domain,ou=de,dc=root 
    ou=domain,ou=net,dc=root 
    ou=domain,ou=com,dc=root 
    ou=domain,ou=org,dc=root 


and so on.

When i send an Email i see in the logfile:

947 SMTP<< AUTH LOGIN
947 host in smtp_accept_max_nonmail_hosts? yes (matched "*")
947 SMTP>> 334 VXNlcm5hbWU6
947 SMTP>> 334 UGFzc3dvcmQ6
947 search_open: ldap "NULL"
947 cached open
947 search_find: file="NULL"
947 key="user="uid=userid,dc=root" pass=password ldap:///dc=root?uid?sub?(uid=userid) " partial=-1 affix=NULL starflags=0
947 LRU list:
947 internal_search_find: file="NULL"
947 type=ldap key="user="uid=userid,dc=root" pass=password ldap:///dc=root?uid?sub?(uid=userid) "
947 database lookup required for user="uid=userid,dc=root" pass=password ldap:///dc=root?uid?sub?(uid=userid)
947 LDAP parameters: user=uid=userid,dc=root pass=password size=0 time=0 connect=0 dereference=0
947 perform_ldap_search: ldap URL ="ldap:///dc=root?uid?sub?(uid=userid) " server=127.0.0.1 port=0 sizelimit=0 timelimit=0 tcplimit=0
947 after ldap_url_parse: host=127.0.0.1 port=0
947 re-using cached connection to LDAP server 127.0.0.1:389
947 binding with user=uid=userid,dc=root password=password
947 failed to bind the LDAP connection to server 127.0.0.1:389 - LDAP error 49: Invalid credentials
947 lookup deferred: failed to bind the LDAP connection to server 127.0.0.1:389 - LDAP error 49: Invalid credentials
>>>>>>>>>>>>>>>>>>>>> end >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>


Should I configure for each OU an seperat authenticator? I think not.

How can I configure the authenticators to query a user in some OU?

If you could help me it would nicly!
Thanks at all