[tpop3d-discuss] RE: LDAP Authentication
prune
prune at lecentre.net
Thu, 19 Sep 2002 11:05:02 +0200
Hi,
having the attribute :
mail: t_tran99@mye-znet.com
you could also (in fact) use the filter :
(mail=$(local_part)@$(domain))
It should work and be lighter to search for ldap server.
Hopefully it finaly worked.....
Have joy plaing with tpop3d...
Cheers,
prune
Thai Tran wrote:
>Hello everyone,
> Okay I fixed the problem. I fixed the issue by changing the auth-ldap-url.
>Originally it was - auth-ldap-url: ldap://localhost
>Changed to - auth-ldap-url: ldap://localhost/o=mye-znet
>
>my config:
>listen-address: 0.0.0.0()
>mailbox: maildir:/home/mailspool/$(domain)/$(user)/
>append-domain: yes
>auth-ldap-enable: yes
>auth-ldap-url: ldap://localhost/o=mye-znet
>auth-ldap-searchdn:
>auth-ldap-password:
>auth-ldap-filter: (&(uid=$(local_part))(dc=$(domain)))
>auth-ldap-mailbox-attr: mailMessageStore
>auth-ldap-mail-user: nobody
>auth-ldap-mail-group: nobody
>
>Thanks for all the help and patients, I'm so stupid
>Thai
>
>-----Original Message-----
>From: Prune [mailto:prune@lecentre.net]
>Sent: Wednesday, September 18, 2002 1:34 PM
>To: t_tran99@yahoo.com
>Cc: tpop3d
>Subject: Re: [tpop3d-discuss] RE: LDAP Authentication
>
>
>Hi,
>
>as said chris, the search filter is the same as when you use ldapsearch.
>from the man page (with anonymous bind, may not work for you) :
>ldapsearch -b "c=US" "(o=University*)" description
>
>which mean, give me the "description" attribute of envery entry containing
>the attribut "o" = "University*", starting from "c=US" in the DN.
>do you understand that ?
>
>for you, this will give :
>
>ldapsearch -b "o=mye-znet" "(uid=t_tran99)" mailMessageStore
>
>this will work if you supply only 't_tran99' as login, and don't add the
>domain after.
>the search filter can be more complicates, for example :
>(&(uid=t_tran99)(dc=mye-znet.com))
>
>so : (&(uid=$(local_part))(dc=$(domain)))
>
>I hope this will work
>
>chris : am I right ?
>
>thai : understand ?
>
>Cheers,
>
>Prune
>
>
>
>Thai Tran wrote:
>
>Hello everyone,
> If someone can help point me in the right direction regarding the
>auth-ldap-filter. At the moment I am not sure how tpop3d uses the filter to
>manipulate the search or I am just to blind to see it from the default
>filter.
>
> I am aware that the default search filter is
>(mail=$(local_part)@$(domain). If someone can explain to me exactly how
>this is used and the results of using the default filter in a ldap url
>format.
>
>For example: If I'm logging in with t_tran99@mye-znet.com and my password,
>what would the end result of the ldap url be, using the default filter? I
>am assuming this at the moment but tpop3d does use ldap urls to perform
>queries, correct?
>
>Thanks,
>Thai
>
>
>