[tpop3d-discuss] tpop3d, ldap and ispman

Michael Klatsky mklatsky at cttel.com
15 Sep 2003 11:28:09 -0400 

Does anybody have experience w/tpop3d, ldap and ispman?

I have gotten tpop3d to successfully auth via flatfiles, and in a system
other than the one I am setting up I successfully authenticate against
ldap. However, I am setting up tpop3d , and can't get a successful auth.
Some particulars are below:

Log entries(names protected):

Sep 15 11:20:32 ws2 tpop3d[23478]: connection_parsecommand: client
[5]127.0.0.1/xx.xx.com: received `user user@xx.com'
Sep 15 11:20:32 ws2 tpop3d[23478]: connection_sendresponse: client
[5]127.0.0.1/xx.xx.com: sent `+OK Tell me your password.'
Sep 15 11:20:35 ws2 tpop3d[23478]: connection_parsecommand: client
[5]127.0.0.1/xx.xx.com: received `pass [...]'
Sep 15 11:20:35 ws2 tpop3d[23478]: auth_ldap_new_user_pass: LDAP search
filter: (uid=user@xx.com)
Sep 15 11:20:35 ws2 tpop3d[23478]: auth_ldap_new_user_pass: failed login
for [user@xx.com; user@xx.com]

Here is ldap section of tpop3d.conf:

auth-ldap-enable: yes
auth-ldap-url:ldap://localhost:389/o=ispman
auth-ldap-searchdn: cn=Directory Administrator, o=ispman
auth-ldap-password:xxxx
auth-ldap-filter: (uid=$(user))

Below is ldapsearch on a user:

dn: uid=user_xx_com,ou=users,ispmanDomain=xx.com,o=ispman
objectClass: posixAccount
objectClass: ispmanDomainUser
objectClass: radiusprofile
dialupAccess: yes
ispmanStatus: active
ispmanCreateTimestamp: 1063595224
uid: user_xx_com
uid: user@xx.com
ispmanUserId: user
ispmanDomain: xx.com
givenName: B
sn: R
cn: B R
uidNumber: 1002
gidNumber: 1001
mailHost: undefined
fileHost: undefined
DestinationAddress: 127.0.0.1
DestinationPort: 21
FTPQuotaMBytes: 1
homeDirectory: /ispman/domains/xx.com/users/user_xx_com/
loginShell: /bin/false
mailLocalAddress: user@xx.com
mailQuota: 5120
userPassword:: xxxxxxxxxxxx



And ldap search on uid=user@xx.com returns exactly one user. There are,
however, 2 userid's:

uid=user@xx.com
uid=user_xx_com


Any hints would be most welcome. Perhaps a better search filter?


Thanks in advance.

-- 


Sincerely,


Michael Klatsky
Senior Unix System Administrator
Connecticut Telephone
1 Talcott Plaza 6th Floor
Hartford, CT 06103