[csw-users] dovecot + ldap tls
Darin Perusich
Darin.Perusich at cognigencorp.com
Tue May 22 21:02:38 CEST 2007
Are you able to make a non-ssl connection to the directory server with
ldapsearch or dovecot?
aza zel wrote:
> hi...
> i trying to have a secure conetion between dovecot and directory server,
> but i cant do it. The documentation are so poor
> (http://wiki.dovecot.org/AuthDatabase/LDAP)
> these are my configurations files:
>
> (pre: i have a directory server accepting secure conections (port 389
> via TLS and port 636 via SSL).
>
> File "/opt/csw/etc/dovecot-ldap.conf":
>
> hosts=100.0.4.98 <http://100.0.4.98>
> dn = cn=bindmailusers,cn=mailusers,dc=prueba,dc=uy
> dnpass =passbindmailUsers
> tls = yes
> ldap_version = 3
> base= cn=mailUsers,dc=prueba,dc=uy
> deref = never
> scope = subtree
> user_attrs = uidnumber=uidnumber,
> gidnumber=gidnumber,homedirectory=homedirectory, mailbox=mailbox
> user_filter = (&(objectClass=mailaccount)(uid=%u)(disableimap=FALSE))
> pass_attrs = uid=uid,userpassword=password
> pass_filter= (&(objectClass=mailaccount)(uid=%u)(disableimap=FALSE))
> default_pass_scheme = CRYPT
> user_global_uid =12356
> user_global_gid =12356
>
> File "/opt/csw/etc/openldap/ldap.conf" (openldap client):
>
> TLS_REQCERT allow
> host 100.0.4.98 <http://100.0.4.98>
> TLS_CACERT /opt/csw/etc/postfix/ldap-cert/cacert.pem
>
> these are my log file:
>
> # tail dovecot-log.log
> :
> :
> dovecot: May 22 15:48:31 Error: auth(default): LDAP: ldap_start_tls_s()
> failed: Can't contact LDAP server
>
> any suggest :(
>
> --
> Salu2 ;)
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> users mailing list
> users at lists.blastwave.org
> https://lists.blastwave.org/mailman/listinfo/users
--
Darin Perusich
Unix Systems Administrator
Cognigen Corporation
395 Youngs Rd.
Williamsville, NY 14221
Phone: 716-633-3463
Email: darinper at cognigencorp.com
More information about the users
mailing list