From: Ben Poliakoff (no email)
Date: Wed Jul 05 2006 - 15:11:10 EDT
Hi All,
I've been trying to use the LDAP pts module with Cyrus imapd 2.3.6.
I've had reasonably good success with ptloader configured to do
*anonymous* binds, but when I set 'ldap_sasl: 1' in imapd.conf ptloader
fails to bind to my LDAP server with the following error:
Unable to set LDAP_OPT_X_SASL_SECPROPS.
The master process is running with GSSAPI credentials (I'm able to
bind to the LDAP server with these credentials using the 'ldapsearch'
command, even when I manually specify SASL secprops with ldapsearch's
-O option). By default it appears that cyrus sets the 'noplain' SASL
secprop. Looking throught archives I haven't seen mention of the above
error. My ldap_* configs look like this:
ldap_filter: (uid=%U)
ldap_realm: example.com
ldap_start_tls: 1
ldap_tls_cacert_dir: /etc/ssl/certs
ldap_mech: gssapi
ldap_base: ou=people,dc=example,dc=com
ldap_group_base: ou=group,dc=example,dc=com
ldap_sasl: 1
ldap_uri: ldap://ldap.example.com
Am I missing something big?
Ben
---- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
|
|
|