1 |
Holas, |
2 |
Hace varias semanas que estoy luchando para hacer funcionar el |
3 |
postfix, pero a pesar de que tengo los usuarios creados, me da un error como |
4 |
de que no existen.(adjunto abajo el /var/log/debug, y los archivos de |
5 |
configuración). No sé si el problema está en el ldap o en el saslauthd, he |
6 |
leído todo lo que había a mano en foros, how-tos, man y docs, y no logro |
7 |
hacerlo andar... por favor, alguien que me explique qué pasa!!... busqueé |
8 |
todas las posibilidades, la próxima es formatear el disco y empezar de nuevo |
9 |
:-(( |
10 |
|
11 |
/var/log/auth.log |
12 |
Dec 6 10:20:02 router imap[11874]: SQL engine 'mysql' not supported |
13 |
Dec 6 10:20:02 router imap[11874]: auxpropfunc error no mechanism available |
14 |
Dec 6 10:20:02 router imap[11874]: _sasl_plugin_load failed on |
15 |
sasl_auxprop_plug_init for plugin: sql |
16 |
Dec 6 10:20:02 router imap[11874]: auxpropfunc error invalid parameter |
17 |
supplied |
18 |
Dec 6 10:20:02 router imap[11874]: _sasl_plugin_load failed on |
19 |
sasl_auxprop_plug_init for plugin: ldapdb |
20 |
Dec 6 10:20:02 router saslauthd[9189]: Entry not found ((uid=foz)). |
21 |
Dec 6 10:20:02 router saslauthd[9189]: Authentication failed for foz: User |
22 |
not found (-6) |
23 |
Dec 6 10:20:02 router saslauthd[9189]: do_auth : auth failure: |
24 |
[user=foz] [service=imap] [realm=] [mech=ldap] [reason=Unknown] |
25 |
|
26 |
/var/log/debug |
27 |
Dec 6 10:20:02 router master[11873]: about to exec /usr/lib/cyrus/imapd |
28 |
Dec 6 10:20:02 router imap[11873]: executed |
29 |
Dec 6 10:20:02 router imap[11873]: accepted connection |
30 |
Dec 6 10:20:02 router master[11874]: about to exec /usr/lib/cyrus/imapd |
31 |
Dec 6 10:20:02 router imap[11874]: executed |
32 |
Dec 6 10:20:02 router imap[11874]: accepted connection |
33 |
Dec 6 10:20:02 router slapd[9744]: conn=75 op=3 SRCH |
34 |
base="dc=funedu,dc=org,dc=ar" scope=2 deref=0 filter="(uid=foz)" |
35 |
Dec 6 10:20:02 router slapd[9744]: conn=75 op=3 SRCH attr=dn |
36 |
Dec 6 10:20:02 router slapd[9744]: conn=75 op=3 SEARCH RESULT tag=101 err=0 |
37 |
nentries=0 text= |
38 |
Dec 6 10:20:02 router imap[11873]: badlogin: [1.1.50.126] plaintext foz |
39 |
SASL(-13): authentication failure: checkpass failed |
40 |
Dec 6 10:20:02 router slapd[9744]: conn=76 op=3 SRCH |
41 |
base="dc=funedu,dc=org,dc=ar" scope=2 deref=0 filter="(uid=foz)" |
42 |
Dec 6 10:20:02 router slapd[9744]: conn=76 op=3 SRCH attr=dn |
43 |
Dec 6 10:20:02 router slapd[9744]: conn=76 op=3 SEARCH RESULT tag=101 err=0 |
44 |
nentries=0 text= |
45 |
Dec 6 10:20:02 router imap[11874]: badlogin: [1.1.50.126] plaintext foz |
46 |
SASL(-13): authentication failure: checkpass failed |
47 |
|
48 |
Aquí eliminé todos los comentarios, por razones de espacio |
49 |
/etc/conf.d/saslauthd |
50 |
SASLAUTHD_OPTS="" |
51 |
SASLAUTH_MECH=ldap |
52 |
SASLAUTHD_OPTS="-a ${SASLAUTH_MECH}" |
53 |
|
54 |
/etc/conf.d/slapd |
55 |
OPTS="-h 'ldaps:// ldap:// ldapi://%2fvar%2frun%2fopenldap%2fslapd.sock'" |
56 |
|
57 |
/etc/saslauthd.conf |
58 |
ldap_servers: ldap://funedu.org.ar:389/ |
59 |
ldap_bind_dn: cn=Manager,dc=funedu,dc=org,dc=ar |
60 |
ldap_bind_pw: <clave sin cifrar> |
61 |
ldap_search_base: dc=funedu,dc=org,dc=ar |
62 |
|
63 |
/etc/openldap/ldap.conf |
64 |
BASE dc=funedu,dc=org,dc=ar |
65 |
URI ldap://funedu.org.ar ldap://ldap-master.funedu.org.ar:666 |
66 |
HOST funedu.org.ar |
67 |
|
68 |
/etc/openldap/slapd.conf |
69 |
include /etc/openldap/schema/core.schema |
70 |
include /etc/openldap/schema/cosine.schema |
71 |
include /etc/openldap/schema/inetorgperson.schema |
72 |
include /etc/openldap/schema/openldap.schema |
73 |
include /etc/openldap/schema/misc.schema |
74 |
include /etc/openldap/schema/nis.schema |
75 |
include /etc/openldap/schema/openxchange.schema |
76 |
|
77 |
allow bind_v2 |
78 |
|
79 |
pidfile /var/run/openldap/slapd.pid |
80 |
argsfile /var/run/openldap/slapd.args |
81 |
|
82 |
database bdb |
83 |
password-hash {CRYPT} |
84 |
checkpoint 32 30 # <kbyte> <min> |
85 |
suffix "dc=funedu,dc=org,dc=ar" |
86 |
rootdn "cn=Manager,dc=funedu,dc=org,dc=ar" |
87 |
rootpw {CRYPT}<idéntica clave de saslauthdconf, pero cifrada> |
88 |
directory /var/lib/openldap-data |
89 |
|
90 |
index objectClass pres,eq |
91 |
index gidNumber,memberUid eq |
92 |
index |
93 |
uid,mailEnabled,cn,sn,givenname,lnetMailAccess,alias,loginDestination |
94 |
eq,sub |
95 |
|
96 |
/etc/imapd.conf |
97 |
configdirectory: /var/imap |
98 |
partition-default: /var/spool/imap |
99 |
sievedir: /var/imap/sieve |
100 |
|
101 |
tls_ca_path: /etc/ssl/certs |
102 |
tls_cert_file: /etc/ssl/cyrus/server.crt |
103 |
tls_key_file: /etc/ssl/cyrus/server.key |
104 |
|
105 |
admins: cyrus |
106 |
|
107 |
hashimapspool: yes |
108 |
allowanonymouslogin: yes |
109 |
allowplaintext: yes |
110 |
|
111 |
sasl_pwcheck_method: saslauthd |
112 |
lmtp_downcase_rcpt: yes |
113 |
|
114 |
#sasl_pwcheck_method: auxprop |
115 |
#sasl_auxprop_plugin: sql |
116 |
|
117 |
## possible values for sasl_auxprop_plugin 'mysql', 'pgsql', 'sqlite'. |
118 |
#sasl_sql_engine: mysql |
119 |
|
120 |
## all possible values. |
121 |
#sasl_mech_list: LOGIN PLAIN CRAM-MD5 DIGEST-MD5 NTLM |
122 |
## or limit to CRAM-MD5 only |
123 |
#sasl_mech_list: CRAM-MD5 |
124 |
|
125 |
## change below to suit your setup. |
126 |
sasl_sql_user: mailsqluser |
127 |
sasl_sql_passwd: password |
128 |
sasl_sql_database: mailsqldb |
129 |
sasl_sql_hostnames: localhost |
130 |
sasl_sql_select: SELECT clear FROM users WHERE email = '%u@%r' |
131 |
|
132 |
Perdón por el largo del mail, si alguien me puede tirar una idea se |
133 |
lo agradeceré.... A veces pienso que es un problema de ssl, pero no sé si en |
134 |
realidad estoy usando texto plano en las claves. Cada vez que quiero |
135 |
autenticar, sea cifrado o no, me rebota la autenticación. Para la |
136 |
instalación de todo esto, he seguido el manual de open-xchange de |
137 |
http://www.mikefetherston.ca/OX/html/ |
138 |
|
139 |
|
140 |
Gracias por adelantado.... |
141 |
|
142 |
Facundo |
143 |
|
144 |
|
145 |
-- |
146 |
gentoo-user-es@g.o mailing list |