Postfix, SASL & LDAP

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
uxbod
Ambassador
Ambassador
Posts: 7811
Joined: Fri Sep 12, 2014 10:21 pm

Postfix, SASL & LDAP

Postby uxbod » Wed Dec 17, 2014 2:15 pm

Hi:


am trying to get a Postfix 2.10 server to SASL auth against a Zimbra 8 system but it always fails.  This is on a CentOS 6 system and am using the following /etc/sasl2/saslauthd.conf:


ldap_servers: ldap://123.123.123.123:389/
ldap_version: 3
ldap_search_base: dc=domain,dc=com
ldap_filter: (&(|(uid=%u)(zimbraMailDeliveryAddress=%u)(zimbraMailAlias=%u))(zimbraMailStatus=enabled))
ldap_auth_method: bind
ldap_bind_dn: uid=zmpostfix,cn=appaccts,cn=zimbra
ldap_bind_password: <SECRET>


Has anybody else managed to get it to work please ?



Fabio S. Schmidt
Advanced member
Advanced member
Posts: 183
Joined: Fri Apr 25, 2014 12:42 pm

Postfix, SASL & LDAP

Postby Fabio S. Schmidt » Fri Dec 19, 2014 6:39 am

Hi Uxbod,

Could you paste your Postfix 2.10 configurations and what cyrus-sasl packages you have installed?

User avatar
quanah
Zimbra Alumni
Zimbra Alumni
Posts: 1667
Joined: Fri Sep 12, 2014 10:33 pm
Contact:

Postfix, SASL & LDAP

Postby quanah » Sun Dec 21, 2014 7:01 pm

Not sure why you're messing with saslauthd.conf. Postfix should be able to auth directly against the LDAP server with a simple bind, just like in a regular Zimbra MTA setup.
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
User avatar
quanah
Zimbra Alumni
Zimbra Alumni
Posts: 1667
Joined: Fri Sep 12, 2014 10:33 pm
Contact:

Postfix, SASL & LDAP

Postby quanah » Sun Dec 21, 2014 9:34 pm

Unless you are using it for submission (which isn't clear here). If so, you have to use Zimbra's cyrus-sasl build, as it has a *custom* sasl method compiled in. A standard postfix/sasl isn't going to work well with that
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/

Return to “Administrators”

Who is online

Users browsing this forum: MSN [Bot] and 8 guests