[imp] Horde/Imp authentication problem
Marcelo Zoel
mzoel at rj.cprm.gov.br
Tue May 24 07:20:43 PDT 2005
Hello all again,
I would like to thank for attention of all. We resolved the problem
using the hordeauth parameter in the servers.php setting this value for
full.
see:
hordeauth: If this parameter is present and true, then IMP will attempt
to use the user's existing credentials (the username/password
they used to log in to Horde) to log in to this source. If this
parameter is 'full', the username will be used unmodified;
otherwise everything after and including the first @ in the
username will be stripped off before attempting authentication.
til next time.
Marcelo Zoel
> Hello Everybody,
>
> I'm Implementing Horde 3.0.4 and Imp 4.0.3 with authentication on ldap
> backend. I have a virtual domain (i.e. user at sub.domain.gov.br). When I
> authenticate on horde I have a long time for conection, After that I
> have success.
>
> My horde/conf/conf.php has:
>
>
> $conf['auth']['admins'] = array('mzoel at rj.cprm.gov.br');
> $conf['auth']['checkip'] = true;
> $conf['auth']['params']['hostspec'] = 'ldap.cprm.gov.br';
> $conf['auth']['params']['basedn'] = 'o=hosting,dc=cprm,dc=gov,dc=br';
> $conf['auth']['params']['binddn'] = 'cn=Manager,dc=cprm,dc=gov,dc=br';
> $conf['auth']['params']['password'] = 'monalisa';
> $conf['auth']['params']['version'] = '3';
> $conf['auth']['params']['uid'] = 'mail';
> $conf['auth']['params']['filter'] =
> '(&(mail=%s)(objectClass=CourierMailAccount))';
> $conf['auth']['params']['filter_type'] = 'free';
> $conf['auth']['driver'] = 'ldap';
>
> Looking at log I have:
>
> May 20 17:25:05 phoebe slapd[6736]: conn=6198 op=5 SRCH
> attr=homeDirectory mailbox cn clearPassword userPassword mail
> May 20 17:25:05 phoebe slapd[6736]: conn=6198 op=5 SEARCH RESULT tag=101
> err=0 nentries=0 text=
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 fd=25 ACCEPT from
> IP=127.0.0.1:54643 (IP=0.0.0.0:389)
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=0 BIND dn="" method=128
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=0 RESULT tag=97 err=0 text=
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SRCH
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0
> filter="(&(objectClass=CourierMailAccount)(mail=mzoel))"
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SRCH
> attr=homeDirectory mailbox cn clearPassword userPassword mail
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SEARCH RESULT tag=101
> err=0 nentries=0 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6200 op=3 UNBIND
> May 20 17:25:15 phoebe slapd[6736]: conn=6200 fd=24 closed
> May 20 17:25:15 phoebe slapd[6736]: conn=6199 op=3 UNBIND
> May 20 17:25:15 phoebe slapd[6736]: conn=6199 fd=21 closed
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 fd=21 ACCEPT from
> IP=192.168.0.121:54644 (IP=0.0.0.0:389)
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 BIND
> dn="cn=Manager,dc=cprm,dc=gov,dc=br" method=128
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 BIND
> dn="cn=Manager,dc=cprm,dc=gov,dc=br" mech=SIMPLE ssf=0
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 RESULT tag=97 err=0 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SRCH
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0
> filter="(mail=mzoel at rj.cprm.gov.br)"
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SRCH attr=dn
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SEARCH RESULT tag=101
> err=0 nentries=1 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=2 SRCH
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0
> filter="(mail=mzoel at rj.cprm.gov.br)"
>
> My questions is many times when I will authenticate the LDAP filter
> parameter result points to
> filter="(&(objectClass=CourierMailAccount)(mail=mzoel)) and after some
> tries when filter="(mail=mzoel at rj.cprm.gov.br)" occurres then I have
> success. Why the horde try first on mail=mzoel and only at end try
> mail=mzoel at rj.cprm.gov.br?
>
> I am having problem similar on IMP authentication parse, the imp says
> login denied when I click on IMP icon, but when I write the correct
> credencials by hand I can login.
>
> I think that the two problems are related. Someone knows what are happing?
>
> Thanks for all for patience!!!
>
> Marcelo Zoel
>
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mzoel.vcf
Type: text/x-vcard
Size: 295 bytes
Desc: not available
Url : http://lists.horde.org/archives/imp/attachments/20050524/6812091d/mzoel.vcf
More information about the imp
mailing list