[imp] Horde/Imp authentication problem

Marcelo Zoel mzoel at rj.cprm.gov.br
Tue May 24 07:20:43 PDT 2005


Hello all again,

I would like to thank for attention of all. We resolved the problem 
using the hordeauth parameter in the servers.php setting this value for 
full.

see:

hordeauth: If this parameter is present and true, then IMP will attempt 
to use the user's existing credentials (the username/password 
   they used to log in to Horde) to log in to this source. If this 
        parameter is 'full', the username will be used unmodified; 
    otherwise everything after and including the first @ in the 
   username will be stripped off before attempting authentication.

til next time.

Marcelo Zoel


> Hello Everybody,
> 
> I'm Implementing Horde 3.0.4 and Imp 4.0.3 with authentication on ldap 
> backend. I have a virtual domain (i.e. user at sub.domain.gov.br). When I 
> authenticate on horde I have a long time for conection, After that I 
> have success.
> 
> My horde/conf/conf.php has:
> 
> 
> $conf['auth']['admins'] = array('mzoel at rj.cprm.gov.br');
> $conf['auth']['checkip'] = true;
> $conf['auth']['params']['hostspec'] = 'ldap.cprm.gov.br';
> $conf['auth']['params']['basedn'] = 'o=hosting,dc=cprm,dc=gov,dc=br';
> $conf['auth']['params']['binddn'] = 'cn=Manager,dc=cprm,dc=gov,dc=br';
> $conf['auth']['params']['password'] = 'monalisa';
> $conf['auth']['params']['version'] = '3';
> $conf['auth']['params']['uid'] = 'mail';
> $conf['auth']['params']['filter'] = 
> '(&(mail=%s)(objectClass=CourierMailAccount))';
> $conf['auth']['params']['filter_type'] = 'free';
> $conf['auth']['driver'] = 'ldap';
> 
> Looking at log I have:
> 
> May 20 17:25:05 phoebe slapd[6736]: conn=6198 op=5 SRCH 
> attr=homeDirectory mailbox cn clearPassword userPassword mail
> May 20 17:25:05 phoebe slapd[6736]: conn=6198 op=5 SEARCH RESULT tag=101 
> err=0 nentries=0 text=
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 fd=25 ACCEPT from 
> IP=127.0.0.1:54643 (IP=0.0.0.0:389)
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=0 BIND dn="" method=128
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=0 RESULT tag=97 err=0 text=
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SRCH 
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0 
> filter="(&(objectClass=CourierMailAccount)(mail=mzoel))"
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SRCH 
> attr=homeDirectory mailbox cn clearPassword userPassword mail
> May 20 17:25:10 phoebe slapd[6736]: conn=6201 op=1 SEARCH RESULT tag=101 
> err=0 nentries=0 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6200 op=3 UNBIND
> May 20 17:25:15 phoebe slapd[6736]: conn=6200 fd=24 closed
> May 20 17:25:15 phoebe slapd[6736]: conn=6199 op=3 UNBIND
> May 20 17:25:15 phoebe slapd[6736]: conn=6199 fd=21 closed
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 fd=21 ACCEPT from 
> IP=192.168.0.121:54644 (IP=0.0.0.0:389)
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 BIND 
> dn="cn=Manager,dc=cprm,dc=gov,dc=br" method=128
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 BIND 
> dn="cn=Manager,dc=cprm,dc=gov,dc=br" mech=SIMPLE ssf=0
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=0 RESULT tag=97 err=0 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SRCH 
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0 
> filter="(mail=mzoel at rj.cprm.gov.br)"
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SRCH attr=dn
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=1 SEARCH RESULT tag=101 
> err=0 nentries=1 text=
> May 20 17:25:15 phoebe slapd[6736]: conn=6202 op=2 SRCH 
> base="o=hosting,dc=cprm,dc=gov,dc=br" scope=2 deref=0 
> filter="(mail=mzoel at rj.cprm.gov.br)"
> 
> My questions is many times when I will authenticate the LDAP filter 
> parameter result points to 
> filter="(&(objectClass=CourierMailAccount)(mail=mzoel)) and after some 
> tries when filter="(mail=mzoel at rj.cprm.gov.br)" occurres then I have 
> success. Why the horde try first on mail=mzoel and only at end try 
> mail=mzoel at rj.cprm.gov.br?
> 
> I am having problem similar on IMP authentication parse, the imp says 
> login denied when I click on IMP icon, but when I write the correct 
> credencials by hand I can login.
> 
> I think that the two problems are related. Someone knows what are happing?
> 
> Thanks for all for patience!!!
> 
> Marcelo Zoel
> 
> 
> 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mzoel.vcf
Type: text/x-vcard
Size: 295 bytes
Desc: not available
Url : http://lists.horde.org/archives/imp/attachments/20050524/6812091d/mzoel.vcf


More information about the imp mailing list