Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 07-18-2002, 06:09 AM   #1
Registered: Mar 2002
Location: INDIA
Distribution: Mandrake Linux 9.2, Knoppix 3.0
Posts: 158

Rep: Reputation: 30
Cyrus, pam_ldap, ldap postfix installation

Hello friend,

I have to install cyrus, pam_ldap and ldap with ldap as base database for email system.
Can u help me in this regards...

Now in details
I am asked to develop a email system using cyrus, cyrus-sasl, pam_ldap for authentication, ldap for database, postfix

I have installed all the packages but i am unable to make cyrus and ldap talk with eachother every time i try i gets the following error in my /var/log/messages logfile

Jul 18 15:56:41 mayank imapd[1381]: pam_ldap: ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT): Unknown error
Jul 18 15:56:41 mayank imapd[1381]: pam_ldap: _set_ssl_default_options failed
Jul 18 15:56:41 mayank imapd[1381]: pam_ldap: ldap_simple_bind Can't contact LDAP server
My config files are as follows
1. /etc/ldap/slapd.conf
# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 2001/04/20 23:32:43 kurt Exp $
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema

pidfile /var/run/
argsfile /var/run/slapd.args

# Load dynamic backend modules:
# modulepath /usr/sbin/ldap
# moduleload
# moduleload
# moduleload
# moduleload
concurrency 2
# ldbm database definitions

database ldbm
suffix "dc=intranet,dc=com"
#suffix "o=My Organization Name,c=US"

rootdn "cn=Manager,dc=intranet,dc=com"
rootpw {SSHA}tfLshvBFhpnFLd1fKh6+ylmV50sGxUFz

# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/ldap/openldap-ldbm

# Size/number of indices/entries to cache - slapd's memory consumption
# increases significantly if these values are increased:
cachesize 1000
dbcachesize 50000

# Indices to maintain - this has to be set before entries are added to
# slapd databases:
#index objectClass,uid,uidNumber,gidNumber pres,eq
index objectClass,uid pres,eq
index cn,sn eq,sub

access to attr="userPassword"
by self write
by dn="cn=Manager,dc=intranet,dc=com" write
by dn="cn=admin,ou=user,dc=intranet,dc=com" write
by anonymous auth
by * none

access to dn=".*,ou=user,dc=intranet,dc=com"
by dn="cn=Manager,dc=intranet,dc=com" write
by dn="cn=admin,ou=user,dc=intranet,dc=com" write
by * read

access to *
by dn="cn=Manager,dc=intranet,dc=com" write
by * read

2. /etc/pam_ldap/auth_ldap.conf
base ou=user,dc=intranet,dc=com
binddn ou=user,dc=intranet,dc=com
bindpw admin# OpenLDAP SSL mechanism
# start_tls mechanism uses the normal LDAP port, LDAPS typically 636
#ssl start_tls
ssl on

3. admin.ldif : ldif file used to create admin account in ldap
dn: dc=intranet,dc=com
objectclass: top
objectclass: dcObject
dc: intranet

dn: ou=user,dc=intranet,dc=com
objectclass: top
objectclass: organizationalUnit
ou: user

dn: cn=admin,ou=user,dc=intranet,dc=com
objectclass: top
objectclass: person
objectclass: account
cn: admin
sn: admin
uid: admin
userPassword: admin

Can anyone tell me where i am wrong




Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Cyrus with LDAP dsiemens2 Linux - Software 1 02-24-2005 12:29 AM
Fedora, cyrus imap / sasl, Kerberos, LDAP rhoekstra Linux - Security 0 01-26-2005 03:48 AM
postfix+cyrus gammar Linux - Networking 0 12-30-2004 11:34 AM
postfix+cyrus-sasl+impd installation Robin01 Linux - Newbie 0 02-29-2004 05:24 PM
ldap auth - nsswitch - pam_ldap td3201 Linux - General 1 01-27-2002 10:13 PM

All times are GMT -5. The time now is 01:37 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration