Hello,
i used this link
http://wiki.dovecot.org/Authentication/RestrictAccess
and this part
passdb passwd-file {
args = /etc/dovecot/deny.imap
deny = yes
}

but now no one ca login. and i get this error
dovecot: auth: Error: Error in configuration file /etc/deny.imap line 1: Expecting '='

here is my dovecot config


auth_debug = yes
auth_debug_passwords = yes
auth_default_realm = testdomain.ir
auth_username_format = %Lu
auth_verbose = yes
disable_plaintext_auth = no
lda_mailbox_autocreate = yes
lda_mailbox_autosubscribe = yes
listen = *
mail_debug = yes
mail_gid = vmail
mail_location = maildir:~/Maildir
mail_plugins = " quota"
mail_uid = vmail
maildir_very_dirty_syncs = yes
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date
passdb {
args = /etc/deny.imap
deny = yes
driver = ldap
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf
driver = ldap
}
plugin {
fts = squat
quota = maildir:User quota
quota_warning = storage=95%% quota-warning 95 %u
quota_warning2 = storage=80%% quota-warning 80 %u
sieve = ~/.dovecot.sieve
sieve_before = /mbox/Spam.sieve
sieve_dir = ~/sieve
sieve_extensions = +notify
}
postmaster_address = postmaster@ssmailer.ir
protocols = imap pop3 lmtp sieve
service auth {
unix_listener auth-userdb {
user = vmail
}
}
service imap-login {
inet_listener imap {
port = 143
}
inet_listener imaps {
port = 993
ssl = yes
}
process_min_avail = 20
service_count = 0
vsz_limit = 256 M
}
service lmtp {
inet_listener lmtp {
address = 10.0.0.2 127.0.0.1
port = 24
}
user = vmail
}
service managesieve-login {
inet_listener sieve {
port = 4190
}
}
service pop3-login {
inet_listener pop3 {
port = 110
}
inet_listener pop3s {
port = 995
ssl = yes
}
}
service quota-warning {
executable = script /usr/local/bin/quota-warning.sh
unix_listener quota-warning {
user = vmail
}
user = vmail
}
ssl_ca = </usr/local/PeykAsa/SSL/certs/pa-ca.crt
ssl_cert = </usr/local/PeykAsa/SSL/certs/mail.crt
ssl_key = </usr/local/PeykAsa/SSL/private/mail.key
userdb {
driver = prefetch
}
userdb {
args = /etc/dovecot/dovecot-ldap.conf.usr
driver = ldap
}
protocol lmtp {
mail_plugins = " quota sieve"
}
protocol lda {
mail_debug = yes
mail_plugins = " quota sieve"
}
protocol imap {
mail_plugins = " quota imap_quota fts fts_squat"
}
protocol pop3 {
pop3_no_flag_updates = yes
}
protocol sieve {
mail_max_userip_connections = 50
}

Looks like the error is in your deny.imap not dovecot.conf

according to this Link
http://wiki.dovecot.org/Authentication/RestrictAccess
deny.imap is just a file that contains username per line .

Seems you missed a bit:

I tried it before ..no success

---------- Post added 09-09-13 at 02:54 PM ----------

I tried it before ..no success
passdb passwd-file {
args = /etc/dovecot/deny.imap
deny = yes
driver = ldap
}

passdb {
args = /etc/dovecot/dovecot-ldap.conf
driver = ldap
}

Sorry, I quoted the wrong part before - should have been thisYou are using a file, but have missed the passwd-file directive and have also specified the ldap driver, which will not work.

changed to this :

passdb {
args = /etc/dovecot/deny.imap
deny = yes
driver = ldap
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf
driver = ldap
}

no success,


==> mail.err <==
Sep 9 08:02:24 mail1 dovecot: auth: Error: Error in configuration file /etc/dovecot/deny.imap line 1: Expecting '='
Sep 9 08:02:24 mail1 dovecot: log: Error: service(auth): child 3630 returned error 89 (Fatal failure)
Sep 9 08:02:24 mail1 dovecot: master: Error: service(auth): command startup failed, throttling

==> mail.info <==
Sep 9 08:02:24 mail1 dovecot: auth: Error: Error in configuration file /etc/dovecot/deny.imap line 1: Expecting '='
Sep 9 08:02:24 mail1 dovecot: log: Error: service(auth): child 3630 returned error 89 (Fatal failure)
Sep 9 08:02:24 mail1 dovecot: master: Error: service(auth): command startup failed, throttling

==> mail.warn <==
Sep 9 08:02:24 mail1 dovecot: auth: Error: Error in configuration file /etc/dovecot/deny.imap line 1: Expecting '='
Sep 9 08:02:24 mail1 dovecot: log: Error: service(auth): child 3630 returned error 89 (Fatal failure)
Sep 9 08:02:24 mail1 dovecot: master: Error: service(auth): command startup failed, throttling

==> syslog <==
Sep 9 08:02:24 mail1 dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth
Sep 9 08:02:24 mail1 dovecot: auth: Debug: Module loaded: /usr/lib/dovecot/modules/auth/libauthdb_ldap.so
Sep 9 08:02:24 mail1 dovecot: auth: Error: Error in configuration file /etc/dovecot/deny.imap line 1: Expecting '='
Sep 9 08:02:24 mail1 dovecot: log: Error: service(auth): child 3630 returned error 89 (Fatal failure)
Sep 9 08:02:24 mail1 dovecot: master: Error: service(auth): command startup failed, throttling

Of course not.
You are telling it to expect an ldap-conf file, but feeding it a list of usernames!

Thank u descendant_command
Solved ....(^-^)

passdb {
args = /etc/dovecot/deny.imap
driver = passwd-file
deny = yes
}

passdb {
args = /etc/dovecot/dovecot-ldap.conf
driver = ldap
}