[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Getting IMAP to work with OpenLDAP

Vishal,

There are a couple of things that need to happen to make imap/pam/ldap work:

First you need to install the pam modules, then you install nss_ldap and pam_ldap. Pam_ldap authenticates the user and nss_ldap resolves the user for local files and processes and such. Onces these packages are installed you need to configure your /etc/ldap.conf to tell these packages how to connect to your directory then you need to edit your /etc/nsswitch.conf to cause the libc libraries to become ldap aware though the nss_ldap module.

Once you do those things you should be able to chown a file to a ldap user. If you can't do that then either your /etc/ldap.conf, /etc/nsswitch.conf, or user record in ldap has a problem.

Once you get passed the chown test now compile imap with pam support. And create a /etc/pam.d/imap file and put this in it:

auth       sufficient   /lib/security/pam_ldap.so
account    sufficient   /lib/security/pam_ldap.so

That should be it, it should just work now.

schu

Четверг 10 Апрель 2003 14:06, Vishal Khanna написал:

Hi All,
I have basic problems in getting LDAP to work with IMAP.

What I want to do
------------------
I want to authenticate my MAIL(IMAP) users on Linux box from the LDAP
server running on another server

a. Is it possible ?
b. If yes then how ?

Any help would be really appreciated, I have done the hunting on the web

The pacakages I use are (RPMS on 2.4.19 Kernel)
IMAP
-----
imap-2001a-142
imap-lib-2001a-142

LDAP
openldap2-client-2.1.4-26
yast2-ldap-client-2.6.5-66
nss_ldap-199-31
openldap2-2.1.4-26
pam_ldap-150-57
tclldap-1.1.1-693
perl-ldap-0.251-20
perl-ldap-ssl-0.251-20

I did what was mentioned of changing the settings in /etc/nsswitch.conf
Changed the entries in /etc/pam.d/imap to

auth           required      pam_ldap.so
account        required        pam_ldap.so

No matter what I do I cannot get it to work. My openLDAP software works
perfectly fine otherwise.

Cheers
Vishal