论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2011-08-17 15:09 |只看该作者 |倒序浏览

根据官方文档, 我先配置了/usr/lib64/sasl2/slapd.conf
mech_list: plain
pwcheck_method: saslauthd
saslauthd_path: /var/run/sasl2/mux

然后配置了/etc/saslauthd.conf
ldap_servers: ldap://lcoalhost

ldap_search_base: ou=People,ou=test,o=com"
ldap_filter: (uid=%u)

ldap_bind_dn: cn=admin,ou=SystemUsers,o=com
ldap_password: admin

然后启动saslauthd 在debug模式下

然后测试验证：
testsaslauthd -u user -p wrongpassword

saslauthd[21563] :rel_accept_lock : released accept lock
saslauthd[21564] :get_accept_lock : acquired accept lock
saslauthd[21563] :do_auth       : auth failure: [user=user] [service=imap] [realm=] [mech=ldap] [reason=Unknown]
saslauthd[21563] :do_request    : response: NO

不管换什么用户都是错误的。

而且为什么“service=imap”?

各位大侠帮忙啊

文库|博客

mahao_boy

白手起家

论坛徽章:: 0

2楼 [报告]

发表于 2011-08-17 15:22 |只看该作者

还有/etc/sysconfig/saslauthd 的配置
# Directory in which to place saslauthd's listening socket, pid file, and so
# on.  This directory must already exist.
SOCKETDIR=/var/run/saslauthd

# Mechanism to use when checking passwords.  Run "saslauthd -v" to get a list
# of which mechanism your installation was compiled with the ablity to use.
#MECH=pam
MECH=ldap

# Additional flags to pass to saslauthd on the command line.  See saslauthd(