OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: ldap_search for virtual only returning hostname
From: John Hensley (johnsunislelodge.com)
Date: Thu Oct 26 2000 - 21:24:10 CDT

At 11:55 -0600 26 October 2000, Andrew Diederich <andrewNETdelivery.com> wrote:

> I'm setting up a postfix/ldap/cyrus system for several virtual domains
> and am getting a Relay access denied. It looks like the search
> against ldap is only searching for the hostname, not userhostname.
> Since my search is for ldapvirtual_query_filter =
> (mailacceptinggeneralid=%s), I thought that did the full userhostname
> lookup, not just hostname.

What it's doing is trying to verify that consolidex.netdelivery.com is a
valid virtual domain. It does this by querying the virtual map
(ldapvirtual, in your case) for the domain.

What you need to do is add the domain to the mailacceptinggeneralid
attribute of an entry in the directory.

> One weirdness is my ldapvirtual_query_filter and
> ldapvirtual_search_base didn't come out in postconf -n.

That's a known (not very well, perhaps) problem with user-configurable
parameters.

> I've been reading through the docs all morning and just am not getting
> anywhere.

I apologize for that. The LDAP_README could be clearer about virtual
domains, and the bit about relay_domains, I realized after your message,
is now badly dated. If you could have a look at the new version at
http://www.sunislelodge.com/postfix/LDAP_README and let me know if it's
clear enough, I'd appreciate it.

John