Description of problem:
Unable to authenticate postfix to OpenLDAP
Version-Release number of selected component (if applicable):
Postfix version 2.0.11-4
Openldap-servers - 2.0.27-11
Tried to send mail and the /var/log/maillog shows the pid killed
by signal 11.
Created attachment 97538 [details]
main.cf file with vitual domain
I have built a current version of postfix that links against sasl v1,
there is a good chance this will solve your problem, I personally have
not tested it. Please give it a try and let me know what your results are.
I have downloaded the rpm and test it. I will let you whether problem
Did this RPM work?
The rpm worked fine. I am using only simple authentication not sasl now.
Thanks very much
I'm glad this is working for you. But I would like to verify something
to make sure I'm not missing something. Both the synopsis of the bug
and comment #5 make reference to authentication, I hope this is just
loose vocabulary. What authentication are you refering to? If you're
refering to the ldap bind operation we're fine, but if you mean
postfix authentication (e.g. SMTP AUTH) then I need to understand
things better. The reason I ask is because postfix can only to the
best of my knowledge authenticate through via the SASL library which
should have been broken by reverting to v1 sasl in the package I gave
you (as long as you have not modified default groups or permissions).
So when you say simple authentication is working for you, you mean
ldap bind and not SMTP AUTH right?
I was referring to ldap simple bind operation. Before the fix I tried
LDAP SASL mechanism, TLS and simple bind operation, I was getting
segmentation faul error. As soon as I got your fix, I tried simple
bind operation then others and it works fine.
I'm having exactly the same issue (RHEL 3.0, postfix-2.0.11-4). On an
older system (RH 8.0, postfix-1.1.12-0.8, cyrus-sasl-2.1.10-1) I build
a modified specfile that build an RPM with both LDAP table support and
SMTP AUTH via sasl. Is there an expected timeframe for this support
to make it into RHEL 3.0?
This problem has been fixed and will appear in RHEL 3 Update 2. In the
mean time if you want you can download the package from here,
If you discover any problems with it I would appreciate knowing ASAP.
Preliminary testing of the RPM looks fine, the LDAP lookups now work
exactly as advertised. I haven't tested the AMTP AUTH via SASL yet,
hope to test tomorrow. Looks good so far!
BTW, it's not obvious but you can use the 'postmap' tool to test the
LDAP lookups as well as hash lookups. The syntax for an LDAP lookup is:
postmap -q 'firstname.lastname@example.org' ldap:ldapmapname
The '-v' switch provides a lot of extra information, which helped in
the debugging process.