Hello,

i use an openldap. cyrus and postfix also authenticate against openldap.

My ldapauth.properties are:

java.naming.provider.url=ldap://localhost:389/
java.naming.security.authentication=simple
com.sun.jndi.ldap.connect.timeout=10000
com.sun.jndi.ldap.read.timeout=10000
uidAttribute=uid
baseDN=ou=user,dc=mail,dc=domain,dc=de
ldapReturnField=
adsBind=false
subtreeSearch=false
referral=follow

In ldap i have accounts like this:

uid=a.b@domain2.de,ou=user,dc=mail,dc=domain,dc=de
uid=c.d,ou=user,dc=mail,dc=domain,dc=de

but when i enter a.b@domain2.de as username the ldap log shows only:

conn=138916 op=1 BIND dn="uid=a.b,ou=user,dc=mail,dc=domain,dc=de" method=128

i think OX removed all after the @.

The login with only c.d works.
It can be problem with the input form, so that interpret the @ as something.

greets

Hi,

can you be more specific, please?
Are you trying to authenticate against a Active Directory Server (Windows Doamin) or against a common LDAP Server?

Here is an example for authentication against an AD (Windows) with "username@windows-domain".
In this case the ldap-attribute sAMAccountName contains the value for the username that is used by the OX server.

In addition to the config above you have to add a login mapping to your context that is called like your domain-name (for example like above: win-pdc)

After these changes it should be possible to sign in as "username@domain-name" on your server.


Regards