User/Group DS change
Configuring a msg instance to use an alternate U/G directory sounds pretty straight forward and involves several configutil changes on the system. I think I have them all. After changing the below settings
to point to another DS U/G instance I am not having any success.
The Msg instance I am changing (system 1) is up and works:
Sun Java(tm) System Messaging Server 6.2-3.04 (built Jul 15 2005)
libimta.so 6.2-3.04 (built 01:32:55, Jul 15 2005)
SunOS milonga 5.10 Generic_118855-33 i86pc i386 i86pc
The Directory (suneOne 5.2) I am attempting to now point it to (system 2) is up and working and services an iMS5.2 msg-instance.
However, after I change system 1 to use system 2s DS and confirm that it does recognize the U/G DS and binds properly as the "msg-admin"
user :
1)I cannot login via webmail to any users
2)imsimta test rewrite fails to find the users
3)imap access also fails
4)msg-admin user's passwd is correct and allows binds
5)I've changed the mailhost value for the user to reflect the proper name.
6)No ssl settings are required that might be stopping auth.
What am I missing and or what else does the msg-instance want that I have overlooked? Does the msg-admin user need to be specific to the
msg-serv, ie can i get away with using the existing one in the directory that existed for system 2's msg-serv (the iMS ver)?
Isn't this just a user that allows the msg-serv search access to the DS? It seems like using the existing one ensures that the user
has access to do what it needs to do within the DS.
Original Settings:
bash-3.00# ./configutil | grep local.ugldap
local.ugldapbasedn = o=education.ucsb.edu
local.ugldapbindcred = passwd
local.ugldapbinddn = "uid=msg-admin-milonga.education.ucsb.edu-20061228233845Z, ou=People, o=education.ucsb.edu,o=education.ucsb.edu"
local.ugldapdeforgdn = "o=education.ucsb.edu,o=education.ucsb.edu"
local.ugldaphost = milonga.education.ucsb.edu
local.ugldapport = 389
local.ugldapuselocal = yes
Changed Settings:
bash-3.00# ./configutil | grep local.ugldap
local.ugldapbasedn = o=education.ucsb.edu
local.ugldapbindcred = passwd
local.ugldapbinddn = "uid=msg-admin-minerva.education.ucsb.edu-20040519195037, ou=People, o=education.ucsb.edu, o=education.ucsb.edu"
local.ugldapdeforgdn = o=education.ucsb.edu
local.ugldaphost = minerva.education.ucsb.edu
local.ugldapport = 389
local.ugldapuselocal = no
[2589 byte] By [
goubeauxa] at [2007-11-26 14:37:19]
# 8
Ok Chris was right on the bad passwd call, I can now auth against the new U/G directory and login to the webmail interface. I wish it was always a simple error like this!!!Thanks!
However I do still also have an address lookup problem with the MTA as well. The only thing it seems this could be (b/c i did not have this problem before switching to the alternate U/G DS) is the domainalias issue i mentioned before. Does the new DS where the U/G data lives need to know about the domainalias that was set on the o=internet branch on the msg-serv's original DS? I would have thought that the MTA would extract that from the local DS ?
I pasted the test rewrite output below in case this reveals the problem:
bash-3.00# ./imsimta test -rewrite -debug baris@milonga.education.ucsb.edu
Initializing mm_.
Initializing mm_ submission.
Checking identifiers.
*** Debug output from initializing MM for submission:
22:01:50.59: Debug output enabled, message enqueue routines version V6.2-3.04 compiled Jul 15 200501:33:07
22:01:50.59: mmc_winit('l','postmaster@milonga.education.ucsb.edu','0JBN00B022329N00@milonga .education.ucsb.edu') called.
22:01:50.59: Queue area size 83051158, temp area size 4426050
22:01:50.59:20762789 blocks of effective free queue space available; setting disk limit accordingly.
22:01:50.59:2213025 blocks of free temporary space available; setting disk limit accordingly.
22:01:50.59: Rewriting: Mbox = "postmaster", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.59: Rewrite: "$*", position 0, hash table -
22:01:50.59:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.59:Rewrite failed, not forward.
22:01:50.59: Rewrite: "$*", position 1, hash table -
22:01:50.59:Failed.
22:01:50.59: Rewrite: "$*", position 0, rewrite database -
22:01:50.59:Failed
22:01:50.59: Rewriting: Mbox = "postmaster", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.59: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.59:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.59:New mailbox: "postmaster".
22:01:50.59:New host: "milonga.education.ucsb.edu".
22:01:50.59:New route: "milonga.education.ucsb.edu".
22:01:50.59:New channel system: "milonga.education.ucsb.edu".
22:01:50.59: Looking up host "milonga.education.ucsb.edu".
22:01:50.59:- found on channel l
22:01:50.59: Routelocal flag set; scanning for % and !
22:01:50.59:Checking reverse URL cache for: postmaster@milonga.education.ucsb.edu
22:01:50.59:Applying reverse URL pattern ldap:///$V?$N?sub?$R to: postmaster@milonga.education.ucsb.edu
22:01:50.60:URL generation failed, status = 0
22:01:50.60:Mapped return address: postmaster@milonga.education.ucsb.edu
22:01:50.60:from_access mapping check: ||MAIL|l|postmaster@milonga.education.ucsb.edu|
22:01:50.60:- passed.
22:01:50.60: Rewriting: Mbox = "postmaster", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.60: Rewrite: "$*", position 0, hash table -
22:01:50.60:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.60:Rewrite failed, not forward.
22:01:50.60: Rewrite: "$*", position 1, hash table -
22:01:50.60:Failed.
22:01:50.60: Rewrite: "$*", position 0, rewrite database -
22:01:50.60:Failed
22:01:50.60: Rewriting: Mbox = "postmaster", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.60: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.60:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.60:New mailbox: "postmaster".
22:01:50.60:New host: "milonga.education.ucsb.edu".
22:01:50.60:New route: "milonga.education.ucsb.edu".
22:01:50.60:New channel system: "milonga.education.ucsb.edu".
22:01:50.60: Looking up host "milonga.education.ucsb.edu".
22:01:50.60:- found on channel l
22:01:50.60: Routelocal flag set; scanning for % and !
***
*** Debug output from rewriting a forward header address:
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.60: Rewrite: "$*", position 0, hash table -
22:01:50.60:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.60:Rewrite failed, not envelope.
22:01:50.60: Rewrite: "$*", position 1, hash table -
22:01:50.60:Failed.
22:01:50.60: Rewrite: "$*", position 0, rewrite database -
22:01:50.60:Failed
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.60: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.60:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.60:New mailbox: "baris".
22:01:50.60:New host: "milonga.education.ucsb.edu".
22:01:50.60:New route: "milonga.education.ucsb.edu".
22:01:50.60:New channel system: "milonga.education.ucsb.edu".
22:01:50.60: Looking up host "milonga.education.ucsb.edu".
22:01:50.60:- found on channel l
22:01:50.60: Routelocal flag set; scanning for % and !
22:01:50.60:Rewrite rules result: baris@milonga.education.ucsb.edu
22:01:50.60:Checking reverse URL cache for: baris@milonga.education.ucsb.edu
22:01:50.60:Applying reverse URL pattern ldap:///$V?$N?sub?$R to: baris@milonga.education.ucsb.edu
22:01:50.60:URL generation failed, status = 0
***
*** Debug output from rewriting a forward envelope address:
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.60: Rewrite: "$*", position 0, hash table -
22:01:50.60:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.60:Match, pattern = "milonga.education.ucsb.edu", current = "(*domaincheck*)"
22:01:50.60:old state = not checked.
22:01:50.60:Domain check on milonga.education.ucsb.edu.
22:01:50.60:new state = fail pending.
22:01:50.60:Rewrite failed due to prechannel mismatch.
22:01:50.60: Rewrite: "$*", position 1, hash table -
22:01:50.60:Failed.
22:01:50.60: Rewrite: "$*", position 0, rewrite database -
22:01:50.60:Failed
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.60: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.60:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.60:New mailbox: "baris".
22:01:50.60:New host: "milonga.education.ucsb.edu".
22:01:50.60:New route: "milonga.education.ucsb.edu".
22:01:50.60:New channel system: "milonga.education.ucsb.edu".
22:01:50.60: Looking up host "milonga.education.ucsb.edu".
22:01:50.60:- found on channel l
22:01:50.60: Routelocal flag set; scanning for % and !
***
forward channel= l
channel description=
channel user filter=
dest channel filter=
source channel filter =
channel flags #0= BIDIRECTIONAL MULTIPLE IMMNONURGENT NOSERVICEALL
channel flags #1= NOSMTP DEFAULT
channel flags #2= COPYSENDPOST COPYWARNPOST POSTHEADONLY HEADERINC NOEXPROUTE
channel flags #3= LOGGING NOGREY NORESTRICTED RETAINSECURITYMULTIPARTS
channel flags #4= EIGHTBIT NOHEADERTRIM NOHEADERREAD RULES
channel flags #5=
channel flags #6= LOCALUSER REPORTNOTARY
channel flags #7= NOSWITCHCHANNEL NOREMOTEHOST DATEFOUR DAYOFWEEK
channel flags #8= NODEFRAGMENT EXQUOTA REVERSE NOCONVERT_OCTET_STREAM
channel flags #9= NOTHURMAN INTERPRETENCODING USEINTERMEDIATE RECEIVEDFROM VALIDATELOCALSYSTEM NOTURN
defaulthost= education.ucsb.edu education.ucsb.edu
linelength = 1023
channel env addr type = SOURCEROUTE
channel hdr addr type = SOURCEROUTE
channel official host = milonga.education.ucsb.edu
channel queue 0 name= LOCAL_POOL
channel queue 1 name= LOCAL_POOL
channel queue 2 name= LOCAL_POOL
channel queue 3 name= LOCAL_POOL
channel after params=
channel user name=
urgentnotices = 1 2 4 7
normalnotices = 1 2 4 7
nonurgentnotices= 1 2 4 7
channel rightslist ids =
local behavior flags= %x7
expandchannel =
notificationchannel=
dispositionchannel=
saslswitchchannel=
tlsswitchchannel=
backward channel= l
header To: address= baris@milonga.education.ucsb.edu
header From: address= baris@milonga.education.ucsb.edu
envelope To: address= baris@milonga.education.ucsb.edu (route (milonga.education.ucsb.edu,milonga.education.ucsb.edu)) (host milonga.education.ucsb.edu)
envelope From: address = baris@milonga.education.ucsb.edu
name=
mbox= baris
Extracted address action list:
baris@milonga.education.ucsb.edu
Extracted 733 address action list:
baris@milonga.education.ucsb.edu
Address list expansion:
*** Debug output from alias expansion:
22:01:50.60: Inner expand, level = 0, mailbox = baris@milonga.education.ucsb.edu
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.60: Rewrite: "$*", position 0, hash table -
22:01:50.60:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.60:Match, pattern = "milonga.education.ucsb.edu", current = "(*domaincheck*)"
22:01:50.60:old state = not checked.
22:01:50.60:Domain check on milonga.education.ucsb.edu.
22:01:50.60:new state = fail pending.
22:01:50.60:Rewrite failed due to prechannel mismatch.
22:01:50.60: Rewrite: "$*", position 1, hash table -
22:01:50.60:Failed.
22:01:50.60: Rewrite: "$*", position 0, rewrite database -
22:01:50.60:Failed
22:01:50.60: Rewriting: Mbox = "baris", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.60: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.60:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.63:New mailbox: "baris".
22:01:50.63:New host: "milonga.education.ucsb.edu".
22:01:50.63:New route: "milonga.education.ucsb.edu".
22:01:50.63:New channel system: "milonga.education.ucsb.edu".
22:01:50.63: Looking up host "milonga.education.ucsb.edu".
22:01:50.63:- found on channel l
22:01:50.63: Routelocal flag set; scanning for % and !
22:01:50.63:Reparsed mailbox: baris
22:01:50.63:Reparsed host: milonga.education.ucsb.edu
22:01:50.63:Variant #1 = baris@milonga.education.ucsb.edu
22:01:50.63:Variant #2 = *@milonga.education.ucsb.edu
22:01:50.63:Variant #3 = baris
22:01:50.63:LDAP URL template identified
22:01:50.63:Error 0 determining URL from template ldap:///$V?*?sub?$R
***
0 expansion total.
*** Debug output from submitting an envelope address:
22:01:50.63: mmc_wadr(0x08575a20,'baris@milonga.education.ucsb.edu','baris@milonga.education .ucsb.edu') called.
22:01:50.63: Copy estimate before address addition is 1
22:01:50.63:Parsing address baris@milonga.education.ucsb.edu
22:01:50.63: Rewriting: Mbox = "baris", host = "milonga.education.ucsb.edu", domain = "$*", literal = "", tag = ""
22:01:50.63: Rewrite: "$*", position 0, hash table -
22:01:50.63:Found: "$A$E$F$U%$H$V$H@milonga.education.ucsb.edu"
22:01:50.63:Match, pattern = "milonga.education.ucsb.edu", current = "(*domaincheck*)"
22:01:50.63:old state = not checked.
22:01:50.63:Domain check on milonga.education.ucsb.edu.
22:01:50.63:new state = fail pending.
22:01:50.63:Rewrite failed due to prechannel mismatch.
22:01:50.63: Rewrite: "$*", position 1, hash table -
22:01:50.63:Failed.
22:01:50.63: Rewrite: "$*", position 0, rewrite database -
22:01:50.63:Failed
22:01:50.63: Rewriting: Mbox = "baris", host = "milonga", domain = "milonga.education.ucsb.edu", literal = "", tag = ""
22:01:50.63: Rewrite: "milonga.education.ucsb.edu", position 0, hash table -
22:01:50.63:Found: "$U%$D@milonga.education.ucsb.edu"
22:01:50.63:New mailbox: "baris".
22:01:50.63:New host: "milonga.education.ucsb.edu".
22:01:50.67:New route: "milonga.education.ucsb.edu".
22:01:50.67:New channel system: "milonga.education.ucsb.edu".
22:01:50.67: Looking up host "milonga.education.ucsb.edu".
22:01:50.67:- found on channel l
22:01:50.67: Routelocal flag set; scanning for % and !
22:01:50.67:Address baris@milonga.education.ucsb.edu requires local processing.
22:01:50.67:Variant #1 = baris@milonga.education.ucsb.edu
22:01:50.67:Variant #2 = *@milonga.education.ucsb.edu
22:01:50.67:Variant #3 = baris
22:01:50.67:Checking for baris@milonga.education.ucsb.edu in the system alias file
22:01:50.67:- not found
22:01:50.67:Checking for *@milonga.education.ucsb.edu in the system alias file
22:01:50.67:- not found
22:01:50.67:Checking for baris in the system alias file
22:01:50.67:- not found
22:01:50.67:Checking baris@milonga.education.ucsb.edu with URL template ldap:///$V?*?sub?$R
22:01:50.67:LDAP URL template identified
22:01:50.67:Error 0 determining URL from template ldap:///$V?*?sub?$R
22:01:50.67:- adding address baris@milonga.education.ucsb.edu to headers.
22:01:50.67: Copy estimate after address addition is 1
***
Expanded address:
baris@milonga.education.ucsb.edu
Submitted address list:
Address list error -- 5.1.1 unknown or illegal alias: baris@milonga.education.ucsb.edu
Submitted notifications list:
