Dovecot авторизация в AD

[bearwoolfs]

Добрый день, приручаю dovecot и AD , но не слишком хорошо все получается , так прошу совета.
Логи
Sep 24 16:44:40 auth(default): Info: new auth connection: pid=1625
Sep 24 16:44:40 auth(default): Info: new auth connection: pid=1626
Sep 24 16:44:40 auth(default): Info: new auth connection: pid=1627

dovecot.conf

Код: Выделить всё

protocols = imap imaps
disable_plaintext_auth = no
#
info_log_path = /var/log/dovecot.log
log_timestamp = "%b %d %H:%M:%S "
login_log_format = %$: %s
auth_verbose = yes
auth_debug_passwords = yes
#
mail_location = maildir:/var/mail/%u
mail_access_groups  = mail
protocol imap {
              }
auth default {
   passdb ldap {
    args = /etc/dovecot/dovecot-ldap.conf
  }
  userdb ldap {
    args = /etc/dovecot/dovecot-ldap.conf
  }
  user = mail
}
mechanisms = plain login
plugin {
quota = maildir
}

dovecot-ldap.conf

Код: Выделить всё

hosts = 192.168.2.99
dn = cn=user,DC=OR,DC=LOCAL
dnpass = gs
debug_level = 1
auth_bind = yes
ldap_version = 3
base = dc=OR, dc=LOCAL
deref = never
scope = subtree
user_filter = (&(objectClass=*)(userAccountControl=66048))
pass_filter = (&(objectClass=*)(userAccountControl=66048))

[Хостинг HostFood.ru]

Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/

[xM]

Active Directory

When connecting to AD, you may need to use port 3268. Then again, not all LDAP fields are available in port 3268. Use whatever works.

[bearwoolfs]

Увеличил лог

Код: Выделить всё

Sep 25 08:23:32 postman dovecot: dovecot: Killed with signal 15 (by pid=2155 uid=0 code=kill)
Sep 25 08:23:32 postman dovecot: auth(default): ldap_bind
Sep 25 08:23:32 postman dovecot: auth(default): ldap_simple_bind
Sep 25 08:23:32 postman dovecot: auth(default): ldap_sasl_bind
Sep 25 08:23:32 postman dovecot: auth(default): ldap_send_initial_request
Sep 25 08:23:32 postman dovecot: auth(default): ldap_new_connection 1 1 0
Sep 25 08:23:32 postman dovecot: auth(default): ldap_int_open_connection
Sep 25 08:23:32 postman dovecot: auth(default): ldap_connect_to_host: TCP 192.168.2.99:389
Sep 25 08:23:32 postman dovecot: auth(default): ldap_new_socket: 10
Sep 25 08:23:32 postman dovecot: auth(default): ldap_prepare_socket: 10
Sep 25 08:23:32 postman dovecot: auth(default): ldap_connect_to_host: Trying 192.168.2.99:389
Sep 25 08:23:32 postman dovecot: auth(default): ldap_pvt_connect: fd: 10 tm: -1 async: 0
Sep 25 08:23:32 postman dovecot: auth(default): ldap_open_defconn: successful
Sep 25 08:23:32 postman dovecot: auth(default): ldap_send_server_request
Sep 25 08:23:32 postman dovecot: auth(default): ldap_result ld 0x8a4fc58 msgid -1
Sep 25 08:23:32 postman dovecot: auth(default): wait4msg ld 0x8a4fc58 msgid -1 (timeout 0 usec)
Sep 25 08:23:32 postman dovecot: auth(default): wait4msg continue ld 0x8a4fc58 msgid -1 all 1
Sep 25 08:23:32 postman dovecot: auth(default): ** ld 0x8a4fc58 Connections:
Sep 25 08:23:32 postman dovecot: auth(default): * host: 192.168.2.99  port: 389  (default)
Sep 25 08:23:32 postman dovecot: auth(default):   refcnt: 2  status: Connected
Sep 25 08:23:32 postman dovecot: auth(default):   last used: Tue Sep 25 08:23:32 2012
Sep 25 08:23:32 postman dovecot: auth(default):
Sep 25 08:23:32 postman dovecot: auth(default):
Sep 25 08:23:32 postman dovecot: auth(default): ** ld 0x8a4fc58 Outstanding Requests:
Sep 25 08:23:32 postman dovecot: auth(default):  * msgid 1,  origid 1, status InProgress
Sep 25 08:23:32 postman dovecot: auth(default):    outstanding referrals 0, parent count 0
Sep 25 08:23:32 postman dovecot: auth(default):   ld 0x8a4fc58 request count 1 (abandoned 0)
Sep 25 08:23:32 postman dovecot: auth(default): ** ld 0x8a4fc58 Response Queue:
Sep 25 08:23:32 postman dovecot: auth(default):    Empty
Sep 25 08:23:32 postman dovecot: auth(default):   ld 0x8a4fc58 response count 0
Sep 25 08:23:32 postman dovecot: auth(default): ldap_chkResponseList ld 0x8a4fc58 msgid -1 all 1
Sep 25 08:23:32 postman dovecot: auth(default): ldap_chkResponseList returns ld 0x8a4fc58 NULL
Sep 25 08:23:32 postman dovecot: auth(default): ldap_int_select
Sep 25 08:23:32 postman dovecot: auth(default): read1msg: ld 0x8a4fc58 msgid -1 all 1
Sep 25 08:23:32 postman dovecot: auth(default): read1msg: ld 0x8a4fc58 msgid 1 message type bind
Sep 25 08:23:32 postman dovecot: auth(default): read1msg: ld 0x8a4fc58 0 new referrals
Sep 25 08:23:32 postman dovecot: auth(default): read1msg:  mark request completed, ld 0x8a4fc58 msgid 1
Sep 25 08:23:32 postman dovecot: auth(default): request done: ld 0x8a4fc58 msgid 1
Sep 25 08:23:32 postman dovecot: auth(default): res_errno: 49, res_error: <80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece>, res_match$
Sep 25 08:23:32 postman dovecot: auth(default): ldap_free_request (origid 1, msgid 1)
Sep 25 08:23:32 postman dovecot: auth(default): ldap_parse_result
Sep 25 08:23:32 postman dovecot: auth(default): ldap_err2string
Sep 25 08:23:32 postman dovecot: auth(default): LDAP: binding failed (dn CN=mail,CN=User,DC=betta,DC=EOR,DC=LOCAL): Invalid credentials, 80090308: LdapErr: DSID-0C09033$
Sep 25 08:23:32 postman dovecot: auth(default): ldap_unbind
Sep 25 08:23:32 postman dovecot: auth(default): ldap_free_connection 1 1
Sep 25 08:23:32 postman dovecot: auth(default): ldap_send_unbind
Sep 25 08:23:32 postman dovecot: auth(default): ldap_free_connection: actually freed
Sep 25 08:23:32 postman dovecot: auth(default): ldap_msgfree