Hey Mosu,
on a first glance, everything looks fine to me here:
root@groupware:~# grep -E '^ldap|sasl' /etc/imapd/imapd.conf
sasl_mech_list: PLAIN
sasl_pwcheck_method: saslauthd
sasl_auxprop_plugin: sasldb
sasl_auto_transition: no
ldap_base: dc=some,dc=thing
ldap_host: groupware.some.thing
ldap_port: 7389
ldap_bindpwfile: /etc/cyrus-ldap.secret
ldap_binddn: cn=groupware,cn=dc,cn=computers,dc=some,dc=thing
ldap_to_attr: uid
ldap_from_attr: mailPrimaryAddress
root@groupware:~# grep -Ev '^#|^$' /etc/default/saslauthd
START=yes
DESC="SASL Authentication Daemon"
NAME="saslauthd"
MECHANISMS="pam"
MECH_OPTIONS=""
THREADS=5
OPTIONS="-c -r -m /var/run/saslauthd -t 1800"
root@groupware:~# cat /etc/pam.d/imap
auth sufficient pam_unix.so
auth requisite pam_univentionmailcyrus.so ldap_host=groupware.some.thing ldap_base=dc=some,dc=thing from_attr=mailPrimaryAddress to_attr=uid binddn=cn=groupware,cn=dc,cn=computers,dc=some,dc=thing pwfile=/etc/machine.secret ldap_port=7389
auth [success=1 default=ignore] pam_ldap.so use_first_pass
auth [success=ok default=die] pam_krb5.so use_first_pass
auth required pam_runasroot.so program=/usr/sbin/univention-cyrus-set-quota
account sufficient pam_unix.so
account required pam_ldap.so
root@groupware:~# grep uri /etc/pam_ldap.conf
uri ldap://groupware.some.thing:7389
On cyrus, yes, I know! We’d really like get rid of it. There has been an issue migrating shared folders in our test environment, prevents us form dovecot-migration.
Cheers
Sebastian