Problem: Login to 'Benno Mailarchiv' fails after moving user

login
ldap
openldap
ucs-4
bennomailarchiv
problem

#1

Problem

After moving a user from it’s default position at cn=users,dc=domain,dc=tld to another Container or OU, the user no longer succeed in logging in to ‘Benno Mailarchiv’

Solution

If you moved the user outside cn=users (e.g. ou=external users,dc=domain,dc=tld) you need to adjust the user rdn in /etc/benno-web/ldapauth.conf or disable usersuffix entirely. As side effect this might result in slower logins.

/etc/benno-web/ldapauth.conf
---8<---
# User id attribute
#
# The attribute which holds the user id for authentication
#
# Windows AD: userattr = sAMAccountName
#userattr = uid

# user rdn
#
# Authentication will be performed as: $userattr=USERLOGIN,$usersuffix
#
# If disabled, a LDAP search operation will be performed to detect the user dn
##usersuffix = cn=users,dc=domain,dc=tld
--->8---

closed #2