I'm trying to setup users using cyradm, I tried
# su cyrus # cyradm localhost
I get prompted for IMAP password, I type in the cyrus password, but system says it is invalid. May I ask where should I set the password for cyrus? I already changed the default by
# passwd cyrus
This largely depends on the authentication method used. If not specified, cyradm will try to negotiate the best method available. You can specify the auth method with "--auth=<mech>" Now, here is a quick auth-map:
MECH
---------------------------------------------------------------
PLAIN (depends on "pwcheck_method:" in imapd.conf, can be "auxprop", "saslauthd" or "pwcheckd")
CRAM-MD5 uses SASL-DB2
DIGEST-MD5 uses SASL-DB2
KERBEROS_IV Kerberos 4 framework
GSSAPI Kerberos 5 framework
OTP One-Time Passwords, stored in SASL-DB2
NTLM Either Windows NT Domain or SASL-DB (fallback)
SRP ??
LOGIN SASL-DB2
----------------------------------------------------------------
"auxprop" is a DB, either a local SASL-DB2 or SQL (MySQL and PgSQL)
"pwcheckd" is an osoleted daemod to check user/pass against system accounts
"saslauthd" can check against a variety of sources, local accounts, PAM, LDAP, SASL-DB2, Kerberos,...
Thanks Nick for your chart. My system default is
# more /etc/sysconfig/saslauthd SASL_AUTHMECH=pam SASL_MECH_OPTIONS= SASLAUTHD_OPTS=
I wish to use CRAM-MD5 with the ability to change to LDAP in the future. Should I change SASL_AUTHMECH=sasl-db2?
Regards, Norman Zhang --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
