1

Topic: moving to new server

after moving iRedmail to a new machine i received this message in maillog. Where should I correct password or copy oryginal file ?
thanks.

Mar 20 06:37:20 mail amavis[4662]: (04662-01) (!)connect_to_ldap: bind failed: LDAP_INVALID_CREDENTIALS
Mar 20 06:37:20 mail amavis[4662]: (04662-01) (!!)TROUBLE in process_request: connect_to_ldap: bind failed at (eval 92) line 106, <DATA> line 392.
Mar 20 06:37:20 mail amavis[4662]: (04662-01) (!)Requesting process rundown after fatal error
Mar 20 06:37:20 mail amavis[4663]: (04663-01) (!)connect_to_ldap: bind failed: LDAP_INVALID_CREDENTIALS
Mar 20 06:37:20 mail amavis[4663]: (04663-01) (!!)TROUBLE in process_request: connect_to_ldap: bind failed at (eval 92) line 106, <DATA> line 392.
Mar 20 06:37:20 mail amavis[4663]: (04663-01) (!)Requesting process rundown after fatal error

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: moving to new server

m.krzaczek wrote:

Mar 20 06:37:20 mail amavis[4662]: (04662-01) (!)connect_to_ldap: bind failed: LDAP_INVALID_CREDENTIALS

Please update LDAP bind dn/password in /etc/amavisd.conf (or maybe /etc/amavisd/amavisd.conf, or /etc/amavis/conf.d/50-user).

3

Re: moving to new server

hi
i had done it before ...
vi /root/iRedMail/iRedMail.tips :

OpenLDAP:
    * LDAP suffix: dc=XXX,dc=net
    * LDAP root dn: cn=Manager,dc=XXX,dc=net, password: 23qq232q232
    * LDAP bind dn: cn=vmail,dc=XXX,dc=net, password: 123402419222953312613723323513
    * LDAP admin dn: cn=vmailadmin,dc=XXX,dc=net, password: 123402419222953312613723323513
    * LDAP base dn: o=domains,dc=XXX,dc=net
    * LDAP admin base dn: o=domainAdmins,dc=XXX,dc=net

vi /etc/amavisd.conf :

# Integrate Amavisd-new with OpenLDAP.
$enable_ldap    = 1;    # 1 -> enable, 0 -> disable.
$default_ldap   = {
    hostname        => "127.0.0.1",
    port            => 389,
    version         => 3,
    tls             => 0,
    timeout         => 120,
    base            => "o=domains,dc=XXX,dc=net",
    scope           => "sub",
    query_filter    => "(&(objectClass=mailUser)(objectClass=amavisAccount)(accountStatus=active)(|(mail=%m)(shadowAddress=%m)))",
    bind_dn         => "cn=vmail,dc=XXX,dc=net",
    bind_password   => "123402419222953312613723323513",
};

(passwords are fake here)

4

Re: moving to new server

Is OpenLDAP running? Can you connect to LDAP server with bind dn/password? Test it with below command:

# ldapsearch -X -D 'cn=vmail,dc=XXX,dc=net' -W '(&(objectClass=mailUser)(objectClass=amavisAccount)(accountStatus=active)(|(mail=USER@DOMAIN.LTD)(shadowAddress=USER@DOMAIN.LTD))"

Replace 'USER@DOMAIN.LTD' by a real email address.