Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 26 subscribers
  • Views 623 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG 18.0.4 BUG SMTP inbound->Receipient validation LDAP connection fails wrong credentials

Fred_B

While going tru the smtpd_main.log  I came across this statement:

Warning: ACL "warn" statement skipped: condition test deferred: failed to bind the LDAP connection to server X.X.X.X:389 - LDAP error 49: Invalid credentials

Its followed by "Accepted Upstream host" and "new mail queued, add to inqueue". 

As inbound email is delivered and there is nothing showing in the log viewer, a user would never notice it tru the webadmin GUI.  

Recipient Validation is currently set to AD but judging from this entry in the smtpd_main.log it has a bug. The credentials are correct, they test OK and are also used when users logon with SSL VPN and OTP. 

I tested it and the XG will not reject recipients that do not exist locally.



This thread was automatically locked due to age.
  • +1

    Problem turns out to be the name attribute for bind to use instead of the account name:

    Bind

    CN=ADQ Service,CN=Users,DC=domein,DC=com works versus the account user CN=ADQ_Service,CN=Users,DC=domein,DC=com doesn't work

    Base

    DC=domain,DC=com