This is a howto for installing the Cyrus IMAP server and SASL from source with support for the Kerberos GSSAPI network security mechanism which provides mutual authentication and confidentiality and integrity for the IMAP protocol. The procedure was tested under FreeBSD-6.2, but it should applicable to any similar linux/Unix distribution.

Heimdal is a popular BSD licencend Kerbeors implementation. It has an implementation of Kerberos GSSAPI, which we will to use in this howto. Alternatively, the MIT Kerberos implementation can be used instead of Heimdal.

• Download from http://www.h5l.org/dist/src/heimdal-1.1.tar.gz

• Install

configure
make
make install

This will install heimdal under /usr/heimdal

The db3 is only one possible alternative. Consult cyrus documentation for other back-end options.

• On Freebsd :

pkg_add -vrf db3

• On Debian : NA

• Download from ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/

• Install

/configure --sysconfdir=/usr/local/etc --with-cyrus-user=cyrus --with-cyrus-group=cyrus --with-sasl=/usr/local --with-bdb-libdir=/usr/local/lib --with-bdb-incdir=/usr/local/include/db3 --with-bdb=db3 --with-saslauthd --enable-plain
make
make install

• Download from ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/

• Install

configure --sysconfdir=/usr/local/etc --with-cyrus-user=cyrus --with-cyrus-group=cyrus --with-sasl=/usr/local --with-bdb-libdir=/usr/local/lib --with-bdb-incdir=/usr/local/include/db3 --with-bdb=db3 --prefix=/usr/local/cyrus
make
make install

/usr/cyrus/bin/imapd
/usr/cyrus/bin/master&

imtest -m GSSAPI -r EXAMPLE.COM imap.example.com

Please refer to this article : How to configure cyrus support for SASL GSSAPI Kerberos authentication