cyradm cannot connect to cyrus imap server

Willy Offermans Willy at Offermans.Rompen.nl
Fri Feb 21 04:50:39 EST 2014 

Dear Cyrus Friends,

On Thu, Feb 20, 2014 at 04:12:29PM -0600, Scott Lambert wrote:
> On Thu, Feb 20, 2014 at 10:35:42AM +0100, Willy Offermans wrote:
> > Dear Cyrus Friends,
> >
> > I need your help to solve the following:
> >
> > I'm setting up cyrus on my new FreeBSD 10.0 server. I have used the following
> > package: cyrus-imapd24-2.4.17_4
> >
> > If I test my setup with imtest, I get connection to the imap server.
> >
> > MyName at MyComputer:~$ imtest -m login -u username -a username -s localhost
> >
> > <It works>
> >
> > However, if I try to connect via cyradm, I cannot login.
> >
> > MyName at MyComputer:~$ cyradm --user username localhost
> > Password:
> > verify error:num=19:self signed certificate in certificate chain
> > cyradm: cannot authenticate to server with  as username
> >
> 
> You specified your authentication mechanism to be "login" with imtest.
> 
> You did not specify an authentication mechanism with cyradm.
> 
> Perhaps it would work if you try :
> 
> cyradm --auth login --user username localhost
> 
> That is only a guess.
> 
> -- 
> Scott Lambert                    KC5MLE                       Unix SysAdmin
> lambert at lambertfam.org

Indeed, I needed to specify an authentication mechanism and then I could
use the command line interface of cyradm:

cyradm --user username --auth PLAIN localhost

If we are at this point anyway, I was wondering what I need to do to use
another authentication mechanism. Is this possible? And what do I need to
consider?

The IMAP server response with the following authentication mechanism:

AUTH=SCRAM-SHA-1 AUTH=DIGEST-MD5 AUTH=CRAM-MD5 AUTH=NTLM AUTH=PLAIN AUTH=LOGIN

If I login with SCRAM-SHA-1:

MyName at MyComputer:~$ cyradm --user username --auth SCRAM-SHA-1 localhost
Password: 
verify error:num=19:self signed certificate in certificate chain
cyradm: cannot authenticate to server with SCRAM-SHA-1 as username

In the logs:

Feb 21 09:48:36 MyComputer imap[17576]: badlogin: localhost [127.0.0.1] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]

I'm pretty sure that the user is registered in the ldap database. 


-- 
Met vriendelijke groeten,
With kind regards,
Mit freundlichen Gruessen,
De jrus wah,

Wiel

*************************************
W.K. Offermans
Home:   +31 45 544 49 44
Mobile: +31 681 15 87 68
e-mail: Willy at Offermans.Rompen.nl

More information about the Info-cyrus mailing list