AUTH failure (LOGIN): no mechanism available (-4) SASL(-4): no
mechanism available: checkpass failed
fredrik.pettai at vattenfall.com
fredrik.pettai at vattenfall.com
Tue Jun 13 06:34:11 EDT 2006
Hi list,
I'm trying to make Sendmail 8.13.6 + cyrus-sasl-2.1.21 work with AUTH on
Solaris9.
The problem is that I don't get AUTH verification running at all.
cyrus-sasl2 is installed precompiled from blastwave
(http://www.blastwave.org).
sendmail is build using blastwaves gcc. (SASLv2 is enabled then using
/usr/lib/sendmail -bt -d0.1 )
solaris9# /usr/lib/sendmail -bt -d0.1
Version 8.13.6
Compiled with: DNSMAP LDAPMAP LOG MAP_REGEX MATCHGECOS MILTER MIME7TO8
MIME8TO7 NAMED_BIND NDBM NETINET NETUNIX NEWDB
PICKY_HELO_CHECK
PIPELINING SASLv2 SCANF STARTTLS USERDB USE_LDAP_INIT
XDEBUG
And the AUTH mechanisms are supported:
solaris9# telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 solaris9.vattenfall.se ESMTP mailer ready at Tue, 13 Jun 2006
12:27:45 +0200 (MEST)
EHLO localhost
250-solaris9.vattenfall.se Hello localhost [127.0.0.1], pleased to meet
you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE 20480000
250-DSN
250-ETRN
250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN
250-DELIVERBY
250 HELP
And cyrus-sasl2 (by blastwave) is compiled to support these mechanisms:
solaris9# /opt/csw/sbin/saslauthd -v
saslauthd 2.1.21
authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap
The client I want use with this installation is MS Outlook Express or MS
Exchange.
So far I only tested the installation using MS OE 6 (AUTH LOGIN).
I've follow the steps on Claus guide at:
http://www.sendmail.org/~ca/email/auth.html
So I've created a config-file for sendmail:
/opt/csw/lib/sasl2/Sendmail.conf, which contains
pwcheck_method: shadow (sendmail was running as root, meaning that it
should be able to read /etc/shadow)
I've tried changing to "pwcheck_method: saslauthd" and starting
/opt/csw/sbin/saslauthd, with the params -a shadow (or -a pam) -V to see
if that would worked better, but no... (I've also checked that saslauthd
is running as root, to be able to read the /etc/shadow)
I've also tried to use sasldb(users) instead of /etc/shadow, (by
creating /opt/csw/sbin/saslpasswd2 -f /opt/csw/etc/sasldb2/sasldb2
testuser) and change pwcheck_method: sasldb
But all those different techniques doesn't seem to work at all, and I
can't find the missing peace that I've missed.
This is what i get this error in the maillog (using LogLevel=14):
Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 801593 mail.warning]
k5D9b7GO001009: AUTH failure (LOGIN): no mechanism available (-4)
SASL(-4): no mechanism available: checkpass failed
And this in the syslog:
Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 702911 auth.error] unknown
password verifier
I've google:d around and read several pages (only one containing a
problem like mine):
http://groups.google.com/group/comp.mail.sendmail/browse_thread/thread/6
25affd7aa7d5c6e/da4c0aa2209d5386%23da4c0aa2209d5386
And that thead wasn't helpful since it's the older sasl+sendmail
software. (I haven't been using the old sasl-library at all)
Any clues of what I'm doing wrong or what I have missed? or directions
where I should look?
TIA,
/P
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.andrew.cmu.edu/mailman/private/cyrus-sasl/attachments/20060613/c0feb199/attachment.html
More information about the Cyrus-sasl
mailing list