AUTH failure (LOGIN): no mechanism available (-4) SASL(-4): no mechanism available: checkpass failed

Tue Jun 13 06:34:11 EDT 2006

Hi list,

I'm trying to make Sendmail 8.13.6 + cyrus-sasl-2.1.21 work with AUTH on
Solaris9.

The problem is that I don't get AUTH verification running at all.

cyrus-sasl2 is installed precompiled from blastwave
(http://www.blastwave.org).

sendmail is build using blastwaves gcc. (SASLv2 is enabled then using
/usr/lib/sendmail -bt -d0.1 )

solaris9# /usr/lib/sendmail -bt -d0.1

Version 8.13.6

 Compiled with: DNSMAP LDAPMAP LOG MAP_REGEX MATCHGECOS MILTER MIME7TO8

                MIME8TO7 NAMED_BIND NDBM NETINET NETUNIX NEWDB
PICKY_HELO_CHECK

                PIPELINING SASLv2 SCANF STARTTLS USERDB USE_LDAP_INIT
XDEBUG

And the AUTH mechanisms are supported:

solaris9# telnet localhost 25

Trying 127.0.0.1...

Connected to localhost.

Escape character is '^]'.

220 solaris9.vattenfall.se ESMTP mailer ready at Tue, 13 Jun 2006
12:27:45 +0200 (MEST)

EHLO localhost

250-solaris9.vattenfall.se Hello localhost [127.0.0.1], pleased to meet
you

250-ENHANCEDSTATUSCODES

250-PIPELINING

250-8BITMIME

250-SIZE 20480000

250-DSN

250-ETRN

250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN

250-DELIVERBY

250 HELP

And cyrus-sasl2 (by blastwave) is compiled to support these mechanisms:

solaris9# /opt/csw/sbin/saslauthd -v

saslauthd 2.1.21

authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap

The client I want use with this installation is MS Outlook Express or MS
Exchange.

So far I only tested the installation using MS OE 6 (AUTH LOGIN).

I've follow the steps on Claus guide at:

http://www.sendmail.org/~ca/email/auth.html

So I've created a config-file for sendmail:
/opt/csw/lib/sasl2/Sendmail.conf, which contains

pwcheck_method: shadow (sendmail was running as root, meaning that it
should be able to read /etc/shadow)

I've tried changing to "pwcheck_method: saslauthd" and starting
/opt/csw/sbin/saslauthd, with the params -a shadow (or -a pam) -V to see
if that would worked better, but no... (I've also checked that saslauthd
is running as root, to be able to read the /etc/shadow)

I've also tried to use sasldb(users) instead of /etc/shadow, (by
creating /opt/csw/sbin/saslpasswd2 -f /opt/csw/etc/sasldb2/sasldb2
testuser) and change pwcheck_method: sasldb

But all those different techniques doesn't seem to work at all, and I
can't find the missing peace that I've missed.

This is what i get this error in the maillog (using LogLevel=14):

Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 801593 mail.warning]
k5D9b7GO001009: AUTH failure (LOGIN): no mechanism available (-4)
SASL(-4): no mechanism available: checkpass failed

And this in the syslog:

Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 702911 auth.error] unknown
password verifier

I've google:d around and read several pages (only one containing a
problem like mine):

http://groups.google.com/group/comp.mail.sendmail/browse_thread/thread/6
25affd7aa7d5c6e/da4c0aa2209d5386%23da4c0aa2209d5386

And that thead wasn't helpful since it's the older sasl+sendmail
software. (I haven't been using the old sasl-library at all)

Any clues of what I'm doing wrong or what I have missed? or directions
where I should look?

TIA,

/P

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.andrew.cmu.edu/mailman/private/cyrus-sasl/attachments/20060613/c0feb199/attachment.html