Cyrus + SASL + PAM + LDAP

Imre Veres imre.veres at gmail.com
Thu May 4 09:01:42 EDT 2006 

> > sasl_pwcheck_method: auxprop
>
> Change:
> sasl_pwcheck_method: saslauthd
>
> -Igor

Thanks for that _really_ fast answer! now I've change that line, the results:

1. I CAN authenticate perfectly with an LDAP user or sasldb user
through imap :-):

# imtest -a testuser -l0 -m login 192.168.1.10

S: * OK gape Cyrus IMAP4 v2.1.18-IPv6-Debian-2.1.18-1ubuntu1 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE ANNOTATEMORE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN testuser {8}
S: + go ahead
C: <omitted>
S: L01 OK User logged in
Authenticated.
Security strength factor: 0
C: Q01 LOGOUT
Connection closed.

# imtest -a cyrus -l0 -m login 192.168.1.10

S: * OK gape Cyrus IMAP4 v2.1.18-IPv6-Debian-2.1.18-1ubuntu1 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE AUTH=NTLM
AUTH=DIGEST-MD5 AUTH=CRAM-MD5 ANNOTATEMORE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cyrus {10}
S: + go ahead
C: <omitted>
S: L01 OK User logged in
Authenticated.
Security strength factor: 0
C: Q01 LOGOUT
Connection closed.

2. I cannot authenticate with cyradm and LMTP:

cyradm --user cyrus localhost
IMAP Password:
              Login failed: authentication failure at
/usr/lib/perl5/Cyrus/IMAP/Admin.pm line 118
cyradm: cannot authenticate to server as user cyrus

lmtp logs:

May  4 14:56:11 gape cyrus/lmtpd[7054]: connection from
localhost.localdomain [127.0.0.1]
May  4 14:56:14 gape cyrus/lmtpd[7054]: badlogin: 127.0.0.1 LOGIN
SASL(-13): authentication failure: checkpass failed
May  4 14:56:14 gape postfix/lmtp[7053]: 94BCC1C228:
to=<imre.veres at company.hu>, relay=127.0.0.1[127.0.0.1], delay=27,
status=deferred (Authentication failed: SASL authentication failed;
server 127.0.0.1[127.0.0.1] said: 501 5.5.4 undefined error!)

I must use lmtp and cyradm, so what should I check next? (Or is it a
cyrus-imap question?)

Cheers,

Imre Veres

More information about the Cyrus-sasl mailing list