Cyrus + SASL + PAM + LDAP

Igor Brezac igor at ipass.net
Thu May 4 09:14:25 EDT 2006


On Thu, 4 May 2006, Imre Veres wrote:

>> > sasl_pwcheck_method: auxprop
>> 
>> Change:
>> sasl_pwcheck_method: saslauthd
>> 
>> -Igor
>
> Thanks for that _really_ fast answer! now I've change that line, the results:
>
> 1. I CAN authenticate perfectly with an LDAP user or sasldb user
> through imap :-):
>
> # imtest -a testuser -l0 -m login 192.168.1.10
>
> S: * OK gape Cyrus IMAP4 v2.1.18-IPv6-Debian-2.1.18-1ubuntu1 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE ANNOTATEMORE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN testuser {8}
> S: + go ahead
> C: <omitted>
> S: L01 OK User logged in
> Authenticated.
> Security strength factor: 0
> C: Q01 LOGOUT
> Connection closed.
>
> # imtest -a cyrus -l0 -m login 192.168.1.10
>
> S: * OK gape Cyrus IMAP4 v2.1.18-IPv6-Debian-2.1.18-1ubuntu1 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE AUTH=NTLM
> AUTH=DIGEST-MD5 AUTH=CRAM-MD5 ANNOTATEMORE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN cyrus {10}
> S: + go ahead
> C: <omitted>
> S: L01 OK User logged in
> Authenticated.
> Security strength factor: 0
> C: Q01 LOGOUT
> Connection closed.
>
> 2. I cannot authenticate with cyradm and LMTP:
>
> cyradm --user cyrus localhost
> IMAP Password:
>             Login failed: authentication failure at
> /usr/lib/perl5/Cyrus/IMAP/Admin.pm line 118
> cyradm: cannot authenticate to server as user cyrus

Try cyradm --user cyrus --auth login localhost

> lmtp logs:
>
> May  4 14:56:11 gape cyrus/lmtpd[7054]: connection from
> localhost.localdomain [127.0.0.1]
> May  4 14:56:14 gape cyrus/lmtpd[7054]: badlogin: 127.0.0.1 LOGIN
> SASL(-13): authentication failure: checkpass failed
> May  4 14:56:14 gape postfix/lmtp[7053]: 94BCC1C228:
> to=<imre.veres at company.hu>, relay=127.0.0.1[127.0.0.1], delay=27,
> status=deferred (Authentication failed: SASL authentication failed;
> server 127.0.0.1[127.0.0.1] said: 501 5.5.4 undefined error!)

What username are you sending?

>
> I must use lmtp and cyradm, so what should I check next? (Or is it a
> cyrus-imap question?)
>
> Cheers,
>
> Imre Veres
>

-- 
Igor


More information about the Cyrus-sasl mailing list