Authenticating Outlook to Cyrus-Imap
Dr. Lars Hanke
lars at lhanke.de
Mon Mar 14 17:24:47 EST 2005
Hi there,
I - well not me actually - would like to use Outlook to access my Cyrus-Imap
mailstore. I've setup Cyrus to use SASL auxprop for ldapdb authentication
using DIGEST-MD5. If I test with:
imtest -u user -a user -m NTLM server
everything is fine. However, login from Outlook fails, producing the following
auth.log:
Mar 14 23:16:54 localhost cyrus/imapd[20511]: NTLM server step 1
Mar 14 23:16:54 localhost cyrus/imapd[20511]: client flags: ffffb207
Mar 14 23:16:54 localhost cyrus/imapd[20511]: NTLM server step 2
Mar 14 23:16:54 localhost cyrus/imapd[20511]: client user: user
Mar 14 23:16:54 localhost cyrus/imapd[20511]: client domain: UAC
Mar 14 23:16:54 localhost cyrus/imapd[20511]: DIGEST-MD5 client step 2
Mar 14 23:16:54 localhost cyrus/imapd[20511]: DIGEST-MD5 client step 2
Mar 14 23:16:54 localhost cyrus/imapd[20511]: DIGEST-MD5 client step 3
Mar 14 23:16:54 localhost cyrus/imapd[20511]: calculating NT response
Mar 14 23:16:54 localhost cyrus/imapd[20511]: incorrect NTLM response
imtest differs in the following lines:
Mar 14 23:17:42 localhost cyrus/imapd[20511]: client flags: 207
Mar 14 23:17:47 localhost cyrus/imapd[20511]: client domain: VERDANI
I assume that the domain is hashed into the NTLM authentication token. The
local test uses the server name, whilst the Outlook test uses the domain as
supplied from my samba PDC.
Is there a sensible solution for this issue?
Have fun,
- lars.
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus
mailing list