murder authentication frontend -> backend problem
cyrus @ Sylconia
cyrus at sylconia.nl
Thu Jun 12 10:43:12 EDT 2008
Hello,
currently i am setting up a loadbalanced frontend -> backend cyrus imap
solution (murder).
Currently we are running 2 frontends (1 mupdate master on frontend) en 1
backend server.
software Cyrus POP3 Murder v2.2.12-Invoca-RPM-2.2.12-8.1.RHEL4 on
Centos 4.4
backend imapd.conf:
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: cyrus
sievedir: /var/lib/imap/sieve
sendmail: /usr/sbin/sendmail
hashimapspool: true
sasl_pwcheck_method: saslauthd
sasl_mech_list: PLAIN
allowplaintext: yes
virtdomains: userid
defaultdomain: localhost.localdomain
unixhierarchysep: yes
allowusermoves: yes
tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_ca_file: /usr/share/ssl/certs/ca-bundle.crt
tls_require_cert: 0
mupdate_server: server01
mupdate_port: 3905
mupdate_authname: cyrus
mupdate_username: cyrus
mupdate_password: cyrus
proxyservers: murder
frontend imapd.conf:
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: cyrus
sasl_pwcheck_method: saslauthd
sasl_mech_list: PLAIN
sasl_minimum_layer: 0
allowplaintext: yes
virtdomains: userid
defaultdomain: localhost.localdomain
unixhierarchysep: yes
allowusermoves: yes
tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_ca_file: /usr/share/ssl/certs/ca-bundle.crt
mupdate_server: server01
mupdate_port: 3905
mupdate_authname: cyrus
mupdate_username: cyrus
mupdate_password: cyrus
# How to get to backends
server05_sylconia_nl_authname: murder
server05_sylconia_nl_password: murder
proxy_authname: murder
I am using LDAP to authenticate users which is working fine. When i
login with Thunderbird for example to the backend their is nog problem
but when i try to login via the frontend. I receive the following error
Jun 12 16:31:46 server02 imap[7181]: login: [192.168.1.100]
email at domain.nl plaintext
Jun 12 16:31:46 server02 imap[7181]: Doing a peer verify
Jun 12 16:31:46 server02 imap[7181]: verify error:num=18:self signed
certificate
Jun 12 16:31:46 server02 imap[7181]: received server certificate
Jun 12 16:31:46 server02 imap[7181]: starttls: TLSv1 with cipher
AES256-SHA (256/256 bits new) no authentication
Jun 12 16:31:46 server02 imap[7181]: couldn't authenticate to backend
server: no mechanism available
any suggestions or tips?
Regards
Constan
More information about the Info-cyrus
mailing list