replication does not work

Willy Offermans Willy at Offermans.Rompen.nl
Fri Feb 21 09:48:20 EST 2014 

Dear cyrus friends,

I like to use the replication feature of cyrus.

On the backend I changed the cyrus.conf file. I added:
<syncserver    cmd="/usr/local/cyrus/bin/sync_server" listen="csync">
to the SERVICES.

On the client side I changed the imapd.conf file and cyrus.conf file in the
following way.
cyrus.conf:
I added
<syncclient    cmd="/usr/local/cyrus/bin/sync_client -l -r">
to the START section.
imapd.conf:
I added
<sync_host: MyComputer.example.com>
<sync_authname: username>
<sync_log: 1>
<sync_password: secret>

I also did some changes to the services file to add csync and portnumbers.

If I run 

ClientComputer# synctest -u username -a username -t '' -m PLAIN MyComputer.example.com
S: * SASL SCRAM-SHA-1 DIGEST-MD5 CRAM-MD5 NTLM
S: * STARTTLS
S: * COMPRESS DEFLATE
S: * OK MyComputer Cyrus sync server v2.4.17
C: STARTTLS
S: OK Begin TLS negotiation now
verify error:num=19:self signed certificate in certificate chain
TLS connection established: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
S: * SASL SCRAM-SHA-1 DIGEST-MD5 CRAM-MD5 NTLM PLAIN LOGIN
S: * OK MyComputer Cyrus sync server v2.4.17
Please enter your password:
C: AUTHENTICATE PLAIN sdjaskjfksfhsdfksfdasdkkfjsfdaksjkfjksfjksfjlfjkfjkj
S: OK Success (tls protection)
Authenticated.
Security strength factor: 256

So everything seems to be fine....

However if I restart imapd on the client, I do not get any synchronization.
I found the following message in the logs of the client:
Feb 20 16:01:42 ClientComputer sync_client[36229]: couldn't authenticate to backend server: authentication failure


I found the following message in the logs of the backend:

Feb 20 16:01:39 MyComputer syncserver[15127]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
Feb 20 16:01:39 MyComputer syncserver[15127]: badlogin: ClientComputer.example.com [192.168.0.15] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]
Feb 20 16:01:57 MyComputer syncserver[15127]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
Feb 20 16:01:57 MyComputer syncserver[15127]: badlogin: ClientComputer.example.com [192.168.0.15] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]
Feb 20 16:02:30 MyComputer syncserver[15127]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
Feb 20 16:02:30 MyComputer syncserver[15127]: badlogin: ClientComputer.example.com [192.168.0.15] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]
Feb 20 16:03:33 MyComputer syncserver[15127]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
Feb 20 16:03:33 MyComputer syncserver[15127]: badlogin: ClientComputer.example.com [192.168.0.15] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]
Feb 20 16:05:36 MyComputer syncserver[15136]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
Feb 20 16:05:36 MyComputer syncserver[15136]: badlogin: ClientComputer.example.com [192.168.0.15] SCRAM-SHA-1 [SASL(-13): user not found: unable to canonify user and get auxprops]

Or if I directly call for sync_client:

MyComputer# /usr/local/cyrus/bin/sync_client -o -l -S 192.168.X.Y -r
MyComputer# Can not connect to server '192.168.X.Y'


I guess I'm missing the authentication mechanism for the sync_client, but
I'm not sure. Can someone help me out?


-- 
Met vriendelijke groeten,
With kind regards,
Mit freundlichen Gruessen,
De jrus wah,

Wiel

*************************************
 W.K. Offermans
Home:   +31 45 544 49 44
Mobile: +31 681 15 87 68
e-mail: Willy at Offermans.Rompen.nl

More information about the Info-cyrus mailing list