Check your auth.log in /var/log... does it tell you anything? You may (probably) will have to add a debug flag in your /etc/pam.d/<whatever> file to really get any useful information out of it.
-Mike On 7/19/06, Leandro Melo de Sales <[EMAIL PROTECTED]> wrote:
Hi! I'm trying to setup postfix with authentication. I have PAM/NSSwitch configured to use LDAP backend. I also installed cyrus-sasl, but when I test authentication I got some errors. What I'm doing wrong? Some relevant information: /etc/sasl2/smtpd.conf pwcheck_method:pam --------------------------------------- telnet port 25: embedded postfix # telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 Servidor de E-Mail Embedded EHLO mydomain.com 250-embedded.mydomain.com 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-STARTTLS 250 8BITMIME quit 221 Bye Connection closed by foreign host. -------------------------------------------- log: Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAFASgKAAAADw== Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: decoded response: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: NTLM server step 1 Jul 19 11:20:27 embedded postfix/smtpd[31410]: client flags: ffff8207 Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: uncoded challenge: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 334 TlRMTVNTUAACAAAAOgA6ADAAAAAFggIAxSfRzXMryGYAAAAAAAAAAAAAAAAAAAAARQBNAEIARQBEAEQARQBEAC4ARQBNAEIARQBEAEQARQBEAC4AVQBGAEMARwAuAEUARABVAC4AQgBSAA== Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: TlRMTVNTUAADAAAAGAAYAI4AAAAYABgApgAAACgAKABIAAAADgAOAHAAAAAQABAAfgAAAAAAAAC+AAAABYIAAgUBKAoAAAAPZQBtAGIAZQBkAGQAZQBkAC4AdQBmAGMAZwAuAGUAZAB1AC4AYgByAGwAZQBhAG4AZAByAG8AQwBPAE0AUABPAFIAMAA2AFhBruTJ7QP1D2kjfvHaMU0IHH0O2a0i6qfimYU8bx0zsRE2W3N/+wpohdPaH5f26Q== Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: decoded response: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: NTLM server step 2 Jul 19 11:20:27 embedded postfix/smtpd[31410]: client user: leandro Jul 19 11:20:27 embedded postfix/smtpd[31410]: client domain: embedded.ufcg.edu.br Jul 19 11:20:27 embedded postfix/smtpd[31410]: warning: SASL authentication failure: no secret in database Jul 19 11:20:27 embedded postfix/smtpd[31410]: warning: unknown[192.168.1.100]: SASL NTLM authentication failed Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 535 Error: authentication failed Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: AUTH NTLM Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: sasl_method NTLM Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: uncoded challenge: Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 334 main.cf: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = $myhostname broken_sasl_auth_clients = yes smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, check_relay_domains -- [email protected] mailing list
-- ________________________________ Michael E. Crute http://mike.crute.org I may not have gone where I intended to go, but I think I have ended up where I intended to be. --Douglas Adams -- [email protected] mailing list
