On Tue, Jan 04, 2022 at 09:14:45PM -0500, Ken Wright wrote:
> > > JanĀ 4 19:08:47 grace postfix/smtps/smtpd[17286]: fatal: no SASL
> > > authentication mechanisms
> >
> > The selected SASL backend (Cyrus or Dovecot) is not configured to
> > support any usable SASL mechanisms.
>
> kwright@grace:~$ postconf -nf
Nothing SASL-related in main.cf. Some relevant defaults are:
smtpd_sasl_mechanism_filter = !external, static:rest
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
These should not result in an empty mechanism list.
> kwright@grace:~$ postconf -Mf
> smtps inet n - y - - smtpd
> -o syslog_name=postfix/smtps
> -o smtpd_tls_wrappermode=yes
> -o smtpd_sasl_auth_enable=yes
> -o
> smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject
> -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
> -o smtpd_sasl_type=dovecot
> -o smtpd_sasl_path=private/auth
This looks reasonable, but now you need to actually have a suitable
SASL configuration on the Dovecot side...
Is "Dovecot" configured to create the /var/spool/postfix/private/auth
socket? Did that happen? Is "Dovecot" willing to support the expected
SASL mechanisms (typically "PLAIN")?
I have:
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
passdb {
driver = pam
}
There are many other possibilities. Perhaps, instead of doing all the
integration work yourself, you may be better off with a "turnkey" email
server such as <https://mailinabox.email>?
--
Viktor.
