From owner-freebsd-questions Tue Jan 7 12:16:59 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AE3EF37B401 for ; Tue, 7 Jan 2003 12:16:56 -0800 (PST) Received: from dante.clinedavis.com (dante.clinedavis.com [207.16.182.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9D8EB43ED4 for ; Tue, 7 Jan 2003 12:16:55 -0800 (PST) (envelope-from jong@clinedavis.com) Received: from popper.clinedavis.com (popper [192.168.10.25]) by dante.clinedavis.com (8.11.6/8.11.6) with ESMTP id h07KPqr09900 for ; Tue, 7 Jan 2003 15:25:52 -0500 Received: from sandbox (cdmfw_outside.clinedavis.com [207.16.182.5]) by popper.clinedavis.com (8.12.3/8.12.3) with ESMTP id h07KFlOv008039; Tue, 7 Jan 2003 15:15:47 -0500 (EST) (envelope-from jong@clinedavis.com) Subject: cyrus imap auth problems From: jonathan giles To: freebsd-questions@FreeBSD.ORG Cc: jong@clinedavis.com Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.5 (1.0.5-1a) Date: 07 Jan 2003 15:15:51 -0500 Message-Id: <1041970551.10071.52.camel@sandbox.clinedavis.com> Mime-Version: 1.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi: I have been looking around for the answer to this, and have not found it. I am running... 4.7-RELEASE FreeBSD with... cyrus-imapd-2.1.10 cyrus-sasl-2.1.9_1 installed as ports. Compilation and installation seems fine but... I trying to authenticate with the standard shadow password, but keep getting this in the log... Jan 7 14:20:10 popper2 saslauthd[113]: AUTHFAIL: user=user service=imap realm= [PAM auth error] Jan 7 14:20:10 popper2 imapd[158]: badlogin: localhost.clinedavis.com[127.0.0.1] plaintext user SASL(-13): authentication failure: checkpass failed imapd.conf includes the following... sasl_pwcheck_method: saslauthd saslauthd is started using -a pam in /usr/local/etc/rc.d/saslauthd.sh I checked the processes, and it shows up. /etc/pam.conf is standard conf with only one line for imap... imap auth required pam_unix.so try_first_pass /usr/local/lib/sasl2/Cyrus.conf has... pwcheck_method: saslauthd it did have pwcheck_method: pwcheck but I changed it based on the notes that came off standard output during compilation. I have tried changing saslauthd to start with -a shadow, but it does not recognize the service. My understanding of this is that imap uses saslauthd for auth, saslauthd is looking, or should be looking at pam, and pam has a service (imap) configured for auths. However, it doesn't work. I am very new to pam, but would like to get it to work so I can do ldap auths instead of shadow auths. Any help, pointers to howtos I have not found about it, suggestions would be greatly appreciated. Thanks! jg -- Jonathan Giles Senior Unix Administrator Cline Davis Mann, Inc. -- Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply e-mail. Please advise immediately if you or your employer do not consent to Internet e-mail of this kind. Opinions, conclusions, and other information in this message that do not relate to the official business of CDM shall be understood as neither given nor endorsed by it. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message