Hello, Years ago, I set up an SMTP server on Debian 7.5, running Sendmail configured for SASL authentication using an LDAP directory. I am now trying to set up a new one on Debian 11.5 in pretty much the same configuration, but SMTP auth does not work. I have verified that nslcd and saslauthd are running, the sendmail, PAM and NSS configurations all look good, and ldapsearch returns a result using the settings from pam_ldap.conf. When I open a connection to the old server and issue AUTH PLAIN or AUTH LOGIN, I can authenticate with my base64 LDAP credentials as expected. But when I do the same on the new server, I get a "535 5.7.0 authentication failed" response.
I ran a tcpdump on this SMTP server during an auth attempt, and there was no traffic to or from the LDAP server. I literally copied all of the configs over from the old server and Sendmail starts up fine, but still no auth. Does anyone know where I might look for the breakage? Old server (works): - Sendmail 8.14.4 - SASL (libs/modules/bin) 2.1.25 - libnss-ldap 264 - libpam-ldap 184 New server (doesn't work): - Sendmail 8.15.2 - SASL (lib/modules/bin) 2.1.27 - libnss-ldapd 0.9.11 (because libnss-ldap is deprecated) - libpam-ldap 186 Thanks! Dave -- Dave Parker '11 Database & Systems Administrator Utica University Integrated Information Technology Services 315-792-3229 He/Him
