Re: cyradm authentication error
Kevin Williams wrote: My imapd.conf file looks as follows: configdirectory: /var/imap partition-default: /var/spool/imap admins: cyrus root sasl_pwcheck_method: saslauthd I can successfully authenticate using the imtest command. When I tried to use cyradm, I originally got a can't locat Cyrus/IMAP/Shell.pm in @INC. I moved all necessary (I think) folders from the folder they were installed in (/user/local/lib instead of /user/lib) to be included in the path. Now when I run cyradm, the program just hangs and I get the following error in my imapd.log file: badlogin: web01[127.0.0.1] DOGEST-MD% [SASL(-13): authentication failure: client response doesn't match what we generated]. When I enter the sasldblistuser2 command, I get the following: [EMAIL PROTECTED]: userPassword. I had this problem too. The answer is actually in the docs (install-auth), but it can take days before you find it :( The whole authentication business is pretty badly documented, IMHO. use sasl_pwcheck_method: auxprop in imapd.conf (which is the default) and both imtest and cyradm should used sasldb2. Rob Urban
Re: cyradm authentication error
Robert thanks for the help, After changing the imapd.conf file as you directed (and rebooting to make sure the changes took affect), I still got the error when running cyradm --user cyrus localhost. I noticed in my auth.log file that the following messages occurred when trying to log in: Feb 27 08:52:56 web01 perl: No worthy mechs found I'm not sure what this means, but upon looking up this message in the archive I was told to use cyradm --user cyrus -auth login localhost. This DID work. I'm ASSUMING this means I am trying to login in via plaintext instead of DIGEST-MD5. (I have no clue why it won't work via DIGEST-MD5). I was able to create a mailbox in my cyradm tool, but still got the following messages in my imapd.conf file: Feb 27 08:56:03 web01 imapd[1229]: accepted connection Feb 27 08:56:48 web01 imapd[1229]: badlogin: web01[127.0.0.1] PLAIN [SASL(-4): no mechanism available: security flags do not match required] Feb 27 08:57:00 web01 imapd[1229]: badlogin: web01[127.0.0.1] plaintext cyrus SASL(-13): authentication failure: checkpass failed Feb 27 08:57:10 web01 imapd[1229]: accepted connection Feb 27 08:57:14 web01 imapd[1229]: login: web01[127.0.0.1] cyrus plaintext. Why am I getting these error messages? And as a newbie, I am COMPLETELY confused as to the differences between auxprop, saslauthd, login, and plain (those are the ones I have found so far...), and how they all relate regarding sasl2. Does anyone know why I am getting these messages in my log files (specifically no worthy mechs found in my auth log, and badlogin: web01[127.0.0.1] PLAIN... in my imapd.log). Also, is there any *good* documentation out there explaining the differences between these login mechanisms, and how they all relate? I'd love to buy a good book on all this stuff! Thanks in advance, Kevin Williams -- Original Message -- From: Robert Urban [EMAIL PROTECTED] Date: Thu, 27 Feb 2003 13:23:15 +0100 Kevin Williams wrote: My imapd.conf file looks as follows: configdirectory: /var/imap partition-default: /var/spool/imap admins: cyrus root sasl_pwcheck_method: saslauthd I can successfully authenticate using the imtest command. When I tried to use cyradm, I originally got a can't locat Cyrus/IMAP/Shell.pm in @INC. I moved all necessary (I think) folders from the folder they were installed in (/user/local/lib instead of /user/lib) to be included in the path. Now when I run cyradm, the program just hangs and I get the following error in my imapd.log file: badlogin: web01[127.0.0.1] DOGEST-MD% [SASL(-13): authentication failure: client response doesn't match what we generated]. When I enter the sasldblistuser2 command, I get the following: [EMAIL PROTECTED]: userPassword. I had this problem too. The answer is actually in the docs (install-auth), but it can take days before you find it :( The whole authentication business is pretty badly documented, IMHO. use sasl_pwcheck_method: auxprop in imapd.conf (which is the default) and both imtest and cyradm should used sasldb2. Rob Urban
Re: cyradm authentication error
On Thu, 27 Feb 2003, Robert Urban wrote: I had this problem too. The answer is actually in the docs (install-auth), but it can take days before you find it :( The whole authentication business is pretty badly documented, IMHO. If you have suggestions, we do take reasonably-written patches. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: cyradm authentication
Justin Wood schrieb: Yes, I'm sure my cyrus user is cyradm. I reset the password just in case as well. It appears to be finding the user from ldap properly: Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=1 SEARCH RESULT tag=101 err=0 text= Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=2 BIND dn=UID=CYRADM,OU=ADMINISTRATIVE,DC=FLIPDOG,DC=COM method=128 Hm, and your PAM LDAP configuration is okay? Because you get ..User not known to the underlying authentication module Does authentication work for other sessions like pop-3? -Justin. On Tue, 2002-02-12 at 08:37, Simon Matter wrote: Justin G. Wood schrieb: I tried both, to no avail. I've included some lines from auth.log that I forgot to paste last time. Also, FYI, I'm using FreeBSD 4.5. --- login attempts --- bash-2.05a$ cyradm --user cyradm --auth login localhost Are you sure your cyrus user is cyradm? Can you try cyradm --user cyrus --auth login localhost or cyradm --user cyrus --auth plain localhost And if it fails, did you set a password for the cyrus user? HTH -Simon IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with login as cyradm bash-2.05a$ cyradm --user cyradm --auth plain localhost Password: IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with plain as cyradm perl in free(): warning: chunk is already free --- auth.log corresponding lines --- Feb 12 08:07:51 fs1 saslauthd[4368]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:07:51 fs1 saslauthd[4368]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:07:51 fs1 imapd[31372]: authentication failed Feb 12 08:08:13 fs1 perl: All-whitespace username. Feb 12 08:08:13 fs1 perl: No worthy mechs found Feb 12 08:08:16 fs1 saslauthd[4369]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:08:16 fs1 saslauthd[4369]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:08:16 fs1 imapd[31378]: authentication failed Quoting Daniel Yu [EMAIL PROTECTED]: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ -- --- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ --- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]] -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ -- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]]
Re: cyradm authentication
Yes, I'm sure my cyrus user is cyradm. I reset the password just in case as well. It appears to be finding the user from ldap properly: Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=1 SEARCH RESULT tag=101 err=0 text= Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=2 BIND dn=UID=CYRADM,OU=ADMINISTRATIVE,DC=FLIPDOG,DC=COM method=128 -Justin. On Tue, 2002-02-12 at 08:37, Simon Matter wrote: Justin G. Wood schrieb: I tried both, to no avail. I've included some lines from auth.log that I forgot to paste last time. Also, FYI, I'm using FreeBSD 4.5. --- login attempts --- bash-2.05a$ cyradm --user cyradm --auth login localhost Are you sure your cyrus user is cyradm? Can you try cyradm --user cyrus --auth login localhost or cyradm --user cyrus --auth plain localhost And if it fails, did you set a password for the cyrus user? HTH -Simon IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with login as cyradm bash-2.05a$ cyradm --user cyradm --auth plain localhost Password: IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with plain as cyradm perl in free(): warning: chunk is already free --- auth.log corresponding lines --- Feb 12 08:07:51 fs1 saslauthd[4368]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:07:51 fs1 saslauthd[4368]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:07:51 fs1 imapd[31372]: authentication failed Feb 12 08:08:13 fs1 perl: All-whitespace username. Feb 12 08:08:13 fs1 perl: No worthy mechs found Feb 12 08:08:16 fs1 saslauthd[4369]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:08:16 fs1 saslauthd[4369]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:08:16 fs1 imapd[31378]: authentication failed Quoting Daniel Yu [EMAIL PROTECTED]: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ -- --- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ --- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]] -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ --
RE: cyradm authentication
It's said so. However, here is what I discovered. Even I didn't enable login when I compile SASL library, I still could use --auth login for cyradm. Furthermore, it returns different result when I use --auth plain versus --auth login. Here is what I got. cyradm --user cyrus --auth plain localhost Password: IMAP Password: localhost cyradm --user cyrus --auth login localhost IMAP Password: localhost Both approaches work, but plain asks me the same password for one more time. I don't know the reason either. Daniel -Original Message- From: Simon Matter [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 12, 2002 3:43 AM To: Daniel Yu Cc: 'Justin Wood'; [EMAIL PROTECTED] Subject: Re: cyradm authentication Daniel Yu schrieb: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost Authtype LOGIN is not supported according to the FAQ and it seems that whenever LOGIN works, it also works with PLAIN. Is it the same in the end? Simon -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ --
Re: cyradm authentication
Simon Matter wrote: Daniel Yu schrieb: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost Authtype LOGIN is not supported according to the FAQ and it seems that whenever LOGIN works, it also works with PLAIN. Is it the same in the end? When used with cyradm, LOGIN means use the IMAP LOGIN command, not the unsupported LOGIN SASL mechanism (AUTHENTICATE command). They do use the same sasl_checkpass() call to verify the password however. -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: cyradm authentication
Justin G. Wood schrieb: I tried both, to no avail. I've included some lines from auth.log that I forgot to paste last time. Also, FYI, I'm using FreeBSD 4.5. --- login attempts --- bash-2.05a$ cyradm --user cyradm --auth login localhost Are you sure your cyrus user is cyradm? Can you try cyradm --user cyrus --auth login localhost or cyradm --user cyrus --auth plain localhost And if it fails, did you set a password for the cyrus user? HTH -Simon IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with login as cyradm bash-2.05a$ cyradm --user cyradm --auth plain localhost Password: IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with plain as cyradm perl in free(): warning: chunk is already free --- auth.log corresponding lines --- Feb 12 08:07:51 fs1 saslauthd[4368]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:07:51 fs1 saslauthd[4368]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:07:51 fs1 imapd[31372]: authentication failed Feb 12 08:08:13 fs1 perl: All-whitespace username. Feb 12 08:08:13 fs1 perl: No worthy mechs found Feb 12 08:08:16 fs1 saslauthd[4369]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:08:16 fs1 saslauthd[4369]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:08:16 fs1 imapd[31378]: authentication failed Quoting Daniel Yu [EMAIL PROTECTED]: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ -- --- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ --- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]]
Re: cyradm authentication
I can only assume that my pam_ldap config is okay. I can authenticate with other things like sieve and imap just fine. -Justin. On Tue, 2002-02-12 at 10:44, Simon Matter wrote: Justin Wood schrieb: Yes, I'm sure my cyrus user is cyradm. I reset the password just in case as well. It appears to be finding the user from ldap properly: Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=1 SEARCH RESULT tag=101 err=0 text= Feb 12 08:08:16 fs1 slapd[4498]: conn=29 op=2 BIND dn=UID=CYRADM,OU=ADMINISTRATIVE,DC=FLIPDOG,DC=COM method=128 Hm, and your PAM LDAP configuration is okay? Because you get ..User not known to the underlying authentication module Does authentication work for other sessions like pop-3? -Justin. On Tue, 2002-02-12 at 08:37, Simon Matter wrote: Justin G. Wood schrieb: I tried both, to no avail. I've included some lines from auth.log that I forgot to paste last time. Also, FYI, I'm using FreeBSD 4.5. --- login attempts --- bash-2.05a$ cyradm --user cyradm --auth login localhost Are you sure your cyrus user is cyradm? Can you try cyradm --user cyrus --auth login localhost or cyradm --user cyrus --auth plain localhost And if it fails, did you set a password for the cyrus user? HTH -Simon IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with login as cyradm bash-2.05a$ cyradm --user cyradm --auth plain localhost Password: IMAP Password: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 78 cyradm: cannot authenticate to server with plain as cyradm perl in free(): warning: chunk is already free --- auth.log corresponding lines --- Feb 12 08:07:51 fs1 saslauthd[4368]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:07:51 fs1 saslauthd[4368]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:07:51 fs1 imapd[31372]: authentication failed Feb 12 08:08:13 fs1 perl: All-whitespace username. Feb 12 08:08:13 fs1 perl: No worthy mechs found Feb 12 08:08:16 fs1 saslauthd[4369]: DEBUG: auth_pam: pam_acct_mgmt failed: User not known to the underlying authentication module Feb 12 08:08:16 fs1 saslauthd[4369]: AUTHFAIL: user=cyradm service=imap realm= [PAM acct error] Feb 12 08:08:16 fs1 imapd[31378]: authentication failed Quoting Daniel Yu [EMAIL PROTECTED]: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ -- --- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.com http://www.flipdog.com/ --- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]] -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ -- -- Simon Matter Tel: +41 61 695 57 35 Fr.Sauter AG / CITFax: +41 61 695 53 30 Im Surinam 55 CH-4016 Basel [mailto:[EMAIL PROTECTED]] -- -- Justin Wood [EMAIL PROTECTED] Systems
Re: cyradm authentication
Daniel Yu wrote: It's said so. However, here is what I discovered. Even I didn't enable login when I compile SASL library, I still could use --auth login for cyradm. Furthermore, it returns different result when I use --auth plain versus --auth login. Here is what I got. cyradm --user cyrus --auth plain localhost Password: IMAP Password: localhost cyradm --user cyrus --auth login localhost IMAP Password: localhost Both approaches work, but plain asks me the same password for one more time. I don't know the reason either. In the first example, PLAIN auth is most likely failing because it isn't advertised by the server unless protected by a security layer (SSL/TLS). It then falls back to trying the IMAP LOGIN command. See my other post in this thread regarding the difference between the AUTH=LOGIN and IMAP LOGIN. Ken -Original Message- From: Simon Matter [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 12, 2002 3:43 AM To: Daniel Yu Cc: 'Justin Wood'; [EMAIL PROTECTED] Subject: Re: cyradm authentication Daniel Yu schrieb: Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost Authtype LOGIN is not supported according to the FAQ and it seems that whenever LOGIN works, it also works with PLAIN. Is it the same in the end? Simon -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ -- -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
RE: cyradm authentication
Try cyradm --user mailadmin --auth login localhost or cyradm --user mailadmin --auth plain localhost -Original Message- From: Justin Wood [mailto:[EMAIL PROTECTED]] Sent: Monday, February 11, 2002 5:45 PM To: [EMAIL PROTECTED] Subject: cyradm authentication I just blew away my 2.0.16 install and replaced it with 2.1.1. I am using saslauthd with pam to authenticate, and have it working fine for imapd and timsieved. However, I can't authenticate to cyradm. I get the following in syslog: Feb 11 15:36:20 fs1 imapd[4913]: badlogin: fs1.p.flipdog.com[10.69.2.71] plaintext cyradm SASL(-13): authentication failure: checkpass failed My pam is configured to use ldap to authenticate, and I see in my ldap logs that it's finding the user cyradm just fine. Am I missing something simple here? Has anyone else had this problem? Thanks in advance, Justin. -- -- Justin Wood [EMAIL PROTECTED] Systems Administrator FlipDog.comhttp://www.flipdog.com/ --