 NTLM listed by MTA but not available
I get the following errors trying to send mail from my PDA:
Dec 19 11:41:05 mail postfix/smtpd[22877]: connect from 109.sub-75-197-165.myvzw.com[75.197.165.109]
Dec 19 11:41:05 mail postfix/smtpd[22877]: setting up TLS connection from 109.sub-75-197-165.myvzw.com[75.197.165.109]
Dec 19 11:41:05 mail postfix/smtpd[22877]: TLS connection established from 109.sub-75-197-165.myvzw.com[75.197.165.109]: SSLv3 with cipher RC4-MD5 (128/128 bits)
Dec 19 11:41:07 mail postfix/smtpd[22877]: warning: 109.sub-75-197-165.myvzw.com[75.197.165.109]: SASL NTLM authentication failed
Dec 19 11:41:07 mail postfix/smtpd[22877]: disconnect from 109.sub-75-197-165.myvzw.com[75.197.165.109]
A test of server capabilities shows NTLM is supported by Zimbra:
SMTP server: X.X.X.X
[S] 220 host.domain ESMTP Postfix
[C] EHLO localhost
[S] 250-host.domain
[S] 250-PIPELINING
[S] 250-SIZE 1048576000
[S] 250-VRFY
[S] 250-ETRN
[S] 250-STARTTLS
[S] 250-AUTH NTLM LOGIN PLAIN DIGEST-MD5 CRAM-MD5
[S] 250-AUTH=NTLM LOGIN PLAIN DIGEST-MD5 CRAM-MD5
[S] 250 8BITMIME
[C] STARTTLS
[S] 220 Ready to start TLS
Cipher: DHE-RSA-AES256-SHA
Certificate information:
Subject: /C=US/ST=N/A/O=Zimbra Collaboration Suite/CN=host.domain
Issuer: /C=US/ST=N/A/L=N/A/O=Zimbra Collaboration Suite
[C] EHLO localhost
[S] 250-host.domain
[S] 250-PIPELINING
[S] 250-SIZE 1048576000
[S] 250-VRFY
[S] 250-ETRN
[S] 250-AUTH NTLM LOGIN PLAIN DIGEST-MD5 CRAM-MD5
[S] 250-AUTH=NTLM LOGIN PLAIN DIGEST-MD5 CRAM-MD5
[S] 250 8BITMIME
[C] QUIT
[S] 221 Bye
I have no use nor need for NTLM, but my PDA prefers NTLM during negotiation and I cannot configure WinMobile6 not to use it if it thinks NTLM is available. I saw bug/rfe 8945, but I just want Zimbra not to list NTLM for authentication. I only see the "Enable authentication" and "TLS authentication only" check boxes on the MTA tab of the Zimbra admin page for global settings. Any configuration pointers would be great.
Thanks!
Blaine  |