smtp auth question

Printable View

04-10-2006, 09:54 PM
markpr

smtp auth question

Hi,

I just installed the 3.01 GA on FC4 with default configuration and the install went smooth. Have tested out most things but I'm running into a problem with SMTP authentication.

I have turned on verbose logging for smtpd and managed to capture the login/pass being passed in (both look good) but the error is simply

warning: unknown[xx.xx.xx.xx]: SASL LOGIN authentication failed

I looked at the stmpd.conf to confim authentication methods and both PLAIN and LOGIN are listed. However I don't see them listed when I try this simple test:

# telnet 127.0.0.1 25
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
220 notmyrealhostname.com ESMTP Postfix
EHLO 127.0.0.1
250-notmyrealhostname.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250 8BITMIME
QUIT

I see that TLS is starting but I don't see the authentication mechanisms that I would normally see such as:

250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN

I have setup my own home-grown postfix, sasl, mysql, amavisd-new, spamassassin, clamav, courier in the past so I'm familiar with my way around the config files - but before I start making major changes to postfix - is there something obvious I'm missing. Why isn't smtpd returning the auth-mechanisms and is this a pointer to the problem as it seems to be?

thanks for any help

Mark
04-10-2006, 10:02 PM
markpr

forgot to mention: testsaslauthd returns an authentication failed also.

and some additional info:

$ zmprov gs nomyrealdomain.com | grep Mode
zimbraMailMode: https
$ zmprov gs notmyrealdomain.com | grep Auth
zimbraMtaAuthEnabled: TRUE
zimbraMtaAuthHost: notmyrealdomain.com
zimbraMtaAuthURL: http://notmyrealdomain.com:80/service/soap/
zimbraMtaTlsAuthOnly: TRUE
04-10-2006, 10:14 PM
bobby

try running this to regenerate the authurl (right now it's http but the mailmode is https):

zmprov ms notmyrealdomain.com zimbraMtaAuthHost notmyrealdomain.com
04-10-2006, 10:14 PM
marcmac

As has been mentioned in these forums, your https mail mode is at odds with the port 80 in your auth host url - reset the auth host to it's current value, and it'll change the port in the url (known bug, I think we've already fixed it for the next release.)
04-10-2006, 10:27 PM
markpr

Bobby, MarcMac,

Thanks for the really quick response.. this did get my up and running. I started with http and quickly switched to https after install. I've spent hours with this and several visits to the forums (but missed the really good thread on smtp auth that the bug report refers to). I'll also check the bug reports before posting next time...

Thanks for the help.. you got me up and running in 2 mins after several hours sitting down with my postfix book and old configs!

Mark