Then, which is the correct configuration ? Are my config files ok ? Openldap stores passwords encrypted with sha algorithm
Sendmail could be the problem? Sendmail works with PAM authentication /etc/pam.d/smtp to work with LDAP too. When I connect outlook with (Sendmail + Dovecot) password is requested, but for all attempts I get the following error in /var/log/maillog Using TLS dovecot: pop3-login: Disconnected: user=<manuel.fernandez.panzuela>, method=PLAIN, rip=::ffff:10.237.208.211, lip=::ffff:10.237.193.133, TLS Without TLS dovecot: pop3-login: Disconnected: user=<manuel.fernandez.panzuela>, method=PLAIN, rip=::ffff:10.237.208.211, lip=::ffff:10.237.193.133 Sendmail.mc FEATURE(correo_MFP)dnl LDAPROUTE_DOMAIN(ldapserver.mfernandez.es)dnl SMTPINI_JA(smtpinicial.mfernandez.es)dnl OLD_DOMAIN(correo.mfernandez.es)dnl LOCAL_MAIL_HOST(smtp-incial.mfernandez.es)dnl define(confLDAP_DEFAULT_SPEC,`-h xxx.xxx.xxx.xxx -p 389 -b "o=usuarios,o=mfernandez,c=es" -d "cn=Admin,o=usuarios,o=mfernandez,c=es" -M simple -P /etc/mail/passcorreo')dnl define(`ALIAS_FILE', `ldap:')dnl FEATURE(virtusertable, `LDAP')dnl define(`confAUTH_MECHANISMS', `PLAIN')dnl TRUST_AUTH_MECH(`PLAIN')dnl define(SMART_HOST,`mail.mfernandez.es')dnl dnl define(SMART_HOST,`localhost')dnl dnl define(`ALIAS_FILE', `ldap:-b"" -v rfc822MailMember -k &(objectClass=nisMailAlias)(cn=%0)')dnl dnl correo_MFP - Fin de modificaciones necesarias dnl ************************************************** MAILER(smtp)dnl MAILER(procmail)dnl Cwcorreo.mfernandez.es Thank you so much! 2012/5/17 Timo Sirainen <t...@iki.fi> > On 16.5.2012, at 19.36, Manuel Fernández Panzuela wrote: > > > Hello > > > > I need to authenticate dovecot against openldap. OpenLdap's > authentication > > method requires SHA. > > How must I set dovecot ? > .. > > #mechanisms = plain SHA > .. > > If I uncomment #mechanisms = plain SHA Dovecot doesn't start, the error: > > dovecot: auth(default): Unknown authentication mechanism 'SHA' > > You're confusing the difference between authentication mechanism and > password scheme. http://wiki2.dovecot.org/Authentication > > You want to use SHA1 as password scheme but still PLAIN mechanism.
