* Julien Vehent <jul...@linuxwall.info>: > On Wed, 19 May 2010 14:36:24 -0400, Victor Duchovni > <victor.ducho...@morganstanley.com> wrote: > > > > This looks different from my recollection of the the smtpd.conf you > > posted, you may want to make sure that the "sasl_ldapdb_id" and > > passwords are the same, and I don't know what "auto_transition" > > does, but it may be pertinent also. > > I tried the following 'smtpd.conf': > > ---- > # cat smtpd.conf > pwcheck_method: auxprop > auxprop_plugin: ldapdb > mech_list: DIGEST-MD5 PLAIN LOGIN > sasl_ldapdb_uri: ldap://localhost > sasl_ldapdb_id: postfix > sasl_ldapdb_pw: f4oi6u87j687qzer613bv867zq43o > sasl_ldapdb_mech: DIGEST-MD5 > ----
Different to Cyrus IMAP, Postfix does not pass config vars to libsasl during startup from its own config file, but lets libsasl read the configuration from an external file i.e. smtpd.conf. As a result of that you don't need (read: must not) prepend parameters with e.g. "sasl_". This configuration in smtpd.conf is syntactically correct: pwcheck_method: auxprop auxprop_plugin: ldapdb mech_list: DIGEST-MD5 PLAIN LOGIN ldapdb_uri: ldap://localhost ldapdb_id: postfix ldapdb_pw: f4oi6u87j687qzer613bv867zq43o ldapdb_mech: DIGEST-MD5 p...@rick > > But it gives me the same error and the following logs: > > ---- > May 20 00:11:07 samchiel postfix/smtpd[25547]: < localhost[127.0.0.1]: > auth plain xxxXXXXXxxxxxXXXXX > May 20 00:11:07 samchiel postfix/smtpd[25547]: xsasl_cyrus_server_first: > sasl_method plain, init_response xxxXXXXXxxxxxXXXXX > May 20 00:11:07 samchiel postfix/smtpd[25547]: xsasl_cyrus_server_first: > decoded initial response > May 20 00:11:07 samchiel postfix/smtpd[25547]: SASL authentication debug: > could not find auxprop plugin, was searching for 'ldapdb' > May 20 00:11:07 samchiel postfix/smtpd[25547]: SASL authentication debug: > could not find auxprop plugin, was searching for 'ldapdb' > May 20 00:11:07 samchiel postfix/smtpd[25547]: SASL authentication debug: > could not find auxprop plugin, was searching for 'ldapdb' > May 20 00:11:07 samchiel postfix/smtpd[25547]: warning: SASL > authentication failure: Password verification failed > May 20 00:11:07 samchiel postfix/smtpd[25547]: warning: > localhost[127.0.0.1]: SASL plain authentication failed: authentication > failure > May 20 00:11:07 samchiel postfix/smtpd[25547]: > localhost[127.0.0.1]: 535 > 5.7.8 Error: authentication failed: authentication failure > ---- > > And if, in addition, I change 'pwcheck_method' to 'sasl_pwcheck_method', > it just skips the directives and goes back to the default value that looks > for a '/etc/sasldb2' file. > > Once again, I checked all my packages, and I think I have everything > installed. Particularly 'ldapdb' for sasl2: > > ---- > # ls -l /usr/lib/sasl2/ |grep ldapdb > -rw-r--r-- 1 root root 13748 Dec 29 01:10 libldapdb.a > -rw-r--r-- 1 root root 976 Dec 29 01:10 libldapdb.la > lrwxrwxrwx 1 root root 19 May 10 12:18 libldapdb.so -> > libldapdb.so.2.0.23 > lrwxrwxrwx 1 root root 19 May 10 12:18 libldapdb.so.2 -> > libldapdb.so.2.0.23 > -rw-r--r-- 1 root root 14556 Dec 29 01:10 libldapdb.so.2.0.23 > > ---- > > I keep searching, but I really cannot find any piece of working > configuration... do you happen to have an example somewhere ??? > > > Thanks a lot, > Julien > > -- All technical questions asked privately will be automatically answered on the list and archived for public access unless privacy is explicitely required and justified. saslfinger (debugging SMTP AUTH): <http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>
