[Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8

Gilles Celli gilles.celli at ecgs.lu
Mon Mar 3 16:02:18 UTC 2014 

If I do a:

>telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK Dovecot ready.
1 login myusername*masterAdmin masterAdminPassword
1 NO Authentication failed.
1 logout
* BYE Logging out
1 OK Logout completed.
Connection closed by foreign host.

the only logging that I get is this one from /var/log/system.log
Mar  3 16:54:22 mymailserver dovecot[38455]: auth(default): od(myusername,127.0.0.1): Credentials could not be verified username or password is invalid.


On 03 Mar 2014, at 16:41, list at grootstyr.eu wrote:

> Since you've defined verbose auth logging you should get some 
> interesting log files about your failed login attempts that could point 
> us in the right direction.
> 
> 	Matthijs
> 
> On Mon, Mar 03, 2014 at 03:37:31PM +0100, Gilles Celli wrote:
>> Hi dovecot masters,
>> 
>> This is my first post here, since I desperately need some advices from the dovecot community.
>> I've tried to get an answer on the Apple Forums but til now no luck....here we go:
>> 
>> I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync
>> to our new server by using the masterusers authentication method on the old 10.6.8 server...
>> 
>> The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think),
>> so that when following the directions of Master users/password from this page I can't login with the
>> http://wiki1.dovecot.org/Authentication/MasterUsers
>> 
>> I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options),
>> so that passdb shadow {} won't work anyway
>> 
>> 
>> I always get NO Authentication failed, when trying the following:
>>> telnet localhost 143
>> Trying 127.0.0.1...
>> Connected to localhost.
>> Escape character is '^]'.
>> * OK Dovecot ready.
>> 1 login user1*mailadmin PASSWORD
>> 1 NO Authentication failed.
>> 
>> I've tried also to add a Post-login scripting like described here, but no luck either:
>> http://www.stefanux.de/wiki/doku.php/server/dovecot
>> 
>> Does someone know how to fix my migration issue ?
>> 
>> Any help is greatly appreciated.
>> 
>> Gilles
>> 
>> Here's my dovecot :
>> 
>>> dovecotd --build-options
>> Build options: ioloop=kqueue notify=kqueue ipv6 openssl
>> Mail storages: maildir mbox dbox cydir raw
>> SQL drivers:
>> Passdb: checkpassword od pam passwd passwd-file
>> Userdb: od passwd passwd-file prefetch static
>> 
>> 
>> Here's my dovecot -n output:
>> 
>>> dovecotd -n
>> 
>> # 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf
>> Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings
>> # OS: Darwin 10.8.0 i386  hfs
>> base_dir: /var/run/dovecot
>> syslog_facility: local6
>> protocols: pop3 imap pop3s imaps
>> ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem
>> ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem
>> ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem
>> ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL
>> disable_plaintext_auth: no
>> login_dir: /var/run/dovecot/login
>> login_executable(default): /usr/libexec/dovecot/imap-login
>> login_executable(imap): /usr/libexec/dovecot/imap-login
>> login_executable(pop3): /usr/libexec/dovecot/pop3-login
>> login_user: _dovecot
>> login_process_per_connection: no
>> max_mail_processes: 50
>> mail_max_userip_connections(default): 20
>> mail_max_userip_connections(imap): 20
>> mail_max_userip_connections(pop3): 10
>> verbose_proctitle: yes
>> first_valid_uid: 6
>> first_valid_gid: 6
>> mail_access_groups: mail
>> mail_location: maildir:/var/spool/imap/dovecot/mail/%u
>> mail_executable(default): /usr/libexec/dovecot/imap
>> mail_executable(imap): /usr/libexec/dovecot/imap
>> mail_executable(pop3): /usr/libexec/dovecot/pop3
>> mail_process_sharing: full
>> mail_max_connections(default): 10
>> mail_max_connections(imap): 10
>> mail_max_connections(pop3): 5
>> mail_plugins(default): quota imap_quota
>> mail_plugins(imap): quota imap_quota
>> mail_plugins(pop3): quota
>> mail_plugin_dir(default): /usr/lib/dovecot/imap
>> mail_plugin_dir(imap): /usr/lib/dovecot/imap
>> mail_plugin_dir(pop3): /usr/lib/dovecot/pop3
>> lda:
>>  postmaster_address: postmaster at example.com
>>  hostname: mymailserver.example.com
>>  mail_plugins: quota
>>  quota_full_tempfail: yes
>>  sendmail_path: /usr/sbin/sendmail
>>  auth_socket_path: /var/run/dovecot/auth-master
>>  log_path: /var/log/mailaccess.log
>>  info_log_path: /var/log/mailaccess.log
>> auth default:
>>  mechanisms: plain login gssapi apop cram-md5
>>  master_user_separator: *
>>  verbose: yes
>>  passdb:
>>    driver: passwd-file
>>    args: /etc/dovecot/passwd.masterusers
>>    pass: yes
>>    master: yes
>>  passdb:
>>    driver: od
>>  userdb:
>>    driver: od
>>    args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no
>>  socket:
>>    type: listen
>>    master:
>>      path: /var/run/dovecot/auth-master
>>      mode: 384
>>      user: _dovecot
>>      group: mail
>> plugin:
>>  quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh
>>  quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh
>>  quota: maildir:User quota
>>  sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve

More information about the dovecot mailing list