Sendmail configuration isn't relevant with Dovecot. Set auth_debug_passwords=yes to debug why the authentication isn't working.
On Fri, 2012-05-18 at 09:19 +0200, Manuel Fernández Panzuela wrote:
Then, which is the correct configuration ? Are my config files ok ? Openldap stores passwords encrypted with sha algorithm
Sendmail could be the problem? Sendmail works with PAM authentication /etc/pam.d/smtp to work with LDAP too.
When I connect outlook with (Sendmail + Dovecot) password is requested, but for all attempts I get the following error in /var/log/maillog
Using TLS dovecot: pop3-login: Disconnected: user=
, method=PLAIN, rip=::ffff:10.237.208.211, lip=::ffff:10.237.193.133, TLS Without TLS dovecot: pop3-login: Disconnected: user=
, method=PLAIN, rip=::ffff:10.237.208.211, lip=::ffff:10.237.193.133 Sendmail.mc FEATURE(correo_MFP)dnl LDAPROUTE_DOMAIN(ldapserver.mfernandez.es)dnl SMTPINI_JA(smtpinicial.mfernandez.es)dnl OLD_DOMAIN(correo.mfernandez.es)dnl LOCAL_MAIL_HOST(smtp-incial.mfernandez.es)dnl define(confLDAP_DEFAULT_SPEC,
-h xxx.xxx.xxx.xxx -p 389 -b "o=usuarios,o=mfernandez,c=es" -d "cn=Admin,o=usuarios,o=mfernandez,c=es" -M simple -P /etc/mail/passcorreo')dnl define(ALIAS_FILE',ldap:')dnl FEATURE(virtusertable,LDAP')dnl define(confAUTH_MECHANISMS',PLAIN')dnl TRUST_AUTH_MECH(PLAIN')dnl define(SMART_HOST,mail.mfernandez.es')dnl dnl define(SMART_HOST,localhost')dnl dnl define(ALIAS_FILE', `ldap:-b"" -v rfc822MailMember -k &(objectClass=nisMailAlias)(cn=%0)')dnl dnl correo_MFP - Fin de modificaciones necesarias dnl ************************************************** MAILER(smtp)dnl MAILER(procmail)dnl Cwcorreo.mfernandez.esThank you so much!
2012/5/17 Timo Sirainen tss@iki.fi
On 16.5.2012, at 19.36, Manuel Fernández Panzuela wrote:
Hello
I need to authenticate dovecot against openldap. OpenLdap's authentication method requires SHA. How must I set dovecot ? .. #mechanisms = plain SHA .. If I uncomment #mechanisms = plain SHA Dovecot doesn't start, the error: dovecot: auth(default): Unknown authentication mechanism 'SHA'
You're confusing the difference between authentication mechanism and password scheme. http://wiki2.dovecot.org/Authentication
You want to use SHA1 as password scheme but still PLAIN mechanism.