Ok I've enabled dovecot's "auth_verbose" and "auth_debug" mode along with syslog facility to debug mode, so here's the output:
- So first when trying to login with "myusername*master":
#telnet mailserv.example.com 143 Connected to mailserv.example.com. Escape character is '^]'.
- OK Dovecot ready. 1 login myusername*master myMasterPassword 1 NO Authentication failed. 1 logout
- BYE Logging out 1 OK Logout completed. Connection closed by foreign host.
It fails....here's then the debug logout:
Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): client in: AUTH 14 PLAIN service=imap secured lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=63994 resp=AGdpbGxlcyplY2dzYWRtaW4AdGVzdA== Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): passwd-file(master,127.0.0.1,master): lookup: user=master file=/etc/dovecot/passwd.masterusers Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): passdb(master,127.0.0.1,master): Master user logging in as myusername Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): mail SACL is enabled; overriding settings in user record Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): Credentials could not be verified username or password is invalid. Mar 4 16:09:16 mailserv dovecot[9253]: auth(default): client out: FAIL 14 user=myusername Mar 4 16:09:24 mailserv dovecot[9253]: imap-login: Aborted login (auth failed, 1 attempts): user=<myusername>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured Mar 4 16:09:24 mailserv dovecot[9253]: auth(default): new auth connection: pid=9278
- Well here's with "myusername" login, which is succesful:
#telnet mailserv.example.com 143 Connected to mailserv.example.com. Escape character is '^]'.
- OK Dovecot ready. 1 login myusername myPassword 1 OK Logged in. 1 logout
- BYE Logging out 1 OK Logout completed. Connection closed by foreign host.
Logout:
Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): client in: AUTH 65 PLAIN service=imap secured lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=64184 resp=AGdpbGxlcwB0PWcxbGwzc3B3IQ== Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): mail SACL is enabled; overriding settings in user record Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): client out: OK 65 user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): master in: REQUEST 80 9276 65 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): lookup user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): record name=myusername, uid=1030, gid=20 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): user=myusername, quota=*:storage=10240000 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): data store location=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): master out: USER 80 myusername uid=1030 gid=20 quota=maildir:User quota:noenforcing quota_rule=*:storage=10240000 mail=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 mail_location=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 sieve=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407/dovecot.sieve sieve_dir=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407 sieve_storage=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407 Mar 4 16:22:42 mailserv dovecot[9253]: imap-login: Login: user=<myusername>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): new auth connection: pid=9276 Mar 4 16:22:46 mailserv dovecot[9253]: IMAP(*): User myusername: Disconnected: Logged out bytes=8/43
Any thoughts ?
Cheers,
Gilles
On 03 Mar 2014, at 21:48, list@grootstyr.eu wrote:
Try getting more verbose logs using dovecot's logging mechanisms. auth_verbose=yes auth_debug=yes It seems that you aren't authenticating your master users against your passwd file, instead you are authenticating against your OpenDirectory.