Re: [Dovecot] Dovecot not honoring configuration settings (auth failure)
Jeffrey Walton noloader@gmail.com writes:
I specified the following in my dovecot.conf.
passdb { args = /var/mail/%d/users driver = passwd-file }
Attempts to use the configuration result in an authentication failure. Here's an entry from dovecot.log when the failure happens:
Mar 31 16:04:12 imap-login: Info: Disconnected (auth failed, 1 attempts in 5 secs): user=jeff@foo.com, method=PLAIN, rip=127.0.0.1, lip=127.0.1.1, secured, session=
Just to confirm, your <user> specified in the passdb corresponds to what is being authenticated (i.e. client is authenticating as "jeff@foo.com", not "jeff")? Otherwise, you'll need to add domains to your passdb, or configure "username_format=%n"
Joseph Tam jtam.home@gmail.com
On Mon, Mar 31, 2014 at 6:29 PM, Joseph Tam jtam.home@gmail.com wrote:
Jeffrey Walton noloader@gmail.com writes:
I specified the following in my dovecot.conf.
passdb { args = /var/mail/%d/users driver = passwd-file }
Attempts to use the configuration result in an authentication failure. Here's an entry from dovecot.log when the failure happens:
Mar 31 16:04:12 imap-login: Info: Disconnected (auth failed, 1 attempts in 5 secs): user=jeff@foo.com, method=PLAIN, rip=127.0.0.1, lip=127.0.1.1, secured, session=
Just to confirm, your <user> specified in the passdb corresponds to what is being authenticated (i.e. client is authenticating as "jeff@foo.com", not "jeff")? Otherwise, you'll need to add domains to your passdb, or configure "username_format=%n" Yes, I believe so:
$ sudo cat /var/mail/foo.com/users # Generate passwords with: # doveadm pw -s PLAIN -p <password>
# Real users tad@foo.com:{PLAIN}some-password jeff@foo.com:{PLAIN}some-password
In case it matters, here are the Postfix settings (but they should not apply since this is an IMAP exercise):
$ sudo cat /etc/postfix/mailboxes
# Real users
tad@foo.com foo.com/tad/
jeff@foo.com foo.com/jeff/Its compiled with postmap:
postmap /etc/postfix/mailboxesAnd then specified in main.cf with:
virtual_mailbox_maps = hash:/etc/postfix/mailboxesAnd my two domains are handled similarly in domains.
Jeff
On Mon, 31 Mar 2014, Jeffrey Walton wrote:
Just to confirm, your <user> specified in the passdb corresponds to what is being authenticated (i.e. client is authenticating as "jeff@foo.com", not "jeff")? Otherwise, you'll need to add domains to your passdb, or configure "username_format=%n" Yes, I believe so:
$ sudo cat /var/mail/foo.com/users # Generate passwords with: # doveadm pw -s PLAIN -p <password>
# Real users tad@foo.com:{PLAIN}some-password jeff@foo.com:{PLAIN}some-password
OK, I guess the next step is to see whether the dovecot auth process is able to read the passdb file. Does your dovecot auth process have enough authorization to get/read to these files (check what dovecot/auth runs as versus the file permissions of your passdb)? "doveadm user jeff@foo.com" checks the userdb, and if it coincides with your passdb, might point out a problem.
Tracing the auth process might also help.
Joseph Tam jtam.home@gmail.com
participants (2)
-
Jeffrey Walton
-
Joseph Tam