Hello,

I am trying to get dovecot to use virtual users and authenticate using

PAM+kerberos against Active Directory and I am running into some problems.

I followed the tutorials from the wiki page from:

http://www.linuxmail.info/active-directory-dovecot-pam-authentication/

And here is what I get from the /var/log/mail log: Nov 26 15:12:27 housigma20 dovecot: auth(default): client in: AUTH 1 PLAIN service=pop3 secured lip=127.0.0.1 rip=127.0.0.1 lport=110 rport=36327 resp=AGxpbnV4dABob3VzdG9u Nov 26 15:12:27 housigma20 dovecot: auth-worker(default): pam(linuxt,127.0.0.1): lookup service=dovecot Nov 26 15:12:27 housigma20 dovecot: auth-worker(default): pam(linuxt,127.0.0.1): pam_authenticate() failed: Permission denied Nov 26 15:12:29 housigma20 dovecot: auth(default): client out: FAIL 1 user=linuxt Nov 26 15:12:31 housigma20 dovecot: pop3-login: Aborted login (auth failed, 1 attempts): user=<linuxt>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured

Any ideas..? Other than this: http://www.dovecot.org/list/dovecot/2008-July/032455.html

Thanks...!

/etc/pam.d/dovecot: auth sufficient pam_krb5.so no_user_check validate account sufficient pam_permit.so

Here is my dovecot ­n and version: # 1.1.6: /etc/dovecot/dovecot.conf # OS: Linux 2.6.16.60-0.21-xenpae i686 SUSE Linux Enterprise Server 10 (i586) protocols: pop3 pop3s imap imaps login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login mail_privileged_group: mail mail_location: maildir:~/Maildir/ mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 imap_client_workarounds(default): delay-newmail outlook-idle netscape-eoh imap_client_workarounds(imap): delay-newmail outlook-idle netscape-eoh imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh auth default: mechanisms: plain login debug: yes debug_passwords: yes passdb: driver: pam userdb: driver: static args: uid=1004 gid=1002 home=/home/vmail/%d/%Lu socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix