Hi,
I'm trying getting NTLM auth working against AD in my Dovecot 2.0.15.
I'm getting the following error:
Jun 08 14:18:11 auth: Info: winbind(?,10.44.3.151): user not
authenticated: NT_STATUS_UNSUCCESSFUL
"wbinfo -u" reports all the users of the domain and "ntlm_auth
--username=%name% --domain="%domain%" gets authenticated successfully.
Debugging winbind I can see the following error:
[2012/06/08 14:18:11.129611, 10]
winbindd/winbindd.c:651(process_request)
process_request: unknown request fn number 14
[2012/06/08 14:18:11.129671, 10]
winbindd/winbindd.c:738(winbind_client_response_written)
winbind_client_response_written[2822:unknown request]: delivered
response to client
My dovecot.conf is the following:
auth_mechanisms = plain ntlm login
auth_username_format = %n
auth_verbose = yes
auth_winbind_helper_path = /usr/bin/ntlm_auth
auth_use_winbind = yes
auth_debug = yes
disable_plaintext_auth = no
info_log_path = /var/log/dovecot-info.log
log_path = /var/log/dovecot.log
mail_location = maildir:/var/mail/domains/%d/%n
plugin {
autocreate = Trash
autocreate2 = Spam
autocreate3 = Sent
autosubscribe = Trash
autosubscribe2 = Spam
autosubscribe3 = Sent
}
protocols = imap
ssl = no
userdb {
driver = static
args = uid=100 gid=101 home=/var/mail/domains/%d/%n
first_valid_uid=100
}
passdb ldap {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf
}
protocol imap {
mail_plugins = autocreate
}
Sounds like there is an issue when Dovecot runs "ntlm_auth". It
doesn't
appear to be a permission issue (perms are 755).
Any help is appreciated. Thank you in advance.
-- leonardo.
On Fri, 2012-06-08 at 16:53 +0200, Leonardo wrote:> Hi, > > I'm trying getting NTLM auth working against AD in my Dovecot 2.0.15. > > I'm getting the following error: > > > Jun 08 14:18:11 auth: Info: winbind(?,10.44.3.151): user not > authenticated: NT_STATUS_UNSUCCESSFULBTW I forgot to say that I've already disjoined and rejoined the server to the domain. I saw someone suggested that on the list (I wasn't subscribe until now). -- leonardo
On Fri, 2012-06-08 at 16:53 +0200, Leonardo wrote:> Hi, > > I'm trying getting NTLM auth working against AD in my Dovecot 2.0.15. > > I'm getting the following error: > > > Jun 08 14:18:11 auth: Info: winbind(?,10.44.3.151): user not > authenticated: NT_STATUS_UNSUCCESSFUL > > > "wbinfo -u" reports all the users of the domain and "ntlm_auth > --username=%name% --domain="%domain%" gets authenticated successfully. > > > Debugging winbind I can see the following error: > > > [2012/06/08 14:18:11.129611, 10] > winbindd/winbindd.c:651(process_request) > process_request: unknown request fn number 14 > [2012/06/08 14:18:11.129671, 10] > winbindd/winbindd.c:738(winbind_client_response_written) > winbind_client_response_written[2822:unknown request]: delivered > response to clientUpgrading to Dovecot 2.1.5 did not help. -- leo
Maybe Matching Threads
- FW: Domain member seems to work, wbinfo -u not (update4)
- 3.5.6: Unable to list group from AD and Strange behavior
- Problems after migration from samba 3.5.2 to samba 4.3.1
- Getent group don't work
- idmap_ad partially stopped working after upgrading Samba from 3.4.3 to 3.6.3