Gilles Celli
2014-Mar-03 14:37 UTC
[Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8
Hi dovecot masters, This is my first post here, since I desperately need some advices from the dovecot community. I've tried to get an answer on the Apple Forums but til now no luck....here we go: I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync to our new server by using the masterusers authentication method on the old 10.6.8 server... The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think), so that when following the directions of Master users/password from this page I can't login with the http://wiki1.dovecot.org/Authentication/MasterUsers I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options), so that passdb shadow {} won't work anyway I always get NO Authentication failed, when trying the following:>telnet localhost 143Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK Dovecot ready. 1 login user1*mailadmin PASSWORD 1 NO Authentication failed. I've tried also to add a Post-login scripting like described here, but no luck either: http://www.stefanux.de/wiki/doku.php/server/dovecot Does someone know how to fix my migration issue ? Any help is greatly appreciated. Gilles Here's my dovecot :>dovecotd --build-optionsBuild options: ioloop=kqueue notify=kqueue ipv6 openssl Mail storages: maildir mbox dbox cydir raw SQL drivers: Passdb: checkpassword od pam passwd passwd-file Userdb: od passwd passwd-file prefetch static Here's my dovecot -n output:>dovecotd -n# 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings # OS: Darwin 10.8.0 i386 hfs base_dir: /var/run/dovecot syslog_facility: local6 protocols: pop3 imap pop3s imaps ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login login_user: _dovecot login_process_per_connection: no max_mail_processes: 50 mail_max_userip_connections(default): 20 mail_max_userip_connections(imap): 20 mail_max_userip_connections(pop3): 10 verbose_proctitle: yes first_valid_uid: 6 first_valid_gid: 6 mail_access_groups: mail mail_location: maildir:/var/spool/imap/dovecot/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_process_sharing: full mail_max_connections(default): 10 mail_max_connections(imap): 10 mail_max_connections(pop3): 5 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 lda: postmaster_address: postmaster at example.com hostname: mymailserver.example.com mail_plugins: quota quota_full_tempfail: yes sendmail_path: /usr/sbin/sendmail auth_socket_path: /var/run/dovecot/auth-master log_path: /var/log/mailaccess.log info_log_path: /var/log/mailaccess.log auth default: mechanisms: plain login gssapi apop cram-md5 master_user_separator: * verbose: yes passdb: driver: passwd-file args: /etc/dovecot/passwd.masterusers pass: yes master: yes passdb: driver: od userdb: driver: od args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no socket: type: listen master: path: /var/run/dovecot/auth-master mode: 384 user: _dovecot group: mail plugin: quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh quota: maildir:User quota sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve
list at grootstyr.eu
2014-Mar-03 15:41 UTC
[Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8
Since you've defined verbose auth logging you should get some interesting log files about your failed login attempts that could point us in the right direction. Matthijs On Mon, Mar 03, 2014 at 03:37:31PM +0100, Gilles Celli wrote:> Hi dovecot masters, > > This is my first post here, since I desperately need some advices from the dovecot community. > I've tried to get an answer on the Apple Forums but til now no luck....here we go: > > I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync > to our new server by using the masterusers authentication method on the old 10.6.8 server... > > The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think), > so that when following the directions of Master users/password from this page I can't login with the > http://wiki1.dovecot.org/Authentication/MasterUsers > > I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options), > so that passdb shadow {} won't work anyway > > > I always get NO Authentication failed, when trying the following: > >telnet localhost 143 > Trying 127.0.0.1... > Connected to localhost. > Escape character is '^]'. > * OK Dovecot ready. > 1 login user1*mailadmin PASSWORD > 1 NO Authentication failed. > > I've tried also to add a Post-login scripting like described here, but no luck either: > http://www.stefanux.de/wiki/doku.php/server/dovecot > > Does someone know how to fix my migration issue ? > > Any help is greatly appreciated. > > Gilles > > Here's my dovecot : > > >dovecotd --build-options > Build options: ioloop=kqueue notify=kqueue ipv6 openssl > Mail storages: maildir mbox dbox cydir raw > SQL drivers: > Passdb: checkpassword od pam passwd passwd-file > Userdb: od passwd passwd-file prefetch static > > > Here's my dovecot -n output: > > >dovecotd -n > > # 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf > Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings > # OS: Darwin 10.8.0 i386 hfs > base_dir: /var/run/dovecot > syslog_facility: local6 > protocols: pop3 imap pop3s imaps > ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem > ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem > ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem > ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL > disable_plaintext_auth: no > login_dir: /var/run/dovecot/login > login_executable(default): /usr/libexec/dovecot/imap-login > login_executable(imap): /usr/libexec/dovecot/imap-login > login_executable(pop3): /usr/libexec/dovecot/pop3-login > login_user: _dovecot > login_process_per_connection: no > max_mail_processes: 50 > mail_max_userip_connections(default): 20 > mail_max_userip_connections(imap): 20 > mail_max_userip_connections(pop3): 10 > verbose_proctitle: yes > first_valid_uid: 6 > first_valid_gid: 6 > mail_access_groups: mail > mail_location: maildir:/var/spool/imap/dovecot/mail/%u > mail_executable(default): /usr/libexec/dovecot/imap > mail_executable(imap): /usr/libexec/dovecot/imap > mail_executable(pop3): /usr/libexec/dovecot/pop3 > mail_process_sharing: full > mail_max_connections(default): 10 > mail_max_connections(imap): 10 > mail_max_connections(pop3): 5 > mail_plugins(default): quota imap_quota > mail_plugins(imap): quota imap_quota > mail_plugins(pop3): quota > mail_plugin_dir(default): /usr/lib/dovecot/imap > mail_plugin_dir(imap): /usr/lib/dovecot/imap > mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 > lda: > postmaster_address: postmaster at example.com > hostname: mymailserver.example.com > mail_plugins: quota > quota_full_tempfail: yes > sendmail_path: /usr/sbin/sendmail > auth_socket_path: /var/run/dovecot/auth-master > log_path: /var/log/mailaccess.log > info_log_path: /var/log/mailaccess.log > auth default: > mechanisms: plain login gssapi apop cram-md5 > master_user_separator: * > verbose: yes > passdb: > driver: passwd-file > args: /etc/dovecot/passwd.masterusers > pass: yes > master: yes > passdb: > driver: od > userdb: > driver: od > args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no > socket: > type: listen > master: > path: /var/run/dovecot/auth-master > mode: 384 > user: _dovecot > group: mail > plugin: > quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh > quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh > quota: maildir:User quota > sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 834 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140303/7a0c472c/attachment-0001.sig>
Giuseppe Chiesa
2014-Jun-11 06:47 UTC
[Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8
Hi I'm esperiencing the same issue during the import from OSX Server to Zimbra. Did you succeded in your migration? can you share some suggestion about that? Thanks in advance for your help. -- Best regards, Giuseppe Chiesa