David Scheele
2015-Feb-23 17:02 UTC
"Temporary authentication failure" ? Cant connect with ldap user
Hello there, first time writing. I'm relatively new to linux and have been tasked with setting up the following configuration: Debian Wheezy Server Postfix Dovecot OpenLDAP So, I set up the Server, installed and configured postfix, ldap and dovecot (in that order) and now simply try to log into the mail account with a used from the LDAP over telnet. The test looks like this: *|> telnet localhost 143* *| a bunch of stuff ending with:* *| OK [**] Dovecot ready.* *|> a login username userpassword* *| a NO [UNAVAILABLE] Temporary authentication failure. [host and date here]* In the logs it says *|[date] mailserver dovecot: auth: Error: LDAP: binding failed (dn cn=admin): Invalid credentials* But I KNOW the admin password I entered into the dovecot-lda.conf.ext is correct as I use it to log into the LDAP directory over jxplorer I also know the password for the user i try to log in with is correct as i set it myself over and over just to be sure there are no typos. I'm at a loss, I've been at this end for a few days now and can't find good tutorials online because its either always an old dovecot, postfix, ldap or debian version and somewhere in the middle it just stops because some file is completely missing. I get the impression I'm just not able-brained for linux useage. Anyway, here are a few more informations about the system: *Dovecot version 2.1.7* Output of grep -v '^ *\(#.*\)\?$' dovecot-sql.conf: *hosts = localhost* *dn = cn=admin* *dnpass = [password]* *sasl_bind = no* *tls = no* *auth_bind = yes* *ldap_version = 3* *base = dc=[domainname],dc=de* *user_attrs = uidNumber=uid,gidNumber=gid* *user_filter = (&(objectClass=posixAccount)(uid=%u))* *pass_attrs = uid=user,userPassword=password* Output of dovecot -n: *disable_plaintest_auth = no* *mail_location = mbox:~/mail:INBOX=/var/mail/%u* *[namespace config here]* *passdb {* *args = /etc/dovecot/dovecot-ldap.conf.ext* *driver = ldap* *}* *plugin {* *sieve = ~/.dovecot.sieve* *sieve_dir = ~/sieve* *}* *protocols = " imap pop3"* *ssl_cert = </etc/dovecot/dovecot.pem* *ssl_key = </etc/dovecot/private/dovecot.pem* *userdb {* *args = /etc/dovecot/dovecot-ldap.conf.ext* *driver =ldap* *}* *protocol pop3 {* *pop3_client_workarounds = outlook-no-nuls oe-ns-eoh* *pop3_uidl_format = %08Xu%08Xv* *}* Any help would be greatly apprechiated.... I'm going crazy over here. Thanks in advance, David
Bob Miller
2015-Feb-23 17:14 UTC
"Temporary authentication failure" ? Cant connect with ldap user
Hi,> *hosts = localhost* > *dn = cn=admin* > *dnpass = [password]* > *sasl_bind = no* > *tls = no* > *auth_bind = yes*Just a guess, but I don't see a matching auth_bind_userdn to go with this...> *ldap_version = 3* > *base = dc=[domainname],dc=de* > *user_attrs = uidNumber=uid,gidNumber=gid* > *user_filter = (&(objectClass=posixAccount)(uid=%u))* > *pass_attrs = uid=user,userPassword=password*
Mihai Badici
2015-Feb-23 18:11 UTC
"Temporary authentication failure" ? Cant connect with ldap user
On Monday 23 February 2015 18:02:13 David Scheele wrote:> Hello there, first time writing. > > I'm relatively new to linux and have been tasked with setting up the > following configuration: > Debian Wheezy Server > Postfix > Dovecot > OpenLDAP >I use this configuration for some time, I call it Machinet mailserver as a sort of dumb version of Kolab Mailserver. You can find a simple script here for installing all thing, is not finished but you can at least look at configuration files: http://mihai.badici.ro/linux/machinet/debian/ Some short info here: http://machinet.badici.ro/> So, I set up the Server, installed and configured postfix, ldap and dovecot > (in that order) and now simply try to log into the mail account with a used > from the LDAP over telnet. > > The test looks like this: > > *|> telnet localhost 143* > *| a bunch of stuff ending with:* > *| OK [**] Dovecot ready.* > *|> a login username userpassword* > *| a NO [UNAVAILABLE] Temporary authentication failure. [host and date > here]* > > In the logs it says > > *|[date] mailserver dovecot: auth: Error: LDAP: binding failed (dn > cn=admin): Invalid credentials* > > But I KNOW the admin password I entered into the dovecot-lda.conf.ext is > correct as I use it to log into the LDAP directory over jxplorer > > I also know the password for the user i try to log in with is correct as i > set it myself over and over just to be sure there are no typos. > I'm at a loss, I've been at this end for a few days now and can't find good > tutorials online because its either always an old dovecot, postfix, ldap or > debian version and somewhere in the middle it just stops because some file > is completely missing. I get the impression I'm just not able-brained for > linux useage. > > Anyway, here are a few more informations about the system: > > *Dovecot version 2.1.7* > > Output of grep -v '^ *\(#.*\)\?$' dovecot-sql.conf: > > *hosts = localhost* > *dn = cn=admin* > *dnpass = [password]* > *sasl_bind = no* > *tls = no* > *auth_bind = yes* > *ldap_version = 3* > *base = dc=[domainname],dc=de* > *user_attrs = uidNumber=uid,gidNumber=gid* > *user_filter = (&(objectClass=posixAccount)(uid=%u))* > *pass_attrs = uid=user,userPassword=password* > > Output of dovecot -n: > > *disable_plaintest_auth = no* > *mail_location = mbox:~/mail:INBOX=/var/mail/%u* > *[namespace config here]* > > *passdb {* > *args = /etc/dovecot/dovecot-ldap.conf.ext* > *driver = ldap* > *}* > *plugin {* > *sieve = ~/.dovecot.sieve* > *sieve_dir = ~/sieve* > *}* > > *protocols = " imap pop3"* > *ssl_cert = </etc/dovecot/dovecot.pem* > *ssl_key = </etc/dovecot/private/dovecot.pem* > *userdb {* > *args = /etc/dovecot/dovecot-ldap.conf.ext* > *driver =ldap* > *}* > *protocol pop3 {* > *pop3_client_workarounds = outlook-no-nuls oe-ns-eoh* > *pop3_uidl_format = %08Xu%08Xv* > *}* > > Any help would be greatly apprechiated.... I'm going crazy over here. > > Thanks in advance, > David-- Mihai B?dici http://mihai.badici.ro
Steffen Kaiser
2015-Feb-24 07:05 UTC
"Temporary authentication failure" ? Cant connect with ldap user
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 23 Feb 2015, David Scheele wrote:> So, I set up the Server, installed and configured postfix, ldap and dovecot > (in that order) and now simply try to log into the mail account with a used > from the LDAP over telnet. > > The test looks like this: > > *|> telnet localhost 143* > *| a bunch of stuff ending with:* > *| OK [**] Dovecot ready.* > *|> a login username userpassword* > *| a NO [UNAVAILABLE] Temporary authentication failure. [host and date > here]* > > In the logs it says > > *|[date] mailserver dovecot: auth: Error: LDAP: binding failed (dn > cn=admin): Invalid credentials* > > But I KNOW the admin password I entered into the dovecot-lda.conf.ext is > correct as I use it to log into the LDAP directory over jxplorer > > I also know the password for the user i try to log in with is correct as i > set it myself over and over just to be sure there are no typos. > I'm at a loss, I've been at this end for a few days now and can't find good > tutorials online because its either always an old dovecot, postfix, ldap or > debian version and somewhere in the middle it just stops because some file > is completely missing. I get the impression I'm just not able-brained for > linux useage. > > Anyway, here are a few more informations about the system: > > *Dovecot version 2.1.7* > > Output of grep -v '^ *\(#.*\)\?$' dovecot-sql.conf:^^^^^^^^^^^^^^^^> > *hosts = localhost* > *dn = cn=admin* > *dnpass = [password]* > *sasl_bind = no* > *tls = no* > *auth_bind = yes* > *ldap_version = 3* > *base = dc=[domainname],dc=de* > *user_attrs = uidNumber=uid,gidNumber=gid* > *user_filter = (&(objectClass=posixAccount)(uid=%u))* > *pass_attrs = uid=user,userPassword=password* > > Output of dovecot -n: > > *disable_plaintest_auth = no* > *mail_location = mbox:~/mail:INBOX=/var/mail/%u* > *[namespace config here]* > > *passdb {* > *args = /etc/dovecot/dovecot-ldap.conf.ext*^^^^^^^^^^^^^^^^^^^^ filename mismatch> *driver = ldap* > *}* > *plugin {* > *sieve = ~/.dovecot.sieve* > *sieve_dir = ~/sieve* > *}* > > *protocols = " imap pop3"* > *ssl_cert = </etc/dovecot/dovecot.pem* > *ssl_key = </etc/dovecot/private/dovecot.pem* > *userdb {* > *args = /etc/dovecot/dovecot-ldap.conf.ext* > *driver =ldap* > *}* > *protocol pop3 {* > *pop3_client_workarounds = outlook-no-nuls oe-ns-eoh* > *pop3_uidl_format = %08Xu%08Xv* > *}* > > Any help would be greatly apprechiated.... I'm going crazy over here. > > Thanks in advance, > David >- -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEVAwUBVOwixXz1H7kL/d9rAQJxAgf/dNt0dBGANbIGvm6B0Oeuna/+uY5/7MR8 9EpFwss94eu4PyFgAfOm2Al+IOT98LP1N9OHs3Za2r/2W7LKaesgjCa3vBfH9IjZ okUj7fsQXsTAM+UqtF+ne3f5Vp6Ng36Irabr5HLptlbIu3lq8ALMm/E/72TabVLl Lln7bB/YFftnrTlI2HheRLnAwSOMHu4rNE7G9zLqiPEipD5XsqgDBPpAM6PwPmbi k/irSUgq8h4b66LCzo6Ekv6lvKzWxQpzJo0MC99HT0syAP/qpyLbPARhQvDXCH7J wvf/T19EAt+OC4zzfIPgL2YxRP5ZN5efr82NLYdiMVfAcBaDHaFWTA==8upy -----END PGP SIGNATURE-----
David Scheele
2015-Feb-24 08:36 UTC
"Temporary authentication failure" ? Cant connect with ldap user
@Steffen Kaiser: Sorry I wrote that wrong. I did indeed *grep -v '^ *\(#.*\)\?$' dovecot-ldap.conf.ext* to get those results. @Bob Miller: And how would that look like? I added a auth_bind_userdn looking like this: *auth_bind_userdn = uid=%u,dc=[hostname],o=de* And restartet dovecot, no use. Any other ideas? Best, David 2015-02-24 8:05 GMT+01:00 Steffen Kaiser <skdovecot at smail.inf.fh-brs.de>:> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 23 Feb 2015, David Scheele wrote: > > So, I set up the Server, installed and configured postfix, ldap and >> dovecot >> (in that order) and now simply try to log into the mail account with a >> used >> from the LDAP over telnet. >> >> The test looks like this: >> >> *|> telnet localhost 143* >> *| a bunch of stuff ending with:* >> *| OK [**] Dovecot ready.* >> *|> a login username userpassword* >> *| a NO [UNAVAILABLE] Temporary authentication failure. [host and date >> here]* >> >> In the logs it says >> >> *|[date] mailserver dovecot: auth: Error: LDAP: binding failed (dn >> cn=admin): Invalid credentials* >> >> But I KNOW the admin password I entered into the dovecot-lda.conf.ext is >> correct as I use it to log into the LDAP directory over jxplorer >> >> I also know the password for the user i try to log in with is correct as i >> set it myself over and over just to be sure there are no typos. >> I'm at a loss, I've been at this end for a few days now and can't find >> good >> tutorials online because its either always an old dovecot, postfix, ldap >> or >> debian version and somewhere in the middle it just stops because some file >> is completely missing. I get the impression I'm just not able-brained for >> linux useage. >> >> Anyway, here are a few more informations about the system: >> >> *Dovecot version 2.1.7* >> >> Output of grep -v '^ *\(#.*\)\?$' dovecot-sql.conf: >> > ^^^^^^^^^^^^^^^^ > >> >> *hosts = localhost* >> *dn = cn=admin* >> *dnpass = [password]* >> *sasl_bind = no* >> *tls = no* >> *auth_bind = yes* >> *ldap_version = 3* >> *base = dc=[domainname],dc=de* >> *user_attrs = uidNumber=uid,gidNumber=gid* >> *user_filter = (&(objectClass=posixAccount)(uid=%u))* >> *pass_attrs = uid=user,userPassword=password* >> >> Output of dovecot -n: >> >> *disable_plaintest_auth = no* >> *mail_location = mbox:~/mail:INBOX=/var/mail/%u* >> *[namespace config here]* >> >> *passdb {* >> *args = /etc/dovecot/dovecot-ldap.conf.ext* >> > ^^^^^^^^^^^^^^^^^^^^ > > filename mismatch > > *driver = ldap* >> *}* >> *plugin {* >> *sieve = ~/.dovecot.sieve* >> *sieve_dir = ~/sieve* >> *}* >> >> *protocols = " imap pop3"* >> *ssl_cert = </etc/dovecot/dovecot.pem* >> *ssl_key = </etc/dovecot/private/dovecot.pem* >> *userdb {* >> *args = /etc/dovecot/dovecot-ldap.conf.ext* >> *driver =ldap* >> *}* >> *protocol pop3 {* >> *pop3_client_workarounds = outlook-no-nuls oe-ns-eoh* >> *pop3_uidl_format = %08Xu%08Xv* >> *}* >> >> Any help would be greatly apprechiated.... I'm going crazy over here. >> >> Thanks in advance, >> David >> >> > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1 > > iQEVAwUBVOwixXz1H7kL/d9rAQJxAgf/dNt0dBGANbIGvm6B0Oeuna/+uY5/7MR8 > 9EpFwss94eu4PyFgAfOm2Al+IOT98LP1N9OHs3Za2r/2W7LKaesgjCa3vBfH9IjZ > okUj7fsQXsTAM+UqtF+ne3f5Vp6Ng36Irabr5HLptlbIu3lq8ALMm/E/72TabVLl > Lln7bB/YFftnrTlI2HheRLnAwSOMHu4rNE7G9zLqiPEipD5XsqgDBPpAM6PwPmbi > k/irSUgq8h4b66LCzo6Ekv6lvKzWxQpzJo0MC99HT0syAP/qpyLbPARhQvDXCH7J > wvf/T19EAt+OC4zzfIPgL2YxRP5ZN5efr82NLYdiMVfAcBaDHaFWTA=> =8upy > -----END PGP SIGNATURE----- >
Possibly Parallel Threads
- "Temporary authentication failure" ? Cant connect with ldap user
- "Temporary authentication failure" ? Cant connect with ldap user
- "Temporary authentication failure" ? Cant connect with ldap user
- "Temporary authentication failure" ? Cant connect with ldap user
- "Temporary authentication failure" ? Cant connect with ldap user