search for: original_us

...urposes without luck. Ubuntu 18.04.3, canonical official repos only, no ppa nor self-compiled anything. From the log below I understand the master password succeeds but AD auth fails. I am pretty sure I missed something here. Also, notice the messages "Ignoring unknown passdb extra field: original_user". Log: Nov? 1 14:02:32 netuno dovecot: auth: Debug: client in: AUTH#0112#011PLAIN#011service=imap#011secured#011session=H2WM7kuWFKYKCQgI#011lip=10.9.8.8#011rip=10.9.8.8#011lport=143#011rport=42516#011resp=<hidden> Nov? 1 14:02:32 netuno dovecot: auth: Debug: passwd-file(master,10.9...

...ding requests (max 1 secs, pid=8764, EOF) Password debug shows: Jul 09 06:38:25 auth: Debug: ldap(user at domain.com,192.168.10.90,<xSSOKi438ODKOsBS>): Credentials: 4b616e6761733138 Jul 09 06:38:27 auth: Debug: client passdb out: FAIL 2541 user=user at domain.com pass=NotPassword original_user=user Jul 09 06:38:37 auth: Debug: passwd-file(tassiedevil,192.168.10.90,<weQKKy438eDKOsBS>): username changed user -> user at domain.com Jul 09 06:38:37 auth: Debug: passwd-file(user at domain.com,192.168.10.90,<weQKKy438eDKOsBS>): Allowing any password Jul 09 06:38:37 auth: De...

.../etc/passwd: Read 41 users in 0 secs Jul 18 09:20:12 auth-worker(31129): Debug: pam(dvtest,127.0.0.1): lookup service=dovecot Jul 18 09:20:12 auth-worker(31129): Debug: pam(dvtest,127.0.0.1): #1/1 style=1 msg=Password: Jul 18 09:20:12 auth: Debug: client passdb out: OK 1 user=dvtest original_user=dvtest at example.com Jul 18 09:20:12 auth: Debug: master in: REQUEST 3026321409 31071 1 1fd6a55253e45ae1eda745081b58bccc session_pid=31130 request_auth_token Jul 18 09:20:12 auth: Debug: passwd-file(dvtest,127.0.0.1,<MVmPlnL+TAB/AAAB>): lookup: user=dvtest file=/e...

...8): Debug: shadow(mark,192.168.0.99): lookup Jul 11 17:28:31 auth-worker(5858): Info: shadow(mark,192.168.0.99): unknown user Jul 11 17:28:31 auth: Debug: shadow(mark,192.168.0.99,<OxGMYRFUsADAqABj>): Credentials: Jul 11 17:28:31 auth: Debug: client passdb out: OK 1 user=mark original_user=mark at HPRS.LOCAL Jul 11 17:28:31 auth: Debug: master in: REQUEST 3872522241 6421 1 46614c53fd96efa48a94b889ad2405d3 session_pid=6429 request_auth_token Jul 11 17:28:31 auth-worker(5858): Debug: shadow(mark,192.168.0.99): lookup Jul 11 17:28:31 auth-worker(5858): Debug...

...ername changed bob.test -> authapps 2017-09-28 12:57:10.409905500 Sep 28 12:57:10 auth: Info: static(authapps,192.168.120.70,<rvFSUEVaxLfAqHhG>): No password returned (and no nopassword) 2017-09-28 12:57:12.412437500 Sep 28 12:57:12 auth: Debug: client passdb out: FAIL 11 user=authapps original_user=bob.test so maybe I am not passing the %w in the correct spot? truly appreciate you taking a look at this, thank you. >> passdb { >> args = user=authapps password=XXXXXXXXXX >> driver = static >> } > > This is probably correct except that now user authapps c...

...contoso.com,192.168.....,<MR1yvq6DftfAqAoP>): passdb doesn't support credential lookups auth: Debug: gssapi(user2 at sub.contoso.com,192.168.....,<MR1yvq6DftfAqAoP>): skipping passdb: mechanism filtered auth: Debug: client passdb out: OK 1 user=user2 at sub.contoso.com original_user=user2 at SUB.CONTOSO.COM ===== Logging in with user2 at sub.contoso.com - FAIL: ===== auth: Debug: client in: AUTH 1 GSSAPI service=imap secured=tls session=... auth: Debug: gssapi(?,192.168....,<Hgh4zq6DhNfAqAoP>): Using all keytab entries auth: Debug: client passdb out:...

...sult: uid=sales Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: ldap(sales at userful.com,192.168.123.39,<Y0GBzgVdlorAqHsn>): username changed sales at userful.com -> sales Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: client passdb out: OK??????? 1??????? user=sales??????????????? original_user=sales at userful.com so far so good but then I get Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: master in: REQUEST??????? 3851550721??????? 29049??????? 1??????? 519189df600c24c010b57158ac01c867??????? session_pid=29073??????? request_auth_token Nov 02 14:26:44 mail2 dovecot[29047]: auth-...

...> > Whereas when > > I specified the userdb passwd at least it had a user id in the error > > log.? From > > my previous test with userdb passwd amd passdb shadow: > > > > Sep 05 16:45:19 auth: Debug: client passdb out: OK? ? ? 1? ? > > ??user=mark at hprs? original_user=mark at HPRS > > Sep 05 16:45:19 auth-worker(5498): Debug: > > shadow(mark at hprs,192.168.0.58): lookup > > Sep 05 16:45:19 auth-worker(5498): Info: shadow(mark at hprs,192.168.0.58): > > unknown user > > Sep 05 16:45:19 auth: Debug: master userdb out: NOTFOUND? ? ?...

...he suggestion to drop_priv_before_exec=yes breaks auth totally. > > doveconf -n: [snipped] with auth_debug=yes, and auth_debug_passwords=yes, I got the following: Jun 4 14:23:47 thebighonker dovecot: auth: Debug: client passdb out: FAIL 1 user=ncbbkbdoohhejcjhllpaaejoibaa.ler original_user=NCBBKBDOOHHEJCJHLLPAAEJOIBAA.ler Jun 4 14:23:47 thebighonker exim[15791]: dovecot_login authenticator failed for (Gdosbzur) [14.210.76.12]:51337 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ncbbkbdoohhejcjhllpaaejoiba a.ler) Jun 4 14:23:48 thebighonker exim[15938]: no host na...

...at ohprs) is nowhere to be found.? > Whereas when > I specified the userdb passwd at least it had a user id in the error > log.? From > my previous test with userdb passwd amd passdb shadow: > > Sep 05 16:45:19 auth: Debug: client passdb out: OK? ? ? 1? ? > ??user=mark at hprs? original_user=mark at HPRS > Sep 05 16:45:19 auth-worker(5498): Debug: > shadow(mark at hprs,192.168.0.58): lookup > Sep 05 16:45:19 auth-worker(5498): Info: shadow(mark at hprs,192.168.0.58): > unknown user > Sep 05 16:45:19 auth: Debug: master userdb out: NOTFOUND? ? ? ?998899713 > > The...

...prs.org>: > > > More info ... > > > > My dovecot error log shows: > > > > Sep 05 16:45:19 auth: Debug: client in: AUTH? ? 1? ? ? ?NTLM? ? > > service=imap > > Sep 05 16:45:19 auth: Debug: client passdb out: OK? ? ? 1? ? ? > > ?user=mark at hprs? original_user=mark at HPRS > > Sep 05 16:45:19 auth: Debug: master in: REQUEST 998899713? ? ? > ?10219? > > ?1? ? ? ?f56352c207cb8f6dea4d264b2c0f8dc1? ? ? > ?session_pid=10220? ? ? > > ?request_auth_token > > Sep 05 16:45:19 auth-worker(5498): Debug: > > shadow(mark at hprs,...

...120.70,<y0vvhDFaYqDAqHhG>): lookup 2017-09-27 13:20:13.725960500 Sep 27 13:20:13 auth: Debug: static(bob.test,192.168.120.70,<y0vvhDFaYqDAqHhG>): username changed bob.test -> authapps 2017-09-27 13:20:13.726011500 Sep 27 13:20:13 auth: Debug: client passdb out: OK 1 user=authapps original_user=bob.test 2017-09-27 13:20:13.728299500 Sep 27 13:20:13 auth: Debug: master in: REQUEST 2523398145 13259 1 ba830ae1c199401e5dbee28e31025ac1 session_pid=13335 request_auth_token 2017-09-27 13:20:13.728344500 Sep 27 13:20:13 auth: Debug: master userdb out: USER 2523398145 authapps uid=509 gid=509...

...t;> Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: ldap(sales at userful.com,192.168.123.39,<Y0GBzgVdlorAqHsn>): username changed sales at userful.com -> sales >> Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: client passdb out: OK??????? 1??????? user=sales??????????????? original_user=sales at userful.com >> >> so far so good but then I get >> >> Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: master in: REQUEST??????? 3851550721??????? 29049??????? 1??????? 519189df600c24c010b57158ac01c867??????? >> session_pid=29073??????? request_auth_token...

More info ... My dovecot error log shows: Sep 05 16:45:19 auth: Debug: client in: AUTH 1 NTLM service=imap Sep 05 16:45:19 auth: Debug: client passdb out: OK 1 user=mark at hprs original_user=mark at HPRS Sep 05 16:45:19 auth: Debug: master in: REQUEST 998899713 10219 1 f56352c207cb8f6dea4d264b2c0f8dc1 session_pid=10220 request_auth_token Sep 05 16:45:19 auth-worker(5498): Debug: shadow(mark at hprs,192.168.0.58): lookup Sep 05 16:45:19 auth-worker(5498): Inf...

...tice that my userid (mark or mark at ohprs) is nowhere to be found. Whereas when I specified the userdb passwd at least it had a user id in the error log. From my previous test with userdb passwd amd passdb shadow: Sep 05 16:45:19 auth: Debug: client passdb out: OK? ? ? 1? ? ??user=mark at hprs? original_user=mark at HPRS Sep 05 16:45:19 auth-worker(5498): Debug: shadow(mark at hprs,192.168.0.58): lookup Sep 05 16:45:19 auth-worker(5498): Info: shadow(mark at hprs,192.168.0.58): unknown user Sep 05 16:45:19 auth: Debug: master userdb out: NOTFOUND? ? ? ?998899713 The "Info: ntml" log entry...

...orized by k5principals field: u123456 at REALM dovecot[13337]: auth: Debug: auth(123456 at example.com,10.0.9.14,<6xHsI62sJoWT+2C4>): Auth request finished dovecot[13337]: auth: Debug: client passdb out: OK 1 user=123456 at example.com k5principals=u123456 at REALM original_user=u123456 at REALM dovecot[13337]: auth: Debug: master in: REQUEST 3251372033 13340 1 3bbd5f6931fe4e949e7822657da9e33b session_pid=13343 request_auth_token # 2.3.8 (9df20d2db): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.8 (b7b03ba2) # OS: Linux 4....

...ing authentication (noauthenticate set) > dovecot[10118]: auth-worker(10356): Debug: pam(flo): lookup service=dovecot > dovecot[10118]: auth-worker(10356): Debug: pam(flo): #1/1 style=1 msg=Password: > dovecot[10118]: auth: Debug: client passdb out: OK 1 user=flo original_user=test at xinu.at Florian Full config: # 2.3.2.1 (0719df592): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.2 (7704de5e) # OS: Linux 4.18.5-arch1-1-ARCH x86_64 Arch Linux # Hostname: calima auth_debug = yes mail_location = mdbox:~/.mdbox mail_plugins = zlib managesieve_notify_capability...

with passdb ldap i guess. ---Aki TuomiDovecot oy -------- Original message --------From: Mark Foley <mfoley at ohprs.org> Date: 03/12/2017 21:18 (GMT+02:00) To: dovecot at dovecot.org Subject: Re: Howto authenticate smartPhone via Active Directory Yes, you are right. This link: https://www.redips.net/linux/android-email-postfix-auth/#section2 shows: passdb pam { } used for

...changed bob.test -> authapps > 2017-09-28 12:57:10.409905500 Sep 28 12:57:10 auth: Info: static(authapps,192.168.120.70,<rvFSUEVaxLfAqHhG>): No password returned (and no nopassword) > 2017-09-28 12:57:12.412437500 Sep 28 12:57:12 auth: Debug: client passdb out: FAIL 11 user=authapps original_user=bob.test > > > so maybe I am not passing the %w in the correct spot? > > truly appreciate you taking a look at this, thank you. Now this starts to be a bit complex. Not sure if you can get this working by returning imapc_password = %w from the first passdb. Atleast if it works...

.... Rick Quoting Mark Foley <mfoley at ohprs.org>: > More info ... > > My dovecot error log shows: > > Sep 05 16:45:19 auth: Debug: client in: AUTH? ? 1? ? ? ?NTLM? ? > service=imap > Sep 05 16:45:19 auth: Debug: client passdb out: OK? ? ? 1? ? ? > ?user=mark at hprs? original_user=mark at HPRS > Sep 05 16:45:19 auth: Debug: master in: REQUEST 998899713? ? ? ?10219? > ?1? ? ? ?f56352c207cb8f6dea4d264b2c0f8dc1? ? ? ?session_pid=10220? ? ? > ?request_auth_token > Sep 05 16:45:19 auth-worker(5498): Debug: > shadow(mark at hprs,192.168.0.58): lookup > Sep 05 1...