1 (edited by kiwistag 2016-04-29 18:08:53)

Topic: Auth changes for Dovecot results in NO authentication

==== Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.3
- Linux/BSD distribution name and version: Centos 7 x64
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Apache
- Manage mail accounts with iRedAdmin-Pro? Yes
- Related log if you're reporting an issue:
====

For some reason after trying to secure the pop3 authenication down, no nothing will authenticate with Dovecot.
The only lines changed and reverted were:

# Enabled mail protocols.
protocols = imap pop3 sieve lmtp
# imaps pop3s
Debug ******
ssl = yes to ssl = required

# disable_plaintext_auth = yes
disable_plaintext_auth = no

Logs below.
Any ideas?

maillog:
Apr 29 21:59:38 mx roundcube: <iep6moou> IMAP Error: Login failed for user@domain from x.y.z. LOGIN: Authentication failed. in /var/www/roundcubemail-1.1.1/program/lib/Roundcube/rcube_imap.php on line 197 (POST /mail/?_task=login?_task=login&_action=login)
Apr 29 22:00:18 mx roundcube: <iep6moou> IMAP Error: Login failed for user@domain from x.y.z. LOGIN: Authentication failed. in /var/www/roundcubemail-1.1.1/program/lib/Roundcube/rcube_imap.php on line 197 (POST /mail/?_task=login?_task=login&_action=login)


DoveCot (ignore timestamps):
Apr 29 22:02:53 auth: Debug: passwd-file(user@domain,127.0.0.1,<sNYRv5wxyQB/AAAB>): lookup: user=(user@domain file=/etc/dovecot/dovecot-master-users
Apr 29 22:02:53 auth: Info: passwd-file((user@domain,127.0.0.1,<sNYRv5wxyQB/AAAB>): unknown user (given password: PASSWORD)
Apr 29 22:02:55 auth: Debug: client passdb out: FAIL    1       user=bevan@yrless.nz
Apr 29 22:02:55 imap-login: Info: Disconnected (auth failed, 1 attempts in 2 secs): user=<(user@domain>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session=<sNYRv5wxyQB/AAAB>

Even SMTP fails using TLS (port 587) or plain (25):

Apr 29 22:06:57 mx postfix/smtpd[15091]: connect from mail-yw0-f173.google.com[209.85.161.173]
Apr 29 22:07:00 mx postfix/smtpd[15091]: warning: mail-yw0-f173.google.com[209.85.161.173]: SASL PLAIN authentication failed:
Apr 29 22:07:00 mx postfix/smtpd[15091]: lost connection after AUTH from mail-yw0-f173.google.com[209.85.161.173]
Apr 29 22:07:00 mx postfix/smtpd[15091]: disconnect from mail-yw0-f173.google.com[209.85.161.173]

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Auth changes for Dovecot results in NO authentication

After looking at DoveCot I changed the passdb directive

# Virtual mail accounts.
userdb {
  args = /etc/dovecot/dovecot-mysql.conf
  driver = sql
}
passdb {
  args = /etc/dovecot/dovecot-mysql.conf
# WAS /etc/dovecot/dovecot-master-users
  driver = sql
}

NO idea why it changed!! Weird!