Hi, I am trying to setup ISPConfig 2.2.32 on CentOS 5.3 32-bit. I followed the how-to on howtoforge for CentOS 5.2[1]. The control panel is working and the emails are being delivered to the mailbox. But, I am unable to login via IMAP.1 Here's the output from telnet ----- telnet dtc.progresspartners.co.in 143 Trying 70.38.112.176... Connected to dtc.progresspartners.co.in. Escape character is '^]'. * OK Dovecot ready. a login mehul@thehappinesscompany.in ***** a NO Authentication failed. * BYE Disconnected for inactivity. Connection closed by foreign host. -----
Here's the logs for dovecot ----- dovecot: May 11 01:53:03 Info: auth(default): new auth connection: pid=31674 dovecot: May 11 01:53:16 Info: auth(default): client in: AUTH 1 PLAIN service=IMAP lip=::ffff:70.38.112.176 rip=::ffff:122.169.50.85 resp=AG1laHVsQHRoZWhhcHBpbmVzc2NvbXBhbnkuaW4AbWVodWw= dovecot: May 11 01:53:16 Info: auth(default): pam(mehul@thehappinesscompany.in,::ffff:122.169.50.85): lookup service=dovecot dovecot: May 11 01:53:18 Info: auth(default): pam(mehul@thehappinesscompany.in,::ffff:122.169.50.85): pam_authenticate() failed: User not known to the underlying authentication module dovecot: May 11 01:53:18 Info: auth(default): client out: FAIL 1 user=mehul@thehappinesscompany.in dovecot: May 11 01:56:16 Info: imap-login: Disconnected: Inactivity: user=mehul@thehappinesscompany.in, method=PLAIN, rip=::ffff:122.169.50.85, lip=::ffff:70.38.112.176 -----
/etc/dovecot.conf ----- protocols = imap imaps pop3 pop3s
log_path = /var/log/dovecot/error.log
info_log_path = /var/log/dovecot/info.log
log_timestamp = "%b %d %H:%M:%S "
syslog_facility = mail
login_dir = /var/run/dovecot/login
login_chroot = yes
login_greeting = Dovecot ready.
login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c
login_log_format = %$: %s
protocol imap { }
protocol pop3 { }
protocol lda { postmaster_address = postmaster@example.com }
auth_debug = yes
auth_debug_passwords = yes
auth default { mechanisms = plain login passdb pam { }
userdb passwd { }
user = root
}
dict { }
plugin { } ----- I have checked that the username and password exist and are correct. I am not sure if dovecot should be authenticating using PAM or use some files or mysql. Any pointers to the solve the issue will be appreciated.
1. http://www.howtoforge.com/perfect-server-centos-5.2
Dear Mehul,
This appears to be a config error w.r.t the PAM config. For more information as to why the authentication was refused, i suggest you view the entries in the /var/log/secure for the messages from pam.
Also, in the broader sense, maybe you should look at using mysql tables for authentication, if ISPConfig supports it, as it will open less holes in the base system.
Regards R. K. Rajeev
On 5/11/09, Mehul Ved mehul.n.ved@gmail.com wrote:
Hi, I am trying to setup ISPConfig 2.2.32 on CentOS 5.3 32-bit. I followed the how-to on howtoforge for CentOS 5.2[1]. The control panel is working and the emails are being delivered to the mailbox. But, I am unable to login via IMAP.1 Here's the output from telnet
telnet dtc.progresspartners.co.in 143 Trying 70.38.112.176... Connected to dtc.progresspartners.co.in. Escape character is '^]'.
- OK Dovecot ready.
a login mehul@thehappinesscompany.in ***** a NO Authentication failed.
- BYE Disconnected for inactivity.
Connection closed by foreign host.
Here's the logs for dovecot
dovecot: May 11 01:53:03 Info: auth(default): new auth connection: pid=31674 dovecot: May 11 01:53:16 Info: auth(default): client in: AUTH 1 PLAIN service=IMAP lip=::ffff:70.38.112.176 rip=::ffff:122.169.50.85 resp=AG1laHVsQHRoZWhhcHBpbmVzc2NvbXBhbnkuaW4AbWVodWw= dovecot: May 11 01:53:16 Info: auth(default): pam(mehul@thehappinesscompany.in,::ffff:122.169.50.85): lookup service=dovecot dovecot: May 11 01:53:18 Info: auth(default): pam(mehul@thehappinesscompany.in,::ffff:122.169.50.85): pam_authenticate() failed: User not known to the underlying authentication module dovecot: May 11 01:53:18 Info: auth(default): client out: FAIL 1 user=mehul@thehappinesscompany.in dovecot: May 11 01:56:16 Info: imap-login: Disconnected: Inactivity: user=mehul@thehappinesscompany.in, method=PLAIN, rip=::ffff:122.169.50.85, lip=::ffff:70.38.112.176
/etc/dovecot.conf
protocols = imap imaps pop3 pop3s
log_path = /var/log/dovecot/error.log
info_log_path = /var/log/dovecot/info.log
log_timestamp = "%b %d %H:%M:%S "
syslog_facility = mail
login_dir = /var/run/dovecot/login
login_chroot = yes
login_greeting = Dovecot ready.
login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c
login_log_format = %$: %s
protocol imap { }
protocol pop3 { }
protocol lda { postmaster_address = postmaster@example.com }
auth_debug = yes
auth_debug_passwords = yes
auth default { mechanisms = plain login passdb pam { }
userdb passwd { }
user = root
}
dict { }
plugin { }
I have checked that the username and password exist and are correct. I am not sure if dovecot should be authenticating using PAM or use some files or mysql. Any pointers to the solve the issue will be appreciated.
--
This file will self-destruct in five minutes. - http://kingsly.net/tmp/fortune.php/1242019626 -- http://mm.glug-bom.org/mailman/listinfo/linuxers
On Mon, May 11, 2009 at 1:51 PM, Rajeev R. K. rajeevrk@gmail.com wrote:
Dear Mehul,
Hi Rajiv,
This appears to be a config error w.r.t the PAM config. For more information as to why the authentication was refused, i suggest you view the entries in the /var/log/secure for the messages from pam.
Here's the relevant entry from /var/log/auth.log ----- May 11 04:23:54 www dovecot-auth: pam_unix(dovecot:auth): check pass; user unknown May 11 04:23:54 www dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser= rhost=::ffff:122.169.50.85 May 11 04:23:54 www dovecot-auth: pam_succeed_if(dovecot:auth): error retrieving information about user mehul@thehappinesscompany.in -----
Also, in the broader sense, maybe you should look at using mysql tables for authentication, if ISPConfig supports it, as it will open less holes in the base system.
Yes it would indeed be a good idea. I have setup dovecot to use mysql to look into the tables but I am yet to figure out how the accounts created in ISPConfig would be stored in the table.
Regards R. K. Rajeev
With Regards, Mehul Ved
On Mon, May 11, 2009 at 2:15 PM, Mehul Ved mehul.n.ved@gmail.com wrote:
Here's the relevant entry from /var/log/auth.log
May 11 04:23:54 www dovecot-auth: pam_unix(dovecot:auth): check pass; user unknown May 11 04:23:54 www dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser= rhost=::ffff:122.169.50.85 May 11 04:23:54 www dovecot-auth: pam_succeed_if(dovecot:auth): error retrieving information about user mehul@thehappinesscompany.in
It turns out that user needs to use their login ID and not email address to login via IMAP. So, using the login ID solved the problem.
On Tuesday 12 May 2009, Mehul Ved wrote:
It turns out that user needs to use their login ID and not email address to login via IMAP. So, using the login ID solved the problem.
I think this may be configurable ie. user@domainname when multiple domains are hosted on the same system.
On Tue, May 12, 2009 at 3:01 PM, Arun Khan knura@yahoo.com wrote:
I think this may be configurable ie. user@domainname when multiple domains are hosted on the same system.
From what I've got till now, ISPConfig2 sets it up in this manner. I
haven't fiddled with the configuration files to find out how to do this, and without breaking other things like FTP and Control Panel login. What ISPConfig does to identify users from different domains is that it prefixes the username with <string><number>_<username> where: <string> is a configurable string, defaulting to 'web' <number> is the serial number of the domain created i.e. first domain is web1, second is web2 and so on <username> is the username that is given in the control panel. So, if I create my first domain as example.net with 3 users a,b,c their logins would be web1_a, web1_b and web1_c. But, their email addresses will be a@example.net, b@example.net and c@example.net.
-
Arun Khan -
Mehul Ved -
Rajeev R. K.