* Patrick - South Valley Internet <patrickm AT garlic DOT com>:
> Hi all,
>
> I can't seem to authenticate trying to send mail out. Whenever I try to
> authenticate to Postfix, I get this:
>
> -----
> Aug 9 14:22:59 hes postfix/smtpd[28351]: warning:
> 216-182-21-38.gic.net[216.182.11.38]: SASL PLAIN authentication failed:
> generic failure
> -----
>
> Postfix should be authenticating to LDAP.
>
> Here is my main.cf:
Send "saslfinger -s" output and "ps axf | grep saslauthd" and the contents of
saslauthd.conf.
p@rick
>
> ##################################
> queue_directory = /spool-mqueue
> daemon_directory = /usr/libexec/postfix
> mail_owner = postfix
> myhostname = hes.xyz.com
> mydomain = xyz.com
> myorigin = $mydomain
> inet_interfaces = $myhostname, localhost
> unknown_local_recipient_reject_code = 550
> mynetworks = 208.195.160.0/19, 216.139.0.0/18, 68.118.69.157, 66.81.0.0/16
> mynetworks_style = host
> mydestination = $myhostname, localhost.$mydomain, /etc/postfix/local.domains
> relay_domains = $mydestination
> transport_maps = hash:/etc/postfix/transport
>
>
> #virtual_alias_maps = ldap:accountsmap, ldap:aliases
> alias_maps = hash:/etc/postfix/aliases
> alias_database = hash:/etc/postfix/aliases,
> hash:/etc/postfix/majordomo.aliases,
> hash:/etc/aliases
> fast_flush_domains = $relay_domains, msn.com, yahoo.com, yahoo.ca, rsc.net
> debug_peer_level = 2
> debugger_command =
> PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
> xxgdb $daemon_directory/$process_name $process_id & sleep 5
>
> sendmail_path = /usr/sbin/sendmail.postfix
> newaliases_path = /usr/bin/newaliases.postfix
> mailq_path = /usr/bin/mailq.postfix
> setgid_group = postdrop
> html_directory = /usr/share/doc/postfix-2.4.3-documentation/html
> manpage_directory = /usr/share/man
> readme_directory = /usr/share/doc/postfix-2.4.3-documentation/readme
> allow_mail_to_files = alias,forward,include
> allow_mail_to_commands = alias,forward,include
> message_size_limit = 15360000
> mailbox_size_limit = 102400000
> queue_minfree = 4096000000
> smtpd_helo_required = yes
> disable_vrfy_command = yes
>
> domains_server_host = localhost
> domains_search_base = dc=xyz,dc=com
> domains_bind = no
> domains_scope = one
>
> aliases_server_host = localhost
> aliases_search_base = dc=xyz,dc=com
> aliases_result_attribute = maildrop
> aliases_bind = no
>
> accounts_server_host = localhost
> accounts_search_base = dc=xyz,dc=com
> accounts_result_attribute = mailbox
> accounts_bind = no
>
> accountsmap_server_host = localhost
> accountsmap_search_base = dc=xyz,dc=com
> accountsmap_result_attribute = mail
> accountsmap_bind = no
>
> home_mailbox = Maildir/
>
> # SASL support
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain =
> smtpd_recipient_restrictions = permit_sasl_authenticated,
> permit_mynetworks, check_relay_domains, reject_unauth_destination
> smtpd_sasl_security_options = noanonymous
> smtp_sasl_auth_enable = no
>
> # TLS Support
> smtpd_use_tls = yes
> smtpd_tls_auth_only = no
> smtpd_tls_key_file = /usr/share/ssl/hes.xyz.com/hes.xyz.com.privatek
> ey.pem
> smtpd_tls_cert_file = /usr/share/ssl/hes.xyz.com/hes.xyz.com.cert.pe
> m
> smtpd_tls_CAfile = /usr/share/ssl/hes.xyz.com/cacert.pem
>
> smtpd_tls_loglevel = 1
> smtpd_tls_received_header = yes
> smtpd_tls_session_cache_timeout = 3600s
> tls_random_source = dev:/dev/urandom
> ##################################
>
> Any ideas?
>
> Patrick
--
The Book of Postfix
<http://www.postfix-book.com>
saslfinger (debugging SMTP AUTH):
<http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>
|
