[Résolu] Postfix + SASL

Marsh Posté le 30-10-2015 à 12:00:26

Bonjour,

Je ne comprend pas ce que j'ai raté dans la configuration SASL pour avoir cette ligne dans les logs... :

Code :

SASL CRAM-MD5 authentication failed: no mechanism available

/etc/sasl2/smtpd.conf

Code :

pwcheck_method: saslauthd
mech_list: plain login

/etc/sysconfig/saslauthd

Code :

# Directory in which to place saslauthd's listening socket, pid file, and so
# on. This directory must already exist.
SOCKETDIR=/var/run/saslauthd
# Mechanism to use when checking passwords. Run "saslauthd -v" to get a list
# of which mechanism your installation was compiled with the ablity to use.
MECH=ldap
# Options sent to the saslauthd. If the MECH is other than "pam" uncomment the next line.
# DAEMONOPTS=--user saslauth
# Additional flags to pass to saslauthd on the command line. See saslauthd(8)
# for the list of accepted flags.
FLAGS=

main.cf

Code :

######################################################
## Definition des parametres de chiffrement via TLS ##
######################################################
# Smtp ( OUTGOING )
smtp_tls_loglevel = 1
smtp_tls_security_level = may
smtp_tls_CAfile = /configuration/ssl/DigiCertCA.crt
smtp_tls_protocols = !SSLv2, !SSLv3, TLSv1
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, TLSv1
smtp_tls_mandatory_ciphers = high
smtp_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDC3-SHA, KRB5-DE5, CBC3-SHA
# ---------------------------------------------------------------------------------------------------
# Smtpd ( INCOMING )
smtpd_tls_loglevel = 1
smtpd_use_tls = yes
smtpd_tls_security_level = may
smtpd_tls_received_header = yes
smtpd_tls_protocols = !SSLv2, !SSLv3, TLSv1
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, TLSv1
smtpd_tls_mandatory_ciphers = high
smtpd_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDC3-SHA, KRB5-DE5, CBC3-SHA
smtpd_tls_CAfile = /configuration/ssl/DigiCertCA.crt
smtpd_tls_cert_file = /configuration/ssl/smtp.mondomaine.fr.crt
smtpd_tls_key_file = /configuration/ssl/smtp.mondomaine.fr.nopass.key
smtpd_tls_eecdh_grade = ultra
tls_eecdh_strong_curve = prime256v1
tls_eecdh_ultra_curve = secp521r1
tls_preempt_cipherlist = yes
tls_random_source = dev:/dev/urandom
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
lmtp_tls_session_cache_database = btree:${data_directory}/lmtp_scache
smtpd_tls_session_cache_timeout = 3600s
##################################
## Parametres de connexion SASL ##
##################################
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = smtpd
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_local_domain = $mydomain
smtpd_sasl_authenticated_header = no
broken_sasl_auth_clients = yes

Merci d'avance pour votre aide ! :)

Message édité par K-ny13 le 12-11-2015 à 15:56:08

Reply

Marsh Posté le 30-10-2015 à 12:00:26

Reply

Marsh Posté le 09-11-2015 à 16:54:50

Je suis pas sur mais dans smtpd.conf met les mechanisme en majuscules (PLAIN LOGIN).

---------------
sheep++

Reply

Marsh Posté le 12-11-2015 à 15:55:17

Bonjour h3bus,

Ça a l'air de fonctionner. Merci !

Reply

[Résolu] Postfix + SASL

Sujets relatifs:

Leave a Replay