Hi,
I'm running Smeserver 10.1 fully up to date. We had a power outage a few days ago and lost Internet connection so someone decided to restart the server. After we appeared to be up and going we started getting reports that all users were unable to login to their (IMAP) email. I checked via webmail and received the following message:
Login failed because your username or password was entered incorrectly.
I then checked the logfiles and heaps of the following errors:
auth-worker(7702): pam(user,127.0.0.1,<Vwbd2yc5UKJ/AAAB>): pam_authenticate() failed: Authentication failure (password mismatch?)
After many hours of googling and checking files against working installs I found a post detailing how to change authentication from "pam" to "shadow". I modified /etc/dovecot/dovecot.conf and changed the following line:
passdb {
driver = pamto use shadow as such:
passdb {
driver = shadow
followed by:
systemctl stop dovecot.service
systemctl start dovecot.service
And now it's working:
imap-login: Login: user=<user>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=9883, secured, session=<ogCHJyg5xqZ/AAAB>
I've tried to reinstall dovecot and smeserver-dovecot but still cant get pam authentication to work. Does anyone have any ideas what might have happened or any other options to try. It's working at the moment but I'd like to put it back to the default pam authentication. I'm worried about the security implications of using "shadow" to authenticate?
Regards, Lloyd
2 Replies
1938 Views