Fw: Dovecot Fehler
Klaus Tachtler
klaus at tachtler.net
Mi Jan 8 09:33:04 CET 2025
Hallo Reinhard,
Simple Bind Failed: NT_STATUS_ACCOUNT_EXPIRED
kann sich der Benutzer gegen LDAP authentifizieren?
(Benutzername und Passwort)
evtl. mit
doveadm auth test <benutzername>
mal testen.
Siehr mit eher nach einem LDAP/AD-Problem aus?
Grüße
Klaus.
--
Diese Nachricht wurde von meinem Android-Gerät mit FairMail gesendet.
Von: marstaller--- via Dovecot <dovecot at listen.jpberlin.de>
An: dovecot at listen.jpberlin.de
Kopie: marstaller at tropenklinik.de; Joerg Eichhorst <eichhorst at tropenklinik.de>
Datum: 08.01.2025 09:14:36
Betreff: Fw: Dovecot Fehler
> Hallo,
> unser exim bringt seit Freitag beim Authentifizieren immer folgenden Fehler:
>
> LOG: MAIN
> == /var/mail/maildata/staebler at tplk.loc/ <staebler at tplk.loc> R=dovecot_user T=dovecot_virtual_delivery defer (0): *Child process of dovecot_virtual_delivery transport returned 75* (could mean temporary error) from command: /usr/libexec/dovecot/dovecot-lda
> delivering 1tUVun-0003ju-5N (queue run pid 15776)
> *transport error EPIPE ignored*
>
> im Maillog kommt:
> Jan 8 08:57:31 s4slave dovecot: auth: Error: LDAP: binding failed (dn cn=ldap,cn=users,dc=tplk,dc=loc): Invalid credentials, Simple Bind Failed: NT_STATUS_ACCOUNT_EXPIRED
> Jan 8 08:57:35 s4slave dovecot: auth: ldap(fiederer at tplk.loc,192.168.135.34,<kLO1Ni0r9gDAqIci>): Aborting (timeout), we're not connected to LDAP server
>
> Wir haben an der funktionierenden Konfiguration nichts in den letzten Wochen geändert, weiss jemand was da schiefläuft?
>
> vielen Dank
> Reinhard Marstaller
>
>
> [root at s4slave exim]# dovecot -n
> # 2.2.10: /etc/dovecot/dovecot.conf
> # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 CentOS release 6.4 (Final) ext4
> auth_debug_passwords = yes
> auth_mechanisms = plain login
> auth_verbose = yes
> auth_verbose_passwords = plain
> debug_log_path = /var/log/dovecot/dovecot.log
> disable_plaintext_auth = no
> hostname = s4slave.tplk.loc
> imap_capability = CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE XLIST
> mail_debug = yes
> mail_gid = vmail
> mail_location = maildir:/var/mail/maildata/%u/mail
> mail_plugins = " quota acl mail_log notify zlib"
> mail_privileged_group = mail
> mail_uid = vmail
> managesieve_notify_capability = mailto
> managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave spamtest spamtestplus imapflags notify
> mbox_write_locks = fcntl
> namespace {
> list = children
> location = maildir:/var/mail/maildata/%%u/mail:INDEX=/var/mail/maildata/%u/mail/shared/%%u:CONTROL=%h/shared/%%u
> prefix = shared/%%u/
> separator = /
> subscriptions = yes
> type = shared
> }
> namespace {
> location = maildir:/var/mail/maildata/tropenklinik at tplk.loc:INDEXPVT=%h/mail
> prefix = Public/
> separator = /
> subscriptions = yes
> type = public
> }
> namespace inbox {
> inbox = yes
> location =
> mailbox Archive {
> auto = no
> special_use = \Archive
> }
> mailbox Archives {
> auto = subscribe
> special_use = \Archive
> }
> mailbox Drafts {
> auto = subscribe
> special_use = \Drafts
> }
> mailbox Junk {
> special_use = \Junk
> }
> mailbox Sent {
> auto = subscribe
> special_use = \Sent
> }
> mailbox "Sent Messages" {
> special_use = \Sent
> }
> mailbox Trash {
> auto = subscribe
> special_use = \Trash
> }
> prefix =
> separator = /
> subscriptions = yes
> type = private
> }
> passdb {
> args = /etc/dovecot/dovecot-ldap.conf.ext
> driver = ldap
> }
> plugin {
> acl = vfile
> acl_shared_dict = file:/var/lib/dovecot/db/shared-mailboxes.db
> sieve = ~/.dovecot.sieve
> sieve_dir = ~/
> sieve_extensions = +spamtest +spamtestplus +notify +imapflags +relational +comparator-i;ascii-numeric
> sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute
> sieve_plugins = sieve_extprograms
> sieve_vacation_use_original_recipient = yes
> zlib_save = gz
> zlib_save_level = 6
> }
> postmaster_address = administrator at tplk.loc
> protocols = imap pop3 lmtp sieve
> service auth {
> unix_listener auth-client {
> mode = 0660
> user = exim
> }
> unix_listener auth-userdb {
> group = vmail
> user = vmail
> }
> }
> service imap-login {
> inet_listener imaps {
> port = xxx
> ssl = yes
> }
> }
> service managesieve-login {
> inet_listener sieve {
> port = xxxx
> }
> service_count = 1
> vsz_limit = 64 M
> }
> service pop3-login {
> inet_listener pop3 {
> port = xxx
> }
> inet_listener pop3s {
> port = xxx
> ssl = yes
> }
> }
> ssl_cert = </etc/pki/dovecot/certs/s4slave.tplk.loc.crt
> ssl_cipher_list = XXXX
> ssl_dh_parameters_length = 2048
> ssl_key = </etc/pki/dovecot/private/s4slave.tplk.loc.key
> ssl_prefer_server_ciphers = yes
> ssl_protocols = !SSLv2 !SSLv3
> userdb {
> args = /etc/dovecot/dovecot-ldap.conf.ext
> driver = ldap
> override_fields = uid=vmail gid=vmail home=/var/mail/maildata/%u/
> }
> protocol lmtp {
> mail_plugins = " quota acl mail_log notify zlib sieve"
> }
> protocol lda {
> mail_plugins = " quota acl mail_log notify zlib sieve"
> }
> protocol imap {
> mail_plugins = " quota acl mail_log notify zlib imap_quota imap_acl imap_zlib"
> }
> [root at s4slave exim]#
>
>
>
> *Reinhard Marstaller*
> *IT*
>
>
>
>
> Tropenklinik Paul-Lechler-Krankenhaus gGmbH
>
>
>
> Paul-Lechler-Str. 24
>
>
>
> 72076 Tübingen
>
>
>
>
>
>
>
> Tel.: 07071/ 206-458, Fax: 07071/ 206-451
> eMail: _marstaller at tropenklinik.de_
>
>
>
> www.tropenklinik.de[http://www.tropenklinik.de/]
>
> [Bild]
>
--
---------------------------------------
e-Mail : klaus at tachtler.net
Homepage: https://www.tachtler.net
DokuWiki: https://dokuwiki.tachtler.net
---------------------------------------
-------------- nächster Teil --------------
Ein Dateianhang mit Binärdaten wurde abgetrennt...
Dateiname : e4lalv1p.jpeg
Dateityp : image/jpeg
Dateigröße : 13475 bytes
Beschreibung: nicht verfügbar
URL : <https://listen.jpberlin.de/pipermail/dovecot/attachments/20250108/1adc6b65/attachment.jpeg>
Mehr Informationen über die Mailingliste Dovecot