Results 1 to 3 of 3

Thread: PAM authentication: local users can't log in

  1. #1
    Member
    Join Date
    Jul 2010
    Location
    Novosibirsk, Russia
    Posts
    35

    PAM authentication: local users can't log in

    Hello,

    zarafa: 6.40

    I have tried to use pam authentication; in /etc/pam.d copied sshd to zarafa and changed these lines in server.cfg:

    auth_method = pam
    pam_service = zarafa

    I can ssh to both local and LDAP-based (domain) users.

    However Zarafa doesn't accept local users name/password - reports name/password combination isn't valid

    zarafa-admin -l

    also doesn't list local users. What can I do to use local users in Zarafa as well as LDAP ones?

  2. #2
    Senior Member
    Join Date
    May 2006
    Location
    Delft
    Posts
    1,935

    Re: PAM authentication: local users can't log in

    also doesn't list local users. What can I do to use local users in Zarafa as well as LDAP ones?
    Looks like there is something else wrong in your setup.
    The zarafa-admin -l should always list users. Please check the server.log for errors and maybe increase the loglevel.

    I think this is also the reason why you can't do a pam authentication.

    It's not possible to use both local and LDAP users in Zarafa.
    You have to choose of these methods.

    Milo

  3. #3
    Member
    Join Date
    Jul 2010
    Location
    Novosibirsk, Russia
    Posts
    35

    Re: PAM authentication: local users can't log in

    Perhaps I wasn't too clear. Authentication (in Zarafa) happens only for those users provided by LDAP backend (pam is instructed to check local accounts first and if it fails - to check against LDAP backend).

    It works fine with all the services like sshd, mta etc - with all but Zarafa. The latter *does* distinguish between local and LDAP users even if pam is used . Why?

    Quote Originally Posted by milo
    It's not possible to use both local and LDAP users in Zarafa.
    You have to choose of these methods.
    pam was designed to provide the unified authentication, to allow mixing the auth. sources seamlessly. What is the sense to use pam if its advantages are not used? It turns out that using ldap auth.plugin and pam method is the same?

Similar Threads

  1. OL 2010 - Does not start without local pst
    By Stril in forum Outlook usage Archives
    Replies: 1
    Last Post: 07-12-2010, 11:53 AM
  2. Local Mail not being delivered to users mailbox
    By duncanwiggill in forum Installation and Configuration Archives
    Replies: 1
    Last Post: 17-10-2009, 08:32 AM
  3. Local Users in the iCal of Apple
    By basty in forum Other mail/calendar clients Archives
    Replies: 4
    Last Post: 03-09-2009, 08:04 AM
  4. Authentication error: profile 'Zarafa': Authentication [...]
    By thielmann in forum Z-Merge Development
    Replies: 21
    Last Post: 21-01-2009, 05:57 PM
  5. Local delivery, then the MTA?
    By stephen in forum Administration and Integration Archives
    Replies: 2
    Last Post: 07-06-2007, 07:16 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •