Previous 1 2 Next 20 Replies Latest reply: Nov 19, 2010 7:04 AM by Spyros2 Go to original post
  • Spyros2 Level 1 Level 1 (0 points)
    A specific user cannot authenticate. By changing the user on the McBook to admin, I could authenticate both on IMAP and SMTP. For a normal user :(sjpapa) IMAP authentication is rejected.

    Open Directory log:

    2010-10-28 15:42:51 EEST - T[0x0000000101B5F000] - Misconfiguration detected in hash 'User Name':
    2010-10-28 15:42:51 EEST - T[0x0000000101B5F000] - User 'sjpapa' (/LDAPv3/127.0.0.1) - ID 1028 - UUID 4521398F-89DA-4BD5-82F3-B549E140ABA7 - SID S-1-5-21-1054367001-2487624330-2506398452-3056
    2010-10-28 15:42:51 EEST - T[0x0000000101B5F000] - User 'sjpapa' (/Local/Default) - ID 508 - UUID B35DAE9A-A1F6-4508-81E2-043250DE25B2 - SID S-1-5-21-1054367001-2487624330-2506398452-2016
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - Misconfiguration detected in hash 'User Name':
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - User 'sjpapa' (/LDAPv3/127.0.0.1) - ID 1028 - UUID 4521398F-89DA-4BD5-82F3-B549E140ABA7 - SID S-1-5-21-1054367001-2487624330-2506398452-3056
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - User 'sjpapa' (/Local/Default) - ID 508 - UUID B35DAE9A-A1F6-4508-81E2-043250DE25B2 - SID S-1-5-21-1054367001-2487624330-2506398452-2016
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - Misconfiguration detected in hash 'User Name':
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - User 'sjpapa' (/LDAPv3/127.0.0.1) - ID 1028 - UUID 4521398F-89DA-4BD5-82F3-B549E140ABA7 - SID S-1-5-21-1054367001-2487624330-2506398452-3056
    2010-10-28 15:42:51 EEST - T[0x0000000100777000] - User 'sjpapa' (/Local/Default) - ID 508 - UUID B35DAE9A-A1F6-4508-81E2-043250DE25B2 - SID S-1-5-21-1054367001-2487624330-2506398452-2016
    2010-10-28 23:53:20 EEST - T[0x00007FFF70AB8C20] - DNSServiceProcessResult returned -65563
    2010-11-03 11:09:00 EET - T[0x00007FFF70AB8C20] - DNSServiceProcessResult returned -65563
    2010-11-09 18:53:23 EET - T[0x00007FFF70AB8C20] - Improper shutdown detected
    2010-11-10 16:41:52 EET - T[0x00007FFF70AB8C20] - Improper shutdown detected
    2010-11-16 15:16:30 EET - T[0x00007FFF70F0ACA0] - DNSServiceProcessResult returned -65563
  • Spyros2 Level 1 Level 1 (0 points)
    davidh:

    The Open Directory log does not say anything unusual:
    even though user sjpapa cannot authenticate on IMAP only.
    tried to create a new user test. Neither This user could authenticate on IMAP.

    Nov 17 2010 10:31:54 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:31:54 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.
    Nov 17 2010 10:32:04 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} DHX authentication succeeded.
    Nov 17 2010 10:32:05 RSAVALIDATE: success.
    Nov 17 2010 10:32:05 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:32:05 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.
    Nov 17 2010 10:32:08 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} DHX authentication succeeded.
    Nov 17 2010 10:32:08 RSAVALIDATE: success.
    Nov 17 2010 10:32:08 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:32:08 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.
    Nov 17 2010 10:33:05 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} DHX authentication succeeded.
    Nov 17 2010 10:33:05 RSAVALIDATE: success.
    Nov 17 2010 10:33:05 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:33:05 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.
    Nov 17 2010 10:50:34 RSAVALIDATE: success.
    Nov 17 2010 10:50:34 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:50:34 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.
    Nov 17 2010 10:50:34 RSAVALIDATE: success.
    Nov 17 2010 10:50:34 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} DHX authentication succeeded.
    Nov 17 2010 10:50:34 RSAVALIDATE: success.
    Nov 17 2010 10:50:34 USER: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} is the current user.
    Nov 17 2010 10:50:34 AUTH2: {0x4ce0e8076b8b45670000000400000004, MacMini.sip.com.gr$} CRAM-MD5 authentication succeeded.

    The only Errors I get are on the McBook Mail Connection doctor (SMTP success, IMAP fail):

    WROTE Nov 17 11:16:52.737 [kCFStreamSocketSecurityLevelTLSv1SSLv3] -- host:mail.sip.com.gr -- port:25 -- socket:0x1168e62d0 -- thread:0x116482cd0
    QUIT


    READ Nov 17 11:16:53.322 [kCFStreamSocketSecurityLevelNone] -- host:mail.sip.com.gr -- port:143 -- socket:0x116b2d290 -- thread:0x116033b60
    2.18 NO Authentication failed.

    Message was edited by: Spyros2
  • Spyros2 Level 1 Level 1 (0 points)
    For the time being, forwarded all email to the admin account, and login in as admin@domain to IMAP to get the mail of the user.

    This workaround is being used until I find out why all other normal users cannot authenticate on IMAP, even though their accounts authenticate on SMTP.
  • Roman P Level 1 Level 1 (0 points)
    Still no answer? I have exactly the same problem.
  • Spyros2 Level 1 Level 1 (0 points)
    Investigated DNS, and Open Directroy Master. No progress.
    Also repaired permissions, a substantial number of permissions has been corrected, after restrt no progress either.

    Its is very strange! All users authenticate on SMTP correctly,
    only admins authenticate on IMAP, normal users fail IMAP authentication....
  • Spyros2 Level 1 Level 1 (0 points)
    *Solution found.*
    First check the your DNS is properly setup. [Mine was not, but this did not affect the IMAP issue]
    The problem was that in Server Admin > Access tab [top menubar to the left of Services]
    mail was allowed only to admins. *Click "allow all users and groups"*, this immediately solved the problem. I trust the upgrade to 10.6.5 changed this setting???
Previous 1 2 Next