Kolab2 stable: sasl-auth not working

Alfred Poschmann aposch at gmx.net
Wed Aug 10 14:37:14 CEST 2005 

I feel I need help with sasl/ldap.

Server is Suse 8.2/Kolab2.0, upgraded from Kolab RC1. When I installed RC1 
according to http://activmedia.ch/groupware1.php, I could connect Kontact 
(from KDE3.4) to Kolab-IMAP for a few days. When I suddenly received a login 
error, I stopped investigating RC1 and decided to wait for the stable 
release.

So a few days ago I upgraded with 2.0 stable, but I still can't connect from 
KMail. Login to the administration-interface works, connecting to LDAP with a 
LDAP-Browser (a java applet called lbe) and slapcat are working too. So the 
problem seems to be sasl. 

When auth'ing from Kontact, the sasl-log shows this: 
---
Aug 10 14:23:45 videolan <error> saslauthd[14029]: user ldap_search_st() 
failed: Can't contact LDAP server
Aug 10 14:23:45 videolan <info> saslauthd[14029]: Retrying authentication
Aug 10 14:23:45 videolan <error> saslauthd[14029]: user ldap_search_st() 
failed: Size limit exceeded
Aug 10 14:23:45 videolan <debug> saslauthd[14029]: Authentication failed for 
aposch/videolan.dakapo.home: Retry condition (ldap server connection reset or 
broken) (-3)
Aug 10 14:23:45 videolan <info> saslauthd[14029]: do_auth         : auth 
failure: [user=aposch] [service=imap] [realm=videolan.dakapo.home] 
[mech=ldap] [reason=Unknown]
---

Later, while not accessing, the is filled with this: 

---
Aug 10 01:10:05 videolan <debug> saslauthd[14029]: Domain/Realm not available.
Aug 10 01:10:05 videolan <debug> saslauthd[14029]: Domain/Realm not available.
Aug 10 01:20:02 videolan <debug> saslauthd[14034]: Domain/Realm not available.
Aug 10 01:20:02 videolan <debug> saslauthd[14034]: Domain/Realm not available.
Aug 10 01:30:05 videolan <debug> saslauthd[14029]: Domain/Realm not available.
Aug 10 01:30:05 videolan <debug> saslauthd[14029]: Domain/Realm not available.
Aug 10 01:30:05 videolan <error> saslauthd[14029]: user ldap_search_st() 
failed: Can't contact LDAP server
Aug 10 01:30:05 videolan <info> saslauthd[14029]: Retrying authentication
---

I have browsed this mailinglist, so I already restarted LDAP, checked the 
Maildomains in postfix and slapcat, ran db_rebuild in the ldap-directory and 
even rebooted the whole machine.

Things I can't explain and may be not connected to this issue: 
- Running /kolab/sbin/slapindex hangs; i cancelled it after some hours (I have 
just 2 test-accounts and one global address in LDAP). 
- Running ps axu|grep slap gives
root     13606  0.0  1.5 62612 3884 ?        S    00:52   
0:00 /kolab/libexec/openldap/slapd -h ldap:// ldaps://
root     13613  0.0  1.5 62612 3884 ?        S    00:52   
0:00 /kolab/libexec/openldap/slapd -h ldap:// ldaps://
root     13615  0.0  1.5 62612 3884 ?        S    00:52   
0:00 /kolab/libexec/openldap/slapd -h ldap:// ldaps://
root     14036  0.0  1.5 62612 3884 ?        S    00:54   
0:00 /kolab/libexec/openldap/slapd -h ldap:// ldaps://
root     14037  0.0  1.5 62612 3884 ?        S    00:54   
0:00 /kolab/libexec/openldap/slapd -h ldap:// ldaps://
root       934  0.0  0.2  3872  660 pts/1    R    14:35   0:00 grep slap


So, now I have no clue. Can anyone give me a hint?

TIA,
Alfred

More information about the users mailing list