Hello,
Years ago, I set up an SMTP server on Debian 7.5, running Sendmail configured for SASL authentication using an LDAP directory. I am now trying to set up a new one on Debian 11.5 in pretty much the same configuration, but SMTP auth does not work. I have verified that nslcd and saslauthd are running, the sendmail, PAM and NSS configurations all look good, and ldapsearch returns a result using the settings from pam_ldap.conf. When I open a connection to the old server and issue AUTH PLAIN or AUTH LOGIN, I can authenticate with my base64 LDAP credentials as expected. But when I do the same on the new server, I get a "535 5.7.0 authentication failed" response.
I ran a tcpdump on this SMTP server during an auth attempt, and there was no traffic to or from the LDAP server.
I literally copied all of the configs over from the old server and Sendmail starts up fine, but still no auth. Does anyone know where I might look for the breakage?
Old server (works):
- Sendmail 8.14.4
- SASL (libs/modules/bin) 2.1.25
- libnss-ldap 264
- libpam-ldap 184
New server (doesn't work):
- Sendmail 8.15.2
- SASL (lib/modules/bin) 2.1.27
- libnss-ldapd 0.9.11 (because libnss-ldap is deprecated)
- libpam-ldap 186
Thanks!
Dave
--
Dave Parker '11
Database & Systems Administrator
Utica University
Integrated Information Technology Services
315-792-3229
He/Him