This documentation is for Dovecot v2.x, see wiki1 for v1.x documentation.
Differences between revisions 1 and 12 (spanning 11 versions)
Revision 1 as of 2006-04-08 21:59:53
Size: 1315
Editor: RobMcGee
Comment:
Revision 12 as of 2010-02-23 10:29:31
Size: 2109
Editor: PascalVolk
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
## Please edit system and help pages ONLY in the moinmaster wiki! For more
## information, please see MoinMaster:MoinPagesEditorGroup.
##master-page:Unknown-Page
##master-date:Unknown-Date
##acl MoinPagesEditorGroup:read,write,delete,revert All:read
#format wiki
#language en
## page was renamed from PostfixAndDovecotSASL
Line 9: Line 3:
Postfix 2.3 (at this writing still in development, but available in snapshots) supports SMTP AUTH through [:Sasl:Dovecot SASL] as introduced in the Dovecot 1.0 series. It's very simple to set up: Since version 2.3, Postfix supports SMTP AUTH through [[Sasl|Dovecot SASL]] as introduced in the Dovecot 1.0 series. If using Postfix obtained from a binary (such as a .rpm or .deb file), you can check if Postfix was compiled with support for Dovecot SASL by running the command:

{{{
postconf -a
}}}
Once you have verified that your installation of Postfix supports Dovecot SASL, it's very simple to configure:
Line 28: Line 27:
        # deliver and some other programs need also auth-master:
        #master {
        # path = /var/run/dovecot/auth-master
        # mode = 0600
        #}
Line 30: Line 34:
}}}   }}}
Line 36: Line 39:
# Debian/Ubuntu users: Postfix is setup by default to run chrooted, so it is best to leave it as-is below
Line 37: Line 41:
# and the common settings to enable SASL:
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
Line 38: Line 45:
Line 41: Line 47:
 * http://postfixwiki.org/index.php?title=Dovecot_SASL_with_Postfix_2.3 === Remark ===
If Outlook Express (and/or Windows Mail) doesn't seem to login, even though you checked "My server requires authentication" in its configuration, then verify that the "mechanisms" line contains "login" in addition to "plain". "plain" is the default, and most clients can work with it, but Outlook Express needs the "login" mechanism. Also see:

  * http://archives.neohapsis.com/archives/postfix/2000-11/0881.html

Postfix and Dovecot SASL

Since version 2.3, Postfix supports SMTP AUTH through Dovecot SASL as introduced in the Dovecot 1.0 series. If using Postfix obtained from a binary (such as a .rpm or .deb file), you can check if Postfix was compiled with support for Dovecot SASL by running the command:

postconf -a

Once you have verified that your installation of Postfix supports Dovecot SASL, it's very simple to configure:

Example dovecot.conf excerpt

auth default {
      mechanisms = plain login
      passdb pam {
      }
      userdb passwd {
      }
      socket listen {
        client {
          # Assuming the default Postfix $queue_directory setting
          path = /var/spool/postfix/private/auth
          mode = 0660
          # Assuming the default Postfix user and group
          user = postfix
          group = postfix
        }
        # deliver and some other programs need also auth-master:
        #master {
        #  path = /var/run/dovecot/auth-master
        #  mode = 0600
        #}
      }
    }

Example Postfix main.cf excerpt

smtpd_sasl_type = dovecot
# Can be an absolute path, or relative to $queue_directory
# Debian/Ubuntu users: Postfix is setup by default to run chrooted, so it is best to leave it as-is below
smtpd_sasl_path = private/auth
# and the common settings to enable SASL:
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination

See also:

Remark

If Outlook Express (and/or Windows Mail) doesn't seem to login, even though you checked "My server requires authentication" in its configuration, then verify that the "mechanisms" line contains "login" in addition to "plain". "plain" is the default, and most clients can work with it, but Outlook Express needs the "login" mechanism. Also see:

None: HowTo/PostfixAndDovecotSASL (last edited 2014-12-30 23:19:11 by pool-98-111-147-67)