Nach einem Neustart der betreffenden Systeme noch einmal die aktutellen Log-Meldungen:
/var/log/auth.log auf dem Cyrus-Master-Server:
Oct 6 11:38:34 sirius saslauthd[1575]: DEBUG: auth_pam: pam_authenticate failed: User not known to the underlying authentication module
Oct 6 11:38:34 sirius saslauthd[1575]: do_auth : auth failure: [user=aquarius$] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error]
Oct 6 11:38:37 sirius saslauthd[1572]: pam_unix(mupdate:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=aquarius$
Oct 6 11:38:37 sirius PAM-univentionmailcyrus[1572]: No or ambigous result, found 0 entries.
Oct 6 11:38:37 sirius PAM-univentionmailcyrus[1572]: failed to map username
Oct 6 11:38:38 sirius saslauthd[1576]: pam_unix(mupdate:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=aquarius$
Oct 6 11:38:38 sirius PAM-univentionmailcyrus[1576]: No or ambigous result, found 0 entries.
Oct 6 11:38:38 sirius PAM-univentionmailcyrus[1576]: failed to map username
Oct 6 11:38:40 sirius saslauthd[1572]: DEBUG: auth_pam: pam_authenticate failed: User not known to the underlying authentication module
Oct 6 11:38:40 sirius saslauthd[1572]: do_auth : auth failure: [user=aquarius$] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error]
Oct 6 11:38:41 sirius saslauthd[1576]: DEBUG: auth_pam: pam_authenticate failed: User not known to the underlying authentication module
Oct 6 11:38:41 sirius saslauthd[1576]: do_auth : auth failure: [user=aquarius$] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error]
hmmm… OK… PAM funktioniert offenbar nicht. Aber warum wird das Konto nicht gefunden?! Das Computerkonto (aquarius) existiert jedenfalls im LDAP:
root@sirius:~# univention-directory-manager computers/memberserver list --filter uid=aquarius$
uid=aquarius$
DN: cn=aquarius,cn=memberserver,cn=computers,dc=xxx,dc=yy
ARG: None
domain: xxx.yy
ip: 172.17.30.11
nagiosServices: cn=UNIVENTION_PING,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_DISK_ROOT,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_DNS,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_SWAP,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_NTP,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_SMTP2,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_LOAD,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_REPLICATION,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_NSCD,cn=nagios,dc=xxx,dc=yy
nagiosServices: cn=UNIVENTION_JOINSTATUS,cn=nagios,dc=xxx,dc=yy
network: None
service: SMTP
service: IMAP
service: NFS
service: Cyrus Murder
reinstalloption: None
unixhome: /dev/null
dnsEntryZoneForward: zoneName=xxx.yy,cn=dns,dc=xxx,dc=yy 172.17.30.11
instprofile: None
shell: /bin/sh
description: None
objectFlag: None
mac: 82:58:a7:78:27:8f
reinstalltext: None
groups: cn=Computers,cn=groups,dc=xxx,dc=yy
primaryGroup: cn=Computers,cn=groups,dc=xxx,dc=yy
password: None
reinstall: None
serverRole: member
name: aquarius
fqdn: aquarius.xxx.yy
dnsEntryZoneReverse: zoneName=17.172.in-addr.arpa,cn=dns,dc=xxx,dc=yy 172.17.30.11
sambaRID: 5044
Der Memberserver wurde - soweit ich das erkennen kann - auch ohne Fehlermeldung gejoint! “univention-check-join-status” bestätigt dies auch.
Ich habe inzwischen auch noch zwei weitere Server auf die gleiche Art aufgesetzt. Auch bei denen exakt das selbe Bild.
Hier noch einmal die mail.log-Files vom Master und einem Slave:
/var/log/mail.log auf dem Cyrus-Master-Server:
Oct 6 11:41:29 sirius cyrus/mupdate[1357]: accepted connection
Oct 6 11:41:30 sirius cyrus/mupdate[1357]: accepted connection
Oct 6 11:41:32 sirius cyrus/mupdate[1357]: badlogin: aquarius.xxx.yy [172.17.30.11] PLAIN SASL(-13): authentication failure: Password verification failed
/var/log/mail auf dem Cyrus-Slave-Server:
Oct 6 11:40:29 aquarius cyrus/localLmtpprox[2019]: couldn't authenticate to backend server: authentication failure
Oct 6 11:40:29 aquarius cyrus/localLmtpprox[2019]: mupdate_connect failed: "undefined error!"#015
Oct 6 11:40:29 aquarius cyrus/localLmtpprox[2019]: couldn't connect to MUPDATE server sirius.xxx.yy: no connection to server
Oct 6 11:40:29 aquarius cyrus/localLmtpprox[2019]: FATAL: error connecting with MUPDATE server
Oct 6 11:40:29 aquarius master[1392]: process 2019 exited, status 75
Oct 6 11:40:29 aquarius master[1392]: service localLmtpproxy pid 2019 in READY state: terminated abnormally
Oct 6 11:40:29 aquarius master[2020]: about to exec /usr/lib/cyrus/bin/lmtpproxyd
Oct 6 11:40:29 aquarius cyrus/localLmtpprox[2020]: executed