we just upgraded from ver. 7 to 8.6, all went good, normal mail flow is working.
Our server is configured for outgoing SMTP authentication with these settings (I’ve double checked them)
Code: Select all
zmprov ms [server] zimbraMtaSmtpSaslPasswordMaps texthash:/customfolder/sasl_passwd
zmprov ms [server] zimbraMtaSmtpSaslAuthEnable yes
zmprov ms [server] zimbraMtaSmtpCnameOverridesServername no
zmprov ms [server] zimbraMtaSmtpSaslSecurityOptions noanonymous
zmprov ms [server] zimbraMtaSmtpTlsSecurityLevel may
postconf -e sender_dependent_relayhost_maps=texthash:/customfolder/sender_relay
postconf -e smtp_sender_dependent_authentication=yes
Code: Select all
@pec.it 127.0.0.1:11465
Now the strange thing is: if a message is sent from a user mailbox we got an auth failed error (against 7071 port????):
Code: Select all
postfix/qmgr[21782]: 768223600D0: from=<xxxxxxxxxx@pec.it>, size=1495, nrcpt=1 (queue active)
postfix/amavisd/smtpd[28515]: connect from localhost[127.0.0.1]
postfix/amavisd/smtpd[28515]: Anonymous TLS connection established from localhost[127.0.0.1]: TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)
saslauthd[21031]: zmauth: authenticating against elected url 'https://[zimbrahostname]:7071/service/admin/soap/' ...
saslauthd[21031]: zmpost: url='https://[zimbrahostname]:7071/service/admin/soap/' returned buffer->data='<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><context xmlns="urn:zimbra"/></soap:Header><soap:Body><soap:Fault><soap:Code><soap:Value>soap:Sender</soap:Value></soap:Code><soap:Reason><soap:Text>authentication failed for [xxxxxxxxxxx@pec.it]</soap:Text></soap:Reason><soap:Detail><Error xmlns="urn:zimbra"><Code>account.AUTH_FAILED</Code><Trace>qtp509886383-343:https://[zimbrahostIP]:7071/service/admin/soap/:1555697827749:97e101dcecd88351</Trace></Error></soap:Detail></soap:Fault></soap:Body></soap:Envelope>', hti->error=''
saslauthd[21031]: auth_zimbra: xxxxxxxxxxx@pec.it auth failed: authentication failed for [xxxxxxxxxxxx@pec.it]
saslauthd[21031]: do_auth: auth failure: [user=xxxxxxxxxxx@pec.it] [service=smtp] [realm=pec.it] [mech=zimbra] [reason=Unknown]
postfix/amavisd/smtpd[28515]: warning: SASL authentication failure: Password verification failed
postfix/amavisd/smtpd[28515]: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed: authentication failure
This means that the outbound mapping is working. Only the user submission has that zmauth issue, the message seems not to reach postfix.
Any idea?
Thanks for helping