503 5.5.1 Error: authentication not enabled
Jump to navigation
Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.
About
503 5.5.1 Error: authentication not enabled is an error message returned by Postfix.
Another symptom is the absence of any "AUTH" lines in the response from Postfix when the client sends EHLO:
not working | working |
---|---|
EHLO hypertwins.org 250-(redacted).com 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN AUTH LOGIN 503 5.5.1 Error: authentication not enabled |
EHLO hypertwins.org 250-(redacted).com 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN AUTH LOGIN 334 VXNlcm5hbWU6 |
This message can appear even when smtpd_sasl_auth_enable is set to "yes" in main.cf.
Notes
The changes suggested here seemed to work, albeit with some modifications for my particular config:
## 2011-07-31 trying this, per http://forums.gplhost.com/phpBB2/image-vp3985.html , in attempt to fix smtp external auth smtp_sasl_auth_enable = no smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = /etc/mailname smtpd_sasl_auth_enable = yes smtpd_tls_auth_only = no ### OVERRIDE -- required in order to authenticate with Frontier's SMTP server/relay smtp_sasl_auth_enable = yes ## (wzl added 2010-07-04) smtpd_sasl_type = dovecot smtpd_sasl_path = private/dovecot-auth smtpd_sasl_authenticated_header = yes smtpd_sasl_local_domain = $myhostname broken_sasl_auth_clients = yes smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_unauth_pipelining, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination smtpd_sender_restrictions = reject_unknown_sender_domain ## more SASL/TLS stuff (was at the end of main.cf, moved here 2011-07-31) smtp_sasl_authentication_filter = myorigin = (redacted).com smtpd_tls_security_level = may smtpd_sasl_security_options = noanonymous