Roundcube SMTP error authentication failed on SASL auth failure

Feb 22 20:02:41 sites postfix/smtpd[6830]: warning: SASL authentication failure: cannot connect to saslauthd server: Permission denied Feb 22 20:02:41 sites postfix/smtpd[6830]: warning: localhost[::1]: SASL LOGIN authentication failed: generic failure Feb 22 20:11:49 sites postfix/smtpd[9698]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory 13:21 The issue is due to the above reason. While we can fix the permission issue the other errors still pops. I have checked few virtualmin forums and tried some solutions they have mentioned but that didn't fix the issue.

I tried this and it didn't work https://virtualmin.com/node/43216

Status: 
Active

Comments

Howdy -- thanks for contacting us!

Are you just seeing an issue authenticating with RoundCube, or are you having that problem logging in with other clients as well?

For example, if you try a desktop client like Outlook or Thunderbird, are you able to access your email that way?

Also, what's the output of these commands:

ps auxw | grep saslauth
ls -la /var/spool/postfix/var/run/saslauthd

We have Usermin in the server and login works perfectly with that. This issue happens with one of our user who installed Roundcube. Here are the output of the commands you have asked:

root@sites:~# ps auxw | grep saslauth
root      4512  0.0  0.0  14424   980 pts/0    S+   19:33   0:00 grep --color=auto saslauth
root     21863  0.0  0.0 100984  2556 ?        Ss   Feb22   0:00 /usr/sbin/saslauthd -a pam -c -m /var/spool/postfix/var/run/saslauthd -n 5
root     21864  0.0  0.0 100984  1056 ?        S    Feb22   0:00 /usr/sbin/saslauthd -a pam -c -m /var/spool/postfix/var/run/saslauthd -n 5
root     21865  0.0  0.0 100984  1056 ?        S    Feb22   0:00 /usr/sbin/saslauthd -a pam -c -m /var/spool/postfix/var/run/saslauthd -n 5
root     21866  0.0  0.0 100984  1056 ?        S    Feb22   0:00 /usr/sbin/saslauthd -a pam -c -m /var/spool/postfix/var/run/saslauthd -n 5
root     21867  0.0  0.0 100984  1056 ?        S    Feb22   0:00 /usr/sbin/saslauthd -a pam -c -m /var/spool/postfix/var/run/saslauthd -n 5

root@sites:~# ls -la /var/spool/postfix/var/run/saslauthd
total 976
drwx--x--- 2 root    sasl   4096 Feb 23 19:33 .
drwxr-xr-x 3 postfix root   4096 Sep 14 17:19 ..
-rw------- 1 root    root      0 Feb 22 20:02 cache.flock
-rw------- 1 root    root 986112 Feb 22 20:02 cache.mmap
srwxrwxrwx 1 root    root      0 Feb 22 20:02 mux
-rw------- 1 root    root      0 Feb 22 20:02 mux.accept
-rw------- 1 root    root      6 Feb 22 20:02 saslauthd.pid

Usermin wouldn't actually be using saslauthd... do you know if that issue occurs in other clients such as Outlook or Thunderbird?

That will help us understand if it's a general saslauthd problem, or a RoundCube configuration problem.

We have tried from Thunderbird and having the same issue ie the initial login works but the unable to send the E-mail authentication failure issue,

That all helps, thanks!

Could you paste in the contents of your /etc/postfix/master.cf file (or attach it)? That will help further diagnose what's going on. Thanks!

#
# Postfix master process configuration file.  For details on the format
# of the file, see the master(5) manual page (command: "man 5 master" or
# on-line: http://www.postfix.org/master.5.html).
#
# Do not forget to execute "postfix reload" after editing this file.
#
# ==========================================================================
# service type  private unpriv  chroot  wakeup  maxproc command + args
#               (yes)   (yes)   (yes)   (never) (100)
# ==========================================================================
smtp inet n - - - - smtpd -o smtpd_sasl_auth_enable=yes
#smtp      inet  n       -       -       -       1       postscreen
#smtpd     pass  -       -       -       -       -       smtpd
#dnsblog   unix  -       -       -       -       0       dnsblog
#tlsproxy  unix  -       -       -       -       0       tlsproxy
#submission inet n       -       -       -       -       smtpd
#  -o syslog_name=postfix/submission
#  -o smtpd_tls_security_level=encrypt
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_reject_unlisted_recipient=no
#  -o smtpd_client_restrictions=$mua_client_restrictions
#  -o smtpd_helo_restrictions=$mua_helo_restrictions
#  -o smtpd_sender_restrictions=$mua_sender_restrictions
#  -o smtpd_recipient_restrictions=
#  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
#  -o milter_macro_daemon_name=ORIGINATING
smtps inet n - - - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_reject_unlisted_recipient=no -o smtpd_client_restrictions=$mua_client_restrictions -o smtpd_helo_restrictions=$mua_helo_restrictions -o smtpd_sender_restrictions=$mua_sender_restrictions -o smtpd_recipient_restrictions= -o smtpd_relay_restrictions=permit_sasl_authenticated,reject -o milter_macro_daemon_name=ORIGINATING
#628       inet  n       -       -       -       -       qmqpd
pickup    unix  n       -       -       60      1       pickup
cleanup   unix  n       -       -       -       0       cleanup
qmgr      unix  n       -       n       300     1       qmgr
#qmgr     unix  n       -       n       300     1       oqmgr
tlsmgr    unix  -       -       -       1000?   1       tlsmgr
rewrite   unix  -       -       -       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
proxywrite unix -       -       n       -       1       proxymap
smtp      unix  -       -       -       -       -       smtp
relay     unix  -       -       -       -       -       smtp
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
retry     unix  -       -       -       -       -       error
discard   unix  -       -       -       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       -       -       -       lmtp
anvil     unix  -       -       -       -       1       anvil
scache    unix  -       -       -       -       1       scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent.  See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop  unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# ====================================================================
#
# Recent Cyrus versions can use the existing "lmtp" master.cf entry.
#
# Specify in cyrus.conf:
#   lmtp    cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
#
# Specify in main.cf one or more of the following:
#  mailbox_transport = lmtp:inet:localhost
#  virtual_transport = lmtp:inet:localhost
#
# ====================================================================
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_limit=1
#
#cyrus     unix  -       n       n       -       -       pipe
#  user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
#
# ====================================================================
# Old example of delivery via Cyrus.
#
#old-cyrus unix  -       n       n       -       -       pipe
#  flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
#
# ====================================================================
#
# See the Postfix UUCP_README file for configuration details.
#
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# Other external delivery methods.
#
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix - n n - 2 pipe
  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman   unix  -       n       n       -       -       pipe
  flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
  ${nexthop} ${user}
submission inet n - - - - smtpd -o smtpd_sasl_auth_enable=yes

Hrm, I'm not seeing an obvious problem there... but just to rule out the possibility that Postfix is looking for those files outside of a chroot -- could you try running this command:

ln -s /var/spool/postfix/var/run/saslauthd /var/run/saslauthd

That will ensure that if Postfix is looking at /var/run/saslauthd, it'll see your actual files in /var/spool/postfix/var/run/saslauthd.

After running the above, you'd want to restart both saslauthd and postfix:

service saslauthd restart
service postfix restart