Hi, --On 9. Dezember 2010 08:52:24 -0600 Dan White <dwhite@xxxxxxx> wrote:
When SSL is turned off on the phone, the NTLM error is a little more explicit: Dec 9 14:59:10 lvr13 imap[786]: badlogin:[redacted] NTLM [SASL(0): successful result: security flags do not match required]Are you offering digest-md5?
yes, but it's not used by Windows Phone 7 clients.
What are your sasl and allowplaintext settings in imapd.conf?
allowplaintext: no sasl_mech_list: DIGEST-MD5 CRAM-MD5 PLAIN NTLM LOGIN
My guess is that the phone tries to use NTLMv2, but of course the SASL plug-in only supports NTLMv1. The worst part is that there doesn't seem to be a client-side option to use another mechanism instead. I'm hesitant to disable NTLM server-side, because a few of our users use it successfully.What version of imapd and sasl are you using?
imapd is 2.3.14, SASL is 2.1.20.
Thanks, Sebastian
--
.:.Sebastian Hagedorn - RZKR-R1 (GebÃude 52), Zimmer 18.:.
.:.Regionales Rechenzentrum (RRZK).:.
.:.UniversitÃt zu KÃln / Cologne University - â +49-221-478-5587.:.Attachment:
p7s5ld1cpTJD0.p7s
Description: S/MIME cryptographic signature
---- Cyrus Home Page: http://www.cyrusimap.org/ List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
