I believe both of these pam modules only allow the superuser to check other user's passwords. Since the server runs as user cyrus, then only the cyrus user can check its password. I think you will need to use a pwcheck/saslauthd daemon to check passwords in /etc/passwd or /etc/shadow.
Peter Pilsl wrote: >>>I tried two pam_modules: >>>pam_pwdb.so and pam_unix.so >>> >>>$cat imap >>>#%PAM-1.0 >>>auth required /lib/security/pam_pwdb.so shadow nullok >>>account required /lib/security/pam_pwdb.so >>> >>>=> error in syslog (each error comes twice): >>>Nov 27 15:16:33 server2 pwdb_chkpwd[8867]: could not identify user >>>Nov 27 15:16:33 server2 pwdb_chkpwd[8867]: could not identify user >>> >>>or >>> >>>$cat imap >>>#%PAM-1.0 >>>auth required /lib/security/pam_unix.so >>>account required /lib/security/pam_unix.so >>>
