Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Can't login to Webmail using dovecot master password

Discussion in 'E-mail Discussions' started by Andriy, Jan 13, 2018.

  1. Andriy

    Andriy Registered

    Joined:
    Jan 9, 2018
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    kyiv
    cPanel Access Level:
    Root Administrator
    Hello. I have a question. Now I want to enable login to any customer's mailbox without user's password using dovecot master password without using cPanel session IDs.

    I've configured dovecot and tested this config on server without cPanel. All working good: I can login to any mailbox using master password - - Removed-

    I tried to configure dovecot on server with cPanel. Dovecot configured successfully and I can log in with dovecot master password via telnet:
    Code:
    [root@webcloud1 dovecot]# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
1 login test@domain.mk.ua/master@domain.mk.ua unencrypted password
1 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE NAMESPACE NOTIFY COMPRESS=DEFLATE QUOTA] Logged in
    Doveadm auth also working correctly:

    Code:
    [root@webcloud1 dovecot]# doveadm auth test test@domain.mk.ua/master@domain.mk.ua
Password:
passdb: test@domain.mk.ua/master@domain.mk.ua auth succeeded
extra fields:
 user=test@domain.mk.ua
 original_user=master@domain.mk.ua
 auth_user=master@domain.mk.ua
    But when I trying to login with master password via cPanel's webmail, I can't. I get the error: The login is invalid. See attached image.

    I've checked /usr/local/cpanel/logs/login_log and found next records:
    Code:
    [2018-01-14 10:26:33 +0800] info [webmaild] 192.168.60.124 - test@domain.mk.ua-m "POST /login/?login_only=1 HTTP/1.1" FAILED LOGIN webmaild: user password hash is missing from system (user probably does not exist)
    In maillog nothing. So, I have some questions, one answer on it can resolve my issue:
    1. How to connect to user's mailbox directly via dovecot without cPanel's user check?
    2. How enable in cPanel dovecot master password authentication without using cpanel sessions (WHM API 1 Functions - create_user_session - Software Development Kit - cPanel Documentation) ?
    3. How to disable user check?
    So, what must I do? Who have any ideas?
     
    #1 Andriy, Jan 13, 2018
    Last edited by a moderator: Jan 13, 2018
  2. cPWilliamL

    cPWilliamL cP Technical Analyst II
    Staff Member

    Joined:
    May 15, 2017
    Messages:
    257
    Likes Received:
    29
    Trophy Points:
    103
    Location:
    America
    cPanel Access Level:
    Root Administrator
    Hi @Andriy,

    I'm afraid this isn't something you would be able to change, as this webmail is served by cpsrvd, which is compiled in; the changes would need to be made in cPanel's core code. I'd recommend submitting a feature request.

    Thanks,
     
    #2 cPWilliamL, Jan 16, 2018
  3. haneef95

    haneef95 Registered

    Joined:
    Mar 12, 2018
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Website Owner
    Brilliant! @Andriy, may I know how you enabled master password please?

    Basically, we're on a shared hosting and would like to move our emails over to Office 365/Exchange Online. We don't want to change user's passwords, so, I'm hoping to use the Dovecot's Master User/Password feature (or any other suitable solution for that mater) to connect to IMAP for all emails (within a cPanel user), using the same password.

    Since, this is a shared hosting, the only access I have are:
    1. the cPanel login (not WHM) at server8.hosting.com:2083, using 'my_hosting_username' and 'my_hosting_password'
    2. the user directory at '/home/my_hosting_username/'
    3. all the emails are stored in '/home/my_hosting_username/mail', so, I'm able to access those folders as well.
    4. When I telnet IMAP (server8.hosting.com:143) and login using 'my_hosting_username' and 'my_hosting_password'. I'm able to list all the email folders within that cPanel account. So, that includes any_user@mydomain.com
    So, in my scenario, how can I create a master user that is able to IMAP to any user that are in mydomain.com or within my cPanel user?

    P.S: I found another solution (App-specific password), but, like the Master User solution that requires me to edit configuration files that aren't available for me to access.

    So, that leads me onto another idea. Can cPanel users have their own dovecot configuration files?

    Thanks,
     
    #3 haneef95, Mar 12, 2018
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,782
    Likes Received:
    1,712
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello @haneef95

    It's not possible to modify the Dovecot configuration without root access to the system.

    One potential workaround would be to take the following steps:

    1. Make a backup of the shadow file associated with the domain name located at /home/username/etc/domain.tld/shadow. EX:

    Code:
    cp -a /home/username/etc/domain.tld/shadow /home/username/etc/domain.tld/shadow-backup
    2. Change the passwords for all email accounts that you need access to via the "Email Accounts" option in cPanel.

    3. Perform whichever actions you need to perform in order to transfer the email data to another application.

    4. Once the data is moved over, move the previous shadow file back into place and removed the cached password data. EX:

    Code:
    mv /home/username/etc/domain.tld/shadow /home/username/etc/domain.tld/shadow-no-longer-needed
mv /home/username/etc/domain.tld/shadow-backup /home/username/etc/domain.tld/shadow
rm /home/username/etc/domain.tld/@pwcache/*
    This way, you have temporary access to authenticate to the email accounts for mail transfer purposes, and the original email passwords are restored after you've completed the transfer.

    Thank you.
     
    #4 cPanelMichael, Mar 13, 2018
(You must log in or sign up to post here.)
Loading...
Similar Threads - Can't login Webmail
  1. Markigiani

    Client can't login to webmail

    Markigiani, Jan 18, 2017, in forum: E-mail Discussions
    Replies:
    3
    Views:
    1,242
    cPanelMichael
    Jan 18, 2017
  2. abuujurayj

    I can't login in my application after activating htaccess

    abuujurayj, Apr 23, 2018 at 4:09 PM, in forum: General Discussion
    Replies:
    9
    Views:
    74
    abuujurayj
    Apr 24, 2018 at 2:19 PM
  3. mizanur rahman bokul

    Can't Login to WebHost Manager

    mizanur rahman bokul, Dec 11, 2017, in forum: General Discussion
    Replies:
    3
    Views:
    210
    cPanelMichael
    Dec 12, 2017
  4. DeedeeF

    Can't access cPanel login

    DeedeeF, Oct 17, 2017, in forum: General Discussion
    Replies:
    7
    Views:
    803
    Infopro
    Oct 18, 2017
  5. pablosso

    Can't login to ssh and WHM as root

    pablosso, Aug 22, 2017, in forum: General Discussion
    Replies:
    3
    Views:
    783
    Infopro
    Aug 23, 2017

Share This Page