Urgent: 535 Incorrect authentication data

If you're looking for a solution, open a ticket. It's been stated numerous times that these forums aren't support forums.

Somebody will help you if they can, but you can't expect to have Cpanel fix anything for you based upon a message you put in these forums.

Mike

 

Hello

Please check whether the folder etc in the location

/home/"username"/etc/ is in the ownership username:mail

If not please change it by

chown username:mail /home/username/etc/ -R


Thanks

Manoj Krishnan
Systems Engineer
http://SupportPRO.com :: Transparent Web Hosting Support Services to Web Hosting Businesses ..

 

Any ideas?

 

is the entry for domain name present in /etc/localdomains file ?

 

Hey Manoj,
Thanks, It worked for me.

 

same problem -- different cause in case it helps

Hi


Perhaps this post will help some lonely Googler some day

I had the same problem and found this thread as a result. But in my case none of the above, or the /etc/demo files were the cause.

In this case it was a file permissions problem, but it was that the user's main home found /home/user had been set wrx------ (700) instead of rwx--x--x (711) as it should have been. So the mail group process couldn't get down into /home/user/etc/domain to read the passwd file.

Fix: chmod 711 /home/user

 

Another reason!

additional info for that lonely googler

This might also happen when the option “Allow mail account authentication using the password of the domain owner’s account” in WHM -> Server Configuration -> Tweak Settings is enabled.
Webmail logs you in but attempts to use the cPanel account password via SMTP. Hence. the problem.

Disable the option and check.
If this does not fix the issue then try running /scripts/upcp

 

in fact there is another place to find some issues resulting 535 errors

i found this at

/etc/userdomains

there you usually look for some blank space or broken line near to the domain that is having the incorrect authentication data issue error 535

kind regards
claudio

 

Same problem but itn's solved

Hi,

I prove all the solutions in this forum but the problem persist

Any another ideas?

 

Dear bro,

Did you checked your domain is suspended or not ?

 

Thank you for that detailed answer! I now have an attack plan to try to figure out what my problem is.

I have 34 accounts on my WHM and I have one customer having trouble accessing multiple email accounts across 2 domains hosted on my WHM via IMAP. I sporiadically get this error via lfd:

================================
Time: Tue Feb 28 11:07:35 2012 -0500
IP: 76.7.110.xx (US/United States/tn-76-7-110-xx.dhcp.embarqhsd.net)
Failures: 1 (smtpauth)
Interval: 300 seconds
Blocked: Temporary Block (IP match in csf.allow, block may not work)

Log entries:

2012-02-28 11:07:31 dovecot_login authenticator failed for tn-76-7-110-xx.dhcp.embarqhsd.net (JAMIE) [76.7.110.xx]: 535 Incorrect authentication data (set_id=xxxxxx@woodbysrebuildables.com)

=========================
Some days he has no issues and other days I get dozens of these only for his computer.
I have whitelisted him in cPHulk and in CSF. He has a static IP. I even set up a rule in Host Access Control for dovecot to allow his static ip. I'm guessing on that one.

He is using Outlook 2003. I have deleted the accounts from his Outlook and re-created them. I have changed the passwords. Checked his machine for viruses, malware, spyware, and thouroughly cleaned his system. I have compacted the databases in Outlook and am about to try changing his email settings to use SSL.

Any other ideas?
Thanks for your time!

 

Check in WHM » Server Configuration » Tweak Settings » Mail if Restrict outgoing SMTP to root, exim, and mailman (FKA SMTP Tweak) it's set off

 

I had the same "535 Incorrect Authentication Data" errors.
(This was an issue for one of my clients)

I initially checked CSF, and the IP was white listed. I also logged into their computers remotely, and verified they were able to access the server. I also set up a test email account (for myself) at their location, and still the same issue (Outlook pop-up login boxes non-stop) Pings were fine, WinMTR showed no packet loss, etc. etc.

Anyway, I stumbled across cphulk (in the forums). This also acts as a firewall... but I've never messed with it at all. In 7 years (managing 200 websites across 4 servers) I've never had a client get blacklisted in cphulk. Who knew?

Anyway, I added their IP to cphulk whitelist, and bam! Everybody was back in business.

I hope that helps!

 

Hi,

I have found one kind of solution, If you are using exim4 add the line in /etc/exim4/exim4.conf.localmacros file MAIN_TLS_ENABLE = true
or
vi /etc/exim.conf.local

MAIN_TLS_ENABLE = true

Thank you,