On 11/01/2012 17:36, Giles Coochey wrote:
On 11/01/2012 10:33, Benjamin Hackl wrote:
$ cat /etc/postfix/main.cf myorigin=yourdomain.com relayhost=your.smarthost.com smtp_sasl_auth_enable=yes ## you probably want to limit how postfix authenticates # smtp_sasl_security_options=noanonymous # smtp_sasl_mechanism_filter=login smtp_sasl_password_maps=hash:/etc/postfix/relay_password ## if something doesn't work and you need detailed(!!) logs #debug_peer_list=your.smarthost.com #debug_peer_level=3 smtp_use_tls=yes #inet_interfaces = loopback-only #local_transport = error: disabled unknown_local_recipient_reject_code = 450
I was missing:
smtp_sasl_mechanism_filter <postconf.5.html#smtp_sasl_mechanism_filter> = !gssapi
Something about GSSAPI auth meant it was tried first, failed, and failed permanently.
Disabling that, and it works.