On 11/01/2012 17:36, Giles Coochey wrote: > On 11/01/2012 10:33, Benjamin Hackl wrote: >> >> $ cat /etc/postfix/main.cf >> myorigin=yourdomain.com >> relayhost=your.smarthost.com >> smtp_sasl_auth_enable=yes >> ## you probably want to limit how postfix authenticates >> # smtp_sasl_security_options=noanonymous >> # smtp_sasl_mechanism_filter=login >> smtp_sasl_password_maps=hash:/etc/postfix/relay_password >> ## if something doesn't work and you need detailed(!!) logs >> #debug_peer_list=your.smarthost.com >> #debug_peer_level=3 >> smtp_use_tls=yes >> #inet_interfaces = loopback-only >> #local_transport = error: disabled >> unknown_local_recipient_reject_code = 450 >> > I was missing: smtp_sasl_mechanism_filter <postconf.5.html#smtp_sasl_mechanism_filter> = !gssapi Something about GSSAPI auth meant it was tried first, failed, and failed permanently. Disabling that, and it works. -- Best Regards, Giles Coochey NetSecSpec Ltd UK Mobile: +44 7983 877 438 Business Email: giles.coochey at netsecspec.co.uk Email/MSN/Live Messenger: giles at coochey.net Skype: gilescoochey