No cleartext SMTP authentication in Server 3.0?

Similar Messages

• NAC Guest Server SMTP Authentication

  Does anyone know if you are able to set your SMTP server in the NAC Guest Server to do SMTP Authentication? Our old Exchange server just let us specify the SMTP server and send the guest accounts their Username and Password to their outside accounts.  Our new Exchange server requires SMTP authentication, but we do not see the option available in the NAC Guest Server interface.  We are running NAC Guest Server 1.1.3.  Any ideas would be appreciated.  Thanks!

  I have Cisco NAC Guester server 2.0.2 and have sort of similar issues.
  I configured the Base DN to the OU of the sponsor groups in AD and then map that particular group in roles. Users from that group can log on fine and create guest accounts.
  The problem is, it seems that other users from that OU seems to be able to log on as sponsors too. How do I restrcit this to just that sponsore group? I tried changing the Base DN to the OU of the sponsore group then enter CN=sponsorgroup to narrow it to just that group but still other users can log in as sponsors.

• How to disable OSX server 3 SMTP authentication

  Hi,
  I upgraded my 10.5 server to 10.9 OSX server. The mail server is only used internally. I use a HP Multifuntion printer which I often use to scan documents and the printer would mail me the scans in PDF. In 10.9 the user have to authenticate in order to send mail via the SMTP server. Unfortunately the HP printer expects an open SMTP server.
  I know that underneath OSX mail server Postfix is running. Is  there a way to dissable SMTP authentication so I can us my multifunction printer to mail me the scanned documents again?

  MrHoffman,
  Thank you very much for pointing me in the right direction. I added my network to the mynetwork parameter and still got an error on the mail server. This was what I found in the log:
  NOQUEUE: reject: RCPT from hpprinter.warmoezier.home[192.168.XX.XX]: 504 5.5.2 <NPIB32ACB>: Helo command rejected: need fully-qualified hostname; from=<XXXXXXXXXX> to=<XXXXXXXXXX> proto=ESMTP helo=<NPIB32ACB>
  (I removed my mail addresses from the printout. It seems that the HP printer doesnot provide the fqdn in the HELO command.
  Then I replaced:
  smtpd_helo_restrictions = reject_non_fqdn_helo_hostname reject_invalid_helo_hostname
  with:
  smtpd_helo_restrictions = reject_invalid_helo_hostname
  This solved my problem.
  I gues I have to replace the network with the exact printer address in the mynetworks parameter to be on the safe side concerning openrelays in my private network.
  I edited the main.cf directly without using the postconf command or should I have used postconf?
  Thanks again for sharing your knowledge.
  Peter.
  P.s.
  btw is the command in your post correct?
  postconf -c /Library/Server/Mail/Config/postfix mynetworks -e "mynetworks = 127.0.0.0/8, [::1]/128, 10.20.30.40"
  shouldn't it be:
  postconf -c /Library/Server/Mail/Config/postfix -e "mynetworks = 127.0.0.0/8, [::1]/128, 10.20.30.40"

• Mail service not requiring SMTP Authentication

  hello everyone,
  I have been trying to find an answer and could not. I want my mail server to require SMTP Authentication. I have "CRAM-MD5" and "Login" checked in Server Admin -> Computers & Services -> Mail -> Advanced -> Security. Still, I can set up a mail account with any name and domain and SMTP through my server. (It does require a password for POP, so at least no one can read others folks mail)
  I have begun to notice that I get many returned mails that I never sent, from accounts that are not on my server. So, I am thinking that spammers are relaying or just using my server to spam. I would like that to stop.
  I have changed the configurations with Server Admin, stopped service, started service, and even restarted the whole server. Still, mail will not require SMTP Authentication.
  Can anyone help me do this with Terminal or manually?

  thanks, for any help in advance.
  command_directory = /usr/sbin
  config_directory = /etc/postfix
  content_filter = smtp-amavis:[127.0.0.1]:10024
  daemon_directory = /usr/libexec/postfix
  debugpeerlevel = 2
  enableserveroptions = yes
  html_directory = no
  inet_interfaces = all
  localrecipientmaps = proxy:unix:passwd.byname $alias_maps
  luser_relay =
  mail_owner = postfix
  mailboxsizelimit = 0
  mailbox_transport = cyrus
  mailq_path = /usr/bin/mailq
  manpage_directory = /usr/share/man
  mapsrbldomains =
  messagesizelimit = 52428800
  mydestination = $myhostname,localhost.$mydomain,localhost,highlevelit.eu
  mydomain = highlevelit.eu
  mydomain_fallback = localhost
  myhostname = mailx.highlevelit.eu
  mynetworks = 127.0.0.0/8
  mynetworks_style = host
  newaliases_path = /usr/bin/newaliases
  queue_directory = /private/var/spool/postfix
  readme_directory = /usr/share/doc/postfix
  sample_directory = /usr/share/doc/postfix/examples
  sendmail_path = /usr/sbin/sendmail
  setgid_group = postdrop
  smtpdclientrestrictions = permit_mynetworks permit
  smtpdenforcetls = no
  smtpdpw_server_securityoptions = login
  smtpdrecipientrestrictions = permitsasl_authenticated,permit_mynetworks,reject_unauthdestination,permit
  smtpdsasl_authenable = yes
  smtpdtls_certfile = /etc/certificates/mailx.highlevelit.eu.crt
  smtpdtls_keyfile = /etc/certificates/mailx.highlevelit.eu.key
  smtpduse_pwserver = yes
  smtpdusetls = yes
  unknownlocal_recipient_rejectcode = 550
  virtualmailboxdomains = hash:/etc/postfix/virtual_domains
  virtual_transport = lmtp:unix:/var/imap/socket/lmtp

• GWIA SMTP Authentication

  I've read a number of posts on this topic but still need some clarification.
  Please forgive my lengthy explanation as I'd like to lay out the scenario properly - my questions are at the bottom of this post.
  My current setup is Groupwise 7.0.3 with a GWAVA5 appliance as the front end.
  All mail should go through GWAVA both inbound and outbound.
  We have an MX record that points to our GWAVA5 appliance
  We also have smtp pointing to our GWIA server for imap/pop connections by our mobile users, with authentication required.
  I was advised by one of our users that he received mail containing an attachment "message.zip" which contained "message.htm" disguising an ".exe"
  containing a virus.
  The header showed the following, with the actual domain name changed by me for security reasons.
  The IP of the sender is intact.
  Return-path: <>
  Received: from "ourdomain.com" ([115.248.180.37])
  by "our_smtp_server.com" with ESMTP; Sat, 07 Apr 2012 07:07:41 -0400
  From: "Automatic Email Delivery Software" <[email protected]>
  To: [email protected]
  Subject: Delivery failed
  Date: Sat, 7 Apr 2012 16:35:33 +0530
  MIME-Version: 1.0
  Content-Type: multipart/mixed;
  boundary="----=_NextPart_000_0012_955492E2.6AD1CC6D"
  X-Priority: 3
  X-MSMail-Priority: Normal
  X-Mailer: Microsoft Outlook Express 6.00.2600.0000
  X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
  This is a multi-part message in MIME format.
  ------=_NextPart_000_0012_955492E2.6AD1CC6D
  Content-Type: text/plain;
  charset=us-ascii
  Content-Transfer-Encoding: 7bit
  The following is the entry from the GWIA log on the date in question:
  07:07:40 359 DMN: MSG 462912 Accepted connection: [115.248.180.37] ()
  07:07:41 359 DMN: MSG 462912 Receiving file: NCGWIA/DATA:\NCGWIA\WPGATE\GWIA\receive\db7ef7f4.224
  07:07:43 359 DMN: MSG 462912 SMTP session ended: [115.248.180.37] ()
  Questions:
  It appears that the sender attached to our GWIA and sent the message from there.
  The "mailer-daemon" indicates it was disguised to look like a system-generated bounce message.
  What in my configuration would allow this?
  Within the properties of my GWIA, I do not have "reject mail if sender's identity cannot be verified".
  I've read the admin guides on this feature and it seems to point to PTR records checks.
  Would that prevent this incident?
  We have a number of internal servers that do send mail, through our GWIA, and I have relay exceptions for those (otherwise relay is not allowed)
  If I set the "reject mail......" how will that affect those internal servers - will they need an actual account to authenticate with.
  Hope I've explained it clearly
  Thanks in advance
  Vince

  Thanks Uwe, but the sending machine is actually located "out there somewhere" [115.248.180.37] not on our network, so can't be checked.
  As you stated, I'm sure this isn't a relaying issue as we have relay disallowed, with exceptions.
  I suspect the mail went through because the sender used "[email protected]"
  Vince
  Originally Posted by buckesfeld
  Vince,
  find the machine with the sending IP address and check the machine.
  To prevent such issues, you could modify the access control of the GWIA and allow SMTP only for those machines/users who need it.
  Relaying doesn't come into play here, since the sender addresses an internal recipient, so no SMTP authentication needed.
  Uwe
  Novell Knowledge Partner (NKP)
  Please don't send me support related e-mail unless I ask you to do so.

• SMTP authentication in OCSR2 9.0.4.1

  I am setting the smtp authentication in OCSR2 to true, after that, when ever I sent mail thru the server, it need the smtp authentication. I thought I had been successfully configure the server. But later on, when I trying to send mail to the user in the OCSr2 server(from hotmail mail), the mail was reject due to the error"authentication failed".
  It seem that the authentication setting not only affect the mail relaying but also incoming mail connection. Is this true??

  I searched some more on the Forum and eventually found a whitepaper on PJC's in Forms 6i. That gave me the tip not to implement the IView interface, but just extend the VBean class.
  That's what I just tried and no more classCastException. That seems to fix my issue. No to develop the bean itself...

• Moved from DC to NC now smtp authentication with Cox won't work on roadrunn

  I just moved from DC to NC. I have a cox.net email I prefer to use. Cox allows smtp authentication over other ISPs. I had RCN in DC and it worked perfectly. But now, with Time Warner (RoadRunner), it doesn't work. (Incoming still works fine, this is just about outgoing/smtp.) The smtp authentication is set up EXACTLY as it was in DC, but the connection just times out. Oddly, it works fine when I am connected directly to the cable modem. BUT, it does not work when I am connected to my wireless network using an airport extreme. I have deleted the smtp server a hundred times. I have selected SSL and unselected SSL a hundred times. I have tried no authentication. I have tried removing the "cox.net" after my name in the outgoing mail settings. I have reset the airport extreme to factory settings and set the network up again. NOTHING is working. Why would this work directly connected to the modem but not through the EXACT SAME WIRELESS NETWORK and settings I had with RCN??? Any tips/help is greatly appreciated. Oh, and all of my other non-RoadRunner smtp authentication accounts work fine. And my me.com email works fine.

  Thanks again, Bob! Here is the error I'm getting for all three usual ports (25, 465 & 587):
  CONNECTED Apr 07 08:26:51.776 [kCFStreamSocketSecurityLevelNegotiatedSSL] -- host:smtp.west.cox.net -- port:465 -- socket:0x116c00450 -- thread:0x116f54800
  READ Apr 07 08:26:52.090 [kCFStreamSocketSecurityLevelNegotiatedSSL] -- host:smtp.west.cox.net -- port:465 -- socket:0x116c00450 -- thread:0x116f54800
  554 fed1rmimpo03.cox.net bizsmtp connection refused from 71.77.138.209
  It looks to my untrained eye that the cox servers are refusing me. Is that correct? So I should call cox, right? And how do I find the IP address that I'm being refused under?
  Sorry to be so ignorant, but your help is greatly appreciated!

• Smtp authentication 10.8

  Hi,
  In 10.7 we could lock the SMTP service down to requiring a username and password.
  In 10.8 it appears that anyone can send via the server, as long as they have the address. No very secure!!!
  We did a simple upgrade from 10.7-10.8.
  Obviously Server.app has been trimmed down severely, is there a way in terminal to require a user/password for SMTP authentication?
  Thanks

  Use jMapMyLDAP plugins and this config works perfectly:
  Name
  Value
  LDAP V3
  Yes
  Host
  [DNS/IP Address to LDAP Server]
  Port
  389
  Connect User
  Leave blank unless anonymous binding is switched off
  Connect Password
  Leave blank unless anonymous binding is switched off
  Use Search
  Yes
  Base DN
  [Base of your directory such as dc=company,dc=com]
  User DN / Filter
  (uid=[username])
  Map User ID
  uid
  Map Full Name
  cn
  Map Email
  mail
  The following table shows an example group mapping configuration:
  Name
  Value
  Use Group Mapping
  Yes
  Allow Additions
  Yes
  Allow Removals
  Yes & Default Managed
  Mapping List
  [The groups to map such as cn=teachers:4]
  Lookup Type
  Reverse
  Lookup Attribute
  memberUid
  Lookup Member
  uid
  Use Recursion
  No

• Cannot send to some receipients with error "550-Please turn on SMTP Authentication in your mail client"

  I am using exchange 2003 connected using MAPI with outlook2010.
  when i send e-mail to one of my customer.
  i got below error message
  There was a SMTP communication problem with the recipient’s email server.  Please contact your system administrator.
  <xxxx.net #5.5.0 smtp;550-Please turn on SMTP Authentication in
  your mail client. >
  xxxx.net was my server
  and my customer was using messagelabs "cluster6a.us.messagelabs.com" to receive mail
  i was strange that MAPI connect does not need smtp authentication when send out e-mail.
  is that anythings i have missing to do?
  thank you

  Hello,
  Kindly go through with below link.
  http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28133927.html
  http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28078232.html
  Deepak Kotian.
  MCP, MCTS, MCITP Server / Exchange 2010 Ent. Administrator
  Disclaimer:
  Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
  This helps the community, keeps the forums tidy, and recognizes useful contributions. Thanks!
  All the opinions expressed here is mine. This posting is provided "AS IS" with no
  warranties or guarantees and confers no rights.

• SMTP Authentication for PHP Mail

  Can anyone help me in figuring out the correct way to incorporate the SMTP authentication into a form? I am having a lot of trouble in getting my forms to send with this format. My code for my php action page is below. I have my correct information where i included *******. Please let me know what i have wrong.
  CODE STARTS HERE
  <?php
  //new function
  $to = "*******";
  $nameto = "LTL Freight Shop";
  $from = "*******";
  $namefrom = "LTL Freight Shop";
  $subject = "Account Request";
  authSendEmail($from, $namefrom, $to, $nameto, $subject, $message);
  ?>
  <?php
  $recipient  = "*******";
  //$subject = "Account Request";
  $companyname = check_input($_POST['CompanyName'], "Enter your company name");
  $firstname  = check_input($_POST['FirstName'], "Enter your first name");
  $lastname  = check_input($_POST['LastName'], "Enter your last name");
  $phone  = check_input($_POST['PhoneNumber'], "Enter your phone number");
  $fax  = check_input($_POST['FaxNumber']);
  $email  = check_input($_POST['Email'], "Enter your email");
  $address  = check_input($_POST['StreetAddress'], "Enter your address");
  $city  = check_input($_POST['City'], "Enter your city");
  $state  = check_input($_POST['State'], "Enter your state");
  $zipcode  = check_input($_POST['ZipCode'], "Enter your zip code");
  $country  = check_input($_POST['Country'], "Enter your country");
  $yearsinbusiness  = check_input($_POST['YearsinBusiness'], "Enter your years in business");
  $typeofindustry  = check_input($_POST['TypeofIndustry'], "Enter your type of industry");
  $multiplelocations    = check_input($_POST['MultipleLocations']);
  $numberoflocations  = check_input($_POST['LocationsCount']);
  $ltl  = check_input($_POST['ServicesLTL']);
  $ftl  = check_input($_POST['ServicesFTL']);
  $domesticparcel  = check_input($_POST['ServicesDomesticParcel']);
  $intlparcel  = check_input($_POST['ServicesInternationalParcel']);
  $airfreight  = check_input($_POST['ServicesAirFreight']);
  $oceanfreight  = check_input($_POST['ServicesOceanFreight']);
  $other  = check_input($_POST['ServicesOther']);
  $none  = check_input($_POST['ServicesNone']);
  $volume  = check_input($_POST['TypicalVolume'], "Enter your typical volume");
  $carrier  = check_input($_POST['CurrentCarrier'], "Enter your current carrier");
  $class  = check_input($_POST['AverageClass'], "Enter your average class");
  $weight  = check_input($_POST['AverageWeight'], "Enter your average weight");
  $process   = check_input($_POST['Process']);
  $hearabout = check_input($_POST['HearAbout']);
  $comments = check_input($_POST['Comments']);
  if (!preg_match("/([\w\-]+\@[\w\-]+\.[\w\-]+)/", $email))
      show_error("E-mail address not valid");
  $message = "You have received an account request from:
  Company Name: $companyname
  First Name: $firstname
  Last Name: $lastname
  Phone Number: $phone
  Fax Number: $fax
  E-mail: $email
  Street Address: $address
  City: $city
  State: $state
  Zip Code: $zipcode
  Country: $country
  Years in Business: $yearsinbusiness
  Type of Industry: $typeofindustry
  Multiple Locations: $multiplelocations
  Number of Locations: $numberoflocations
  Services they use: $ltl, $ftl, $domesticparcel, $intlparcel, $airfreight, $oceanfreight, $other, $none
  Typical Volume: $volume
  Current Carrier: $carrier
  Average Class: $class
  Average Weight: $weight
  How they currently process: $process
  How they heard about us: $hearabout
  Comments: $comments
  End of message
  //ini_set("SMTP","smtp.emailsrvr.com");
  //ini_set("SMTP_PORT", 25);
  //ini_set("sendmail_from","*******");
  //mail($recipient, $subject, $message);
  function check_input($data, $problem='')
      $data = trim($data);
      $data = stripslashes($data);
      $data = htmlspecialchars($data);
      if ($problem && strlen($data) == 0)
          show_error($problem);
      return $data;
  function authSendEmail($from, $namefrom, $to, $nameto, $subject, $message)
  $smtpServer = "smtp.emailsrvr.com";
  $port = "25";
  $timeout = "30";
  $username = "********";
  $password = "********";
  $localhost = "smtp.emailsrvr.com";
  $newLine = "\r\n";
  $smtpConnect = fsockopen($smtpServer, $port, $errno, $errstr, $timeout);
  $smtpResponse = fgets($smtpConnect, 515);
  if(empty($smtpConnect))
  $output = "Failed to connect: $smtpResponse";
  return $output;
  else
  $logArray['connection'] = "Connected: $smtpResponse";
  fputs($smtpConnect,"AUTH LOGIN" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['authrequest'] = "$smtpResponse";
  fputs($smtpConnect, base64_encode($username) . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['authusername'] = "$smtpResponse";
  fputs($smtpConnect, base64_encode($password) . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['authpassword'] = "$smtpResponse";
  fputs($smtpConnect, "HELO $localhost" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['heloresponse'] = "$smtpResponse";
  fputs($smtpConnect, "MAIL FROM: $from" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['mailfromresponse'] = "$smtpResponse";
  fputs($smtpConnect, "RCPT TO: $to" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['mailtoresponse'] = "$smtpResponse";
  fputs($smtpConnect, "DATA" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['data1response'] = "$smtpResponse";
  $headers = "MIME-Version: 1.0" . $newLine;
  $headers .= "Content-type: text/html; charset=iso-8859-1" . $newLine;
  $headers .= "To: $nameto <$to>" . $newLine;
  $headers .= "From: $namefrom <$from>" . $newLine;
  fputs($smtpConnect, "To: $to\nFrom: $from\nSubject: $subject\n$headers\n\n$message\n.\n");
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['data2response'] = "$smtpResponse";
  fputs($smtpConnect,"QUIT" . $newLine);
  $smtpResponse = fgets($smtpConnect, 515);
  $logArray['quitresponse'] = "$smtpResponse";
  function show_error($myError)
  ?>
      <html>
      <body>
      <b>Please correct the following error:</b><br />
      <?php echo $myError; ?>
      </body>
      </html>
  <?php
  exit();
  ?>

  I have the same problem - user has Outlook 2010 on Exchange 2007. Mail goes directly into the deleted items folder. After browsing around the net I found 2 different site with the same potential fix. It seems that when migrating a user from Exch 2003 to
  2007 (which we did) some of the configs get set incorrectly. The weird thing is we migrated over 2 years ago, and some others are experiencing the same after a long period after the migration. The fix that was suggested is:
  Go to your Exch server, open up Exchange Management Shell and type the following:
  get-mailboxcalendarsettings "domain/ou/user" | fl 
  set-mailboxcalendarsettings "doman/ou/user" -automateprocessing: Autoupdate 
  My user already had Autoupdate set, but this seems to have fixed it for me...

• SMTP authentication problem

  I try to send mail with a Javamail client code (you can see the code below), it works fine if the mail server doesn't require SMTP authentication to be relay, but SendFailedException occurs if the mail server security setting is set to SMTP requires authentication (same settings as POP usr/pwd) on the mail server.
  I believe it is an issue of SMTP authentication.
  How do I code for SMTP authentication with Java Mail API?
  Thanks!
  Can Odabasioglu
  Source Code:
  import java.util.Properties;
  import javax.mail.*;
  import javax.mail.internet.*;
  import java.io.UnsupportedEncodingException;
  public class MailExample {
  public static void main (String args[]) {
  String host = "odabasioglu.net";
  String from = "[email protected]";
  String to = "[email protected]";
       try {
       Properties props = System.getProperties();
       Authenticator auth = new POPAuth ();
       props.put("mail.smtp.host", host);
       Session session = Session.getInstance(props, auth);
       MimeMessage message = new MimeMessage(session);
       message.setFrom(new InternetAddress(from,"FromName"));
       message.addRecipient(Message.RecipientType.TO,new InternetAddress(to,"ToName"));
       message.setSubject("Test Subject");
       message.setText("Can Odabasioglu");
       Transport.send(message);
       catch (MessagingException e) {e.toString();}
  catch (UnsupportedEncodingException e) {e.toString();}
  static class POPAuth extends Authenticator {
  public PasswordAuthentication getPasswordAuthentication() {
  return new PasswordAuthentication("UserName", "Password");
  }

  “Cannot send message using the server
  Mail.ISP.net:[email protected]”
  …And provides the “Send message using:” pulldown to
  select one of two accounts (one is followed by
  “:[email protected]”, the other is not). Both are the
  same options the other two machines have, but neither
  option works on this machine.
  This is one of those error messages that they send application programmers to school for so that they can include error messages that don't tell you what the problem is.
  After much trial and error, I discovered that this message is returned if there is an error in the recipient's email address. Perhaps, if it was stored in the address book, it became corrupt. I've found that manually typing in the address (without automatically finishing it from cache) usually fixes the problem. I just spoke to a customer this morning with the same error message, and entering the recipient's email address manually corrected the problem.

• SMTP Authentication Possible?

  The SMTP mail server in my environment uses authentication (user/pswd) when connecting and sending e-mail. How can I pass user/pswd to it through Reports? I realize that I can set up a pluginParam to specify the SMTP name. But I can't find anything on SMTP authentication.
  Thanks,
  Scott

  You can always create a custom destination that takes control after the Reports Server formats the report. Your plugin destination does all that Reports mailing destination package does plus authenticate the user.
  For more information on how to create and deploy custom destination, visit:
  http://otn.oracle.com/products/reports/apis/index.html
  Regards
  Sripathy

• SMTP authentication disabled in Outlook

  Hello,
  Was a security or outlook update recently released that disabled SMTP authentication in Outlook 2003/2007?  I've had several users report that this has been disabled; all are using various flavors of Outlook and Windows.

  Hi,
  “SMTP requires authentication” option is set when using a POP3, IMAP or HTTP account in Outlook. If you are using Outlook 2007, we need to follow these steps to configure it:
  1. On the Tools menu, click Account Settings.
  2. Select the account you want to change.
  3. Click More Settings, and then you can change the following:
  4. On the Outgoing Server tab, you can specify whether your outgoing SMTP mail server requires authentication. This is almost always required if your ISP allows you to send e-mail messages through your ISP e-mail account when you are not
  directly connected to the ISP network, for example, if you want to send an e-mail message with your home ISP e-mail account and you are away from home connected to your work network.
  For more information about it, please refer to the following article:
  http://office.microsoft.com/en-us/outlook-help/change-email-account-settings-HP010006899.aspx#BM2
  Regards,
  Winnie Liang
  TechNet Community Support

• SMTP authentication description

  Hi everyone :
  I don't know what is Ironport SMTP authentication feature after reading the Adv-UserGuide.
  Is it the smtp authentication use to authen the user connect to email server and How it work between email server and client if it is , As we know Ironport is email gateway , How Ironport can control the user connect to email server ?
  Is it only work for Outgoing email authentication ?
  thx thx !

  I would say that SMTP Authentication is most commonly used for a segment of your end users that are traveling on business or work outside of the internal company network and can't be connected directly to the company mailserver to send out their outgoing mail.
  Since a user outside the network may not be able to directly connect to the corporate mailserver, what mail administrators try to set up is the IronPort appliance to do smtp authentication against an Active Directory server for example and then if the sender authenticates, they'll be able to relay using the IronPort appliance.
  If you run into any problems or questions, feel free to post the issue here and we'll try to iron it out.

• SMTP Authentication Function

  Hi, i want to ask the function of smtp authentication in ironport. Is it used to authenticate with the exchange server or per client using LDAP? When i configure the smtp authentication, is it used for incoming or outgoing connection ? Thanks.
  Regards
  Alkuin Melvin

  Dear Alkuin,
  For SMTP authentication configuration, you can configure SMTP auth profile under 'Network'-'SMTP Authentication' (LDAP, forward and outgoing).
  In my opinion, you can choose to enable SMTP AUTH in mail flow polic(ies) of existing listener (port 25) and/or a new listener using another port (say port 8025). The reason to use 'port number other than port 25' is that some residential ISP or hotel internet connection will block outgoing port 25 connection (due to antispam reason - blocking botnet/malware infected hosts to send spams and ISP IP address gets blacklisted).
  For existing listener, you can configure SMTP AUTH "Preferred" setting in default mail flow policy, and then users can authenticate and then relay emails through IronPort from public IP address (configure email client's outgoing SMTP gateway with IronPort public IP address and port 25). One point to note is that if the user is sending from a poor reputation IP, their SMTP connection may be blocked or throttled.
  For listener using port number other than 25 (e.g. 8025) , you can configure to have just one sender group with default mail flow policy configured with SMTP AUTH "Required". The email client needs to configure with outgoing SMTP gateway with IronPort listener's public IP address and specific port number (say port 8025). In this way, only authenticated user can relay emails through this listener and they can avoid port 25 blocking issue or sending host's reputation issue as mentioned above.
  Cheers,
  Tommy