Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Exchange 2003 Server

Posted on 2006-07-19
Medium Priority
Last Modified: 2012-05-05
Hey Guys -

So I have this enterprise services division who want to give contractor email address's. Our AD team doesnt want to create user accounts for these external users due to security issues. I wouldnt like to create mailboxes for them in our exchange org due to server folders have anonymous view access.....

How should we deal with this ?


Question by:jay79
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +1
LVL 29

Expert Comment

ID: 17143585
Is the AD team won't setup an account that they have access to use then you won't be able to create a mailbox for them as all mailboxes in AD must be associate with an AD account. If the aim of this is to have the contractors appear in the GAL then you can set them up and mail enabled contacts using their personal or external e-mail addresses.

How to create a contact
1. Start the Active Directory Users and Computers snap-in.
2. Expand the server, and then right-click Users.
3. Click New, and then click Contact.
4. Type a name.
5. Click Modify, click SMTP, and then click OK to create the custom SMTP mail address.
6. Type the SMTP e-mail address, click OK, click Next, and then click Finish.

How to mail-enable a contact
1. Start the Active Directory Users and Computers snap-in.
2. Right-click the contact, and then click Exchange Tasks.
3. Click Next, click to select Establish e-mail addresses, and then click Next.
4. If the contact does not have an alias, enter an alias for the contact.  
5. Click the appropriate e-mail address type, and then type the e-mail address.

Note Click the Advanced tab to configure the Message Format setting.
6. Click OK, click Next, and then click Finish.

Author Comment

ID: 17147634
The aim is to not only receive email as but also send email as and not as or ....thoughts ?

Expert Comment

ID: 17148827
If your AD team are that tight then they will have to stump up for a separate ex-box and a trusting domain. You can forward unresolved recipients to the new ex box.

Problem is it is costly in terms of licences and tin. Basically as said above, you need an AD account to have a mailbox.
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

LVL 29

Expert Comment

ID: 17149500
I agree. If you want the outgoing e-mail to be showing from your company they are going to need an AD account in a domain that has permissions to the Exchange organisation.
LVL 104

Expert Comment

ID: 17149630
There is nothing to stop the contracts from sending email via their own account with the reply to address set as the company email address. I have done that with a couple of clients.
It depends on how integrated they want to be, and how much control over the contractors email they want.


Expert Comment

ID: 17149650
Sembee, mate, that does present potential problems in future with SPF and other mechanisms that mail hosts are putting in place to stop domain spoofing.
LVL 29

Expert Comment

ID: 17149799
Hi Simon,

Do you know of any related articles for doing this? I was under the impression that there would be some kind of issues sending externally due to relay restrictions etc. But I like to learn something new each day that's why  I love this site as it exposes me to issues that I don't get to work on here at work :-)
LVL 104

Accepted Solution

Sembee earned 2000 total points
ID: 17150236
Most of the technologies for spoofing aren't very effective. If they were, then there would be lots of services that would break on the internet, or would need to be recoded.

Sometimes you have no choice than to do something like the above, because the ISP that you (as the Outlook Express user) are connected to doesn't allow connections to other SMTP servers.

There is no clean answer without having accounts on the domain.

Not sure which bit you aren't clear on. I have an article on setting up the contacts for the external contracts, which is here:
The Outlook Express bit is as simple as putting the From address in the client to your "company" address. Then send it through your regular ISP.

Going back to the original question. Another option would be to use one of the low end POP3/SMTP servers. Get something like SmarterMail and install it on a Windows 2003 Web Edition machine. You could use the built in POP3/SMTP service, but that would require CALs.


Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
One-stop solution for Exchange Administrators to address all MS Exchange Server issues, which is known by the name of Stellar Exchange Toolkit.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question