Solved

disabling outbound email - sbs2003

Posted on 2008-11-03
12
297 Views
Last Modified: 2010-04-19
if i disable a user account in aduc will this stop the user being able to send outbound email? i am running a sbs2003 environment with xp workstations.
0
Comment
Question by:brad2000smith
  • 7
  • 5
12 Comments
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867437
If your SMTP-server requires authentication, then that particular user will not be able to send messages directly. The SMTP is the only weakness, since often administrators allow unauthenticated relaying from within the local network address range.
0
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867455
Oh, and Exchange is also off limits for that user, because there the AD authentication is strictly enforced by the server.
0
 

Author Comment

by:brad2000smith
ID: 22867464
could you explain this please?  i need to stop certain users sending external email, and they currently have this available to them.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:brad2000smith
ID: 22867486
we are using exchange
0
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867578
Your Exchange server uses the Exchange protocol that Outlook can connect to directly. Since you disabled the account, the user won't be able to send mails via Outlook anymore.
Your Exchange server also contains an SMTP server. If your user connects to this one directly, he may be able to send emails through the server. It depends on the settings of the SMTP-server. Often they are configured to relay without authentication from within the local network. Set your SMTP to accept only authenticated connections and this loophole is also closed. See http://support.microsoft.com/kb/823019
0
 

Author Comment

by:brad2000smith
ID: 22867625
ok, thats great.  i dont know if our SMTP server requires authentication but we use outlook and exchange, i have disabled the account in ADUC, so this should do the trick?
0
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867672
0
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867678
sorry, wrong post.
0
 
LVL 3

Expert Comment

by:Yossarian-22
ID: 22867697
Yes, disabling the user should do the trick - if your users access the Exchange server by Outlook and/or Outlook web access.
If they use Outlook express or another POP3/IMAP/SMTP client, they may be able to send emails, if your SMTP is not well configured as outlined before.
0
 

Author Comment

by:brad2000smith
ID: 22867709
ah anonymous access is ticked - under ESM>Administrative Groups>First Administrative Group>Servers>Server Name>Protocols>SMTP>Default SMTP Virtual Server>Properties>Access>Authentication>  along with basic authentication and integrated windows authentication.
0
 

Author Comment

by:brad2000smith
ID: 22867735
ok thank you. just needed to stop a user sending something they shouldnt be asap! thanks
0
 
LVL 3

Accepted Solution

by:
Yossarian-22 earned 500 total points
ID: 22867883
Then you should be on the safe side.
Just keep in mind to edit any software which uses the SMTP server now that you have disabled anonymous access. This could be an Adaptec raid-monitor or backup solution which sends out status reports.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A lot of problems and solutions are available on the net for the error message "Source server does not meet minimum requirements for migration" while performing a migration from Small Business Server 2003 to SBS 2008. This error pops up just before …
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question