• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 457
  • Last Modified:

Exchange 2007 Recieve Connector For POP Clients, Anonymous Users With Authentication


I want to set up a Receive Connector with Exchange2007 for POP email clients to use as an SMTP server.  

I want anyone to be able to use this connector even though they will not be an exchange user or have their domain hosted on the server.

To keep the connector from being an open relay I want to set up a user in Active Directory to be used for authentication purposes.

If this is possible your insight would be appreciated. Thank you for taking the time to read this.
  • 4
1 Solution
DeclaroAuthor Commented:
Thanks for the reply.

I’ve read the second link and tried it and it does not do what I want…

The user I have setup in AD for authentication is SMTP@HOSTED-DOMAIN.COM

I have tried to setup an outlook client at a remote location for an email address that is not hosted on the exchange server (dave@another-domain.com), I think the term is ‘not authoritative for’ using SMTP.HOSTED-DOMAIN.COM for the smtp server. I have ticked ‘My Outgoing Server Requires Authentication’ and used SMTP@HOSTED-DOMAIN.COM for the authentication user

This doesn’t work and I get the response from the outlook test of…

Send test e-mail message: Cannot send the message. Verify the e-mail address in your account properties.  The server responded: 550 5.7.1 Client does not have permissions to send as this sender

Is this senario possible?
DeclaroAuthor Commented:

The only way I can get it to work is to follow the above instructions, not use authentication on the outgoing server AND to setup the domain as an accepted domain on the exchange server.

Problems are…

I can’t send email from my primary domain to the new domain because the email address is not setup on the exchange server

Email from the new domain can only be sent to the primary domain and not anyone else unless I run this command…

Get-ReceiveConnector "connector name" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Recipient"

Problem with that is it turns the receive connector into an open relay!
DeclaroAuthor Commented:
Sorted it out with a little more help... for information...

Setup a new custom receive connector.

I used a different unused port to 25 or 587

On authentication tab select…

Transport Layer Security(TLS)
Basic Authentication

On Permission Groups tab select…

Exchange Users

Setup a user in AD with a mailbox Eg. DOMAIN\smtp

In EMS use commands…

Get-ReceiveConnector " custom receive connector " | Add-ADPermission -User "DOMAIN\smtp" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Sender"

Get-ReceiveConnector " custom receive connector " | Add-ADPermission -User "DOMAIN\smtp" -ExtendedRights "ms-Exch-SMTP-Accept-Authoritative-Domain-Sender"

This will setup an Authenticated SMTP Server you can use for domains not hosted by your exchange server

Hope that helps anyone else who wants to do this.

DeclaroAuthor Commented:
Led me in the right direction but a little more specific help would of been welcomed.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now