Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Sharepoint Web Part 550 5.7.1 Client does not have permissions to send as this sender

Posted on 2014-01-17
5
Medium Priority
?
1,253 Views
Last Modified: 2014-02-17
We (actually our DBA) are setting up a sharepoint server. One of the web parts she is trying to use is trying to send an email but gets the error above.

When i ran a wireshark capture on the sharepoint server, i see that the web part is using auth ntlm. I don't think it should need to since its not sending externally, only internally. Also, I'm not sure who it's authenticating as.

i found online to run this command: Add-AdPermission -Identity "Default Receive Connector" -User "NT AUTHORITY\Authenticated Users" -ExtendedRights ms-Exch-SMTP-Accept-Any-Sender

However, if i do that I'm not sure what consequences it will have. does this open up a security hole?
0
Comment
Question by:msidnam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 44

Expert Comment

by:Rainer Jeschor
ID: 39789867
Hi,
what web part is this? Which SharePoint version and edition?
SharePoint has built-in possibilities to send emails using the configured email server.
The SharePoint web app normally executes with the current logged on user therefore the built-in tools are sending through the app pool user and NOT the logged in user. It seems that the web part is doing it the "wrong" way.
I am no Exchange Pro but the above does really NOT look nice - to enable all authenticated user to send emails from any machine. I personally would not configure exchange this way.
HTH
Rainer
0
 
LVL 2

Author Comment

by:msidnam
ID: 39789896
I will need to check with my DBA, but it's from http://artfulbits.com/. I'm not sure exactly which product.

We have foundation 2013. the web part is to allow users to purchase items from the company store. when they add something to the cart and checkout, the web part emails them.

I agree, i do not think they are doing it correctly. We've reached out to them to see if they can possibly remove the auth ntlm from the web part and just connect to the email server, do the MAIL FROM, RCPT TO, DATA, SUBJECT and then email body.
0
 
LVL 44

Accepted Solution

by:
Rainer Jeschor earned 2000 total points
ID: 39790000
Hi,
I just analyzed their code - it looks OK - they try to send the email using the SharePoint provided context.
Therefore another question:
do you already verified that emails are sent from SharePoint in general?
There are two different "locations/tools" sending emails:
- the web app itself (e.g. when registering for an alert)
- the Windows SharePoint Timer Service (when sending alerts)

Again, as I am no Exchange pro, please double check with your Exchange admins the following configurations:

http://sharepoint-for-real.blogspot.de/2013/07/sharepoint-2013-incoming-and-outgoing-e.html
and
http://sharepointgeorge.com/2010/configuring-outgoing-email-sharepoint-2010/

HTH
Rainer
0
 
LVL 2

Author Comment

by:msidnam
ID: 39790076
I can verify that we can send emails from sharepoint itself. It seems to be something with this shopping cart web part. I am no sure about the Windows Sharepoint Timer Service.

I'm also the exchange admin so i'll take a look at the links as well.

Thank you.
0
 
LVL 2

Author Closing Comment

by:msidnam
ID: 39865412
We found out that we needed to change the SMTP service settings inside the sharepoint server.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question