Solved

Office 365 SMTP relay issues

Posted on 2014-02-06
2
1,028 Views
Last Modified: 2014-02-26
Dear all,

After several attempts I have created a virtual SMTP relay on a Windows 2012 server to act as relay between our MFDs, LOB apps etc. and Office 365.  This is all due to TLS encryption being necessary.

The main issue I have at the moment, is more of a head scratcher than anything else.  I have had to create a user/mailbox in our Exchange Admin Portal for our SMTP relay to use.  If I created an account in our Active Directory forest no email went anywhere, the account did not work.  This was born out by advice from Microsoft.

For the sake of argument I called the account IT @blah.com, with a display name of ‘IT Department’.  All email alerts from SCOM or from our MFDs are all addressed from ‘IT Department’.  However, I need to be able do something like this:

1. Alerts from SCOM arrive in a mail box from ‘IT Department’
2. Scans from MFDs to arrive from ‘Printer Name’ (e.g. Finance Printer).

The list can go on and on.   The problem is that I can only setup one account to authenticate as if I use  ‘Anonymous Access’ it fails. See attached screenshot).

How can I set Office 365 up so that I can relay SMTP email for different purposes without having to create multiple SMTP relays and accounts in EAP?  I don't want all SMTP relayed email to come from 'IT Department' for example.

Any help please?
SMTP.png
0
Comment
Question by:rookie_b
2 Comments
 
LVL 40

Accepted Solution

by:
footech earned 500 total points
ID: 39840033
I know that some documentation says that you have to use TLS to relay with Office 365, but I found that wasn't the case.  What I have done:
-- on the SMTP virtual server
-is allowed to relay for specific IPs
-authentication is set to anonymous (both for the Access tab, and Delivery > Outbound Authentication)
-created a remote domain for our domain name, and set to forward to smarhost with the name set to the name of the MX record as indicated by O365 (like "example-com.mail.protection.outlook.com")
-- in O365
-configured a connector (under Exchange Admin Center > mail flow > connectors > Inbound Connector)
Connector Type = “partner”
Connection Security = “Opportunistic TLS”
Domain Restrictions = “None”
Scope
      Domains = “*”
      IP Addresses = your public IP

With your SMTP virtual server configured that way, email sent to other domains will be routed by DNS (not going through O365), while email sent to addresses at your domain will be sent directly to O365.  From what I've seen, configuring the connector on the O365 side isn't strictly necessary, but basically whitelists email coming from the IP.

With this setup, the "from" email addresses are whatever I configure and doesn't have to line up with any accounts.
0
 

Author Closing Comment

by:rookie_b
ID: 39888380
This got us on the right track.

Thanks!
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When you have clients or friends from around the world, it becomes a challenge to arrange a meeting or effectively manage your time. This is where Outlook's capability to show 2 time zones in one calendar comes in handy.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question