Exchange 2003 authentication

200 pts.
Tags:
Email servers
Exchange 2003
Exchange 2003 authentication
Exchange authentication
Exchange configuration
Hi,

     In our organization we have exchange 2003 server and i have changed the authentication to Integrated Windows authentication but from that time we are not able to receive any mails.We are able to send mails to all .com ids but receiving is not happening.Could you please let me know how to configure our mail server such that only outgoing/relayed messages should require user authentication, and incoming messages for domains on our exchange server should not require authentication, It is very critical please help me out in this.



Software/Hardware used:
Exchange server 2003

Answer Wiki

Thanks. We'll let you know when a new response is added.

Mine is set to use anonymous access, basic authentication, and integrated windows authentication. If I hit the users button next to integrated windows auth, I have only authenticated users in my list, with the allowance of submitting and relaying.

If you don’t allow anonymous access, then no one outside of your company can attach to it to send you an email (which sounds like what is happening right now for you).

If you look on the same tab, you’ll see a button for relaying. That’s where you specify via checkbox that only authenticated users (computers) can relay. That prevents you from being an open relay, and still allows you to receive external email.

(BTW, we only have one exchange server, so these settings should apply only for your external-facing exchange server, if you have multiple.)

When someone sends you an email, their server has to connect to your SMTP server in order to hand off the message. Without anonymous access allowed, their server would need to have an account on your system and use those credentials in order to sign in. Since you can’t give out an account to every mail server in the world. you can just allow anonymous access.

Relaying is different. Relaying is me using your server to send my email to someone else. It is not the same as me connecting to your server in order to give you a message for you.

Discuss This Question: 11  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Koohiisan
    Where was this setting changed specifically?
    5,020 pointsBadges:
    report
  • Acdc
    The settings were changed in the exchange server-default smtp virtual server-properties-access-authentication-Intergrated windows authentication.
    200 pointsBadges:
    report
  • Koohiisan
    @Acdc Mine is set to use anonymous access, basic authentication, and integrated windows authentication. If I hit the users button next to integrated windows auth, I have only authenticated users in my list, with the allowance of submitting and relaying. I've not had any problems with these settings in their current state.
    5,020 pointsBadges:
    report
  • Acdc
    Hi Koohilsan, If i enable anonymous access then anybody can send spam mails through our server,So how to secure our server,How to get secure from NDR attacks,etc.
    200 pointsBadges:
    report
  • Koohiisan
    If you don't allow anonymous access, then no one outside of your company can attach to it to send you an email (which sounds like what is happening right now for you). If you look on the same tab, you'll see a button for relaying. That's where you specify via checkbox that only authenticated users (computers) can relay. That prevents you from being an open relay, and still allows you to receive external email. (BTW, we only have one exchange server, so these settings should apply only for your external-facing exchange server, if you have multiple.)
    5,020 pointsBadges:
    report
  • Acdc
    We do have only one exchange server and now i have enabled anonymous and integrated windows authentication.I am able to receive and send mails but only thing i am bothered is about anonymous access.Anonymous access is to receive mails from external or what,could you pls let me know .
    200 pointsBadges:
    report
  • Koohiisan
    When someone sends you an email, their server has to connect to your SMTP server in order to hand off the message. Without anonymous access allowed, their server would need to have an account on your system and use those credentials in order to sign in. Since you can't give out an account to every mail server in the world. you can just allow anonymous access. Relaying is different. Relaying is me using your server to send my email to someone else. It is not the same as me connecting to your server in order to give you a message for you. Does that make sense? :)
    5,020 pointsBadges:
    report
  • Acdc
    Thanks Koohilsan,I have set up the settings as you said and i will monitor for few days and let you know.These settings are working fine for now .
    200 pointsBadges:
    report
  • Acdc
    Now everything is working fine but only in outlook 2010 pop3 accounts are getting pop up to enter their user id and password but in outlook 2007 the settings are same as outlook 2010,those accounts are working fine..Earlier these things did not happen now only it started.Could you please tell me what to do.
    200 pointsBadges:
    report
  • Koohiisan
    I sometimes run into this with POP clients as well. In the configuration area for the account, you should have the option that the SMTP server requires authentication. You can then specify to use the current credentials (which should be fine for your needs), or to specify alternate credentials. Try setting it to authenticate SMTP using your current credentials on the account, and let us know if it takes care of the pop up for you.
    5,020 pointsBadges:
    report
  • Acdc
    Hi Koohilsan, Now when everything is working fine,i have the problem with 2010 outlook accounts.In the same network outlook 2007 accounts are working fine the problem is with 2010.When i try to configure outlook 2010 pop3 accounts,i give all the info and in the more settings tab i use the same settings as Outlook 2007 pop3 settings but even though i get the following error, Send test e-mail message:Your e-mail server rejected your login.Verify your user name and password for this account in Account Settings. And in More settings tab i have selected My outgoing server req authentication and in the log on using i have given the correct user id and pwd but then also i keep on getting the error message.But when this same account is configured in 2007 outlook it works fine.Could you please help me .
    200 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following