10.2. Securing SMTP Authentication

Problem

You want to ensure that your Internet-facing Exchange SMTP server is properly secured.

Solution

Using a graphical user interface

  1. Launch the Exchange System Manager (Exchange System Manager.msc).

  2. In the left pane, expand the appropriate Administrative Groups container, and then expand the Servers container.

  3. Locate the target server, then expand its Protocols container and the SMTP node beneath it.

  4. Right-click the Default SMTP Virtual Server node and select Properties.

  5. Switch to the Access tab and click the Authentication button. The Authentication dialog is shown in Figure 10-1.

  6. Choose the appropriate authentication settings by checking the corresponding boxes. For Internet-facing servers, you must leave anonymous access enabled if you want your server to accept SMTP mail from other servers; you can enable or disable basic and integrated authentication as necessary (see the Discussion section for more on this).

  7. Click OK to accept the authentication settings. They will take effect immediately.

The SMTP server authentication dialog

Figure 10-1. The SMTP server authentication dialog

Discussion

Configuring SMTP authentication is a necessary part of securing your Exchange server. SMTP wasn't originally designed to support authentication, so the IETF has retrofitted authentication via the SMTP AUTH verb as documented in RFC 2554. You can only control authentication at the virtual server level. ...

Get Exchange Server Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial