Score:1

Using TLS1.0 or TLS1.1 to connect to Exchange Online with SMTP AUTH

cn flag

I have a Windows Server 2008 R2 that is being replaced in two months. Currently we use it for sending out reports, invoices etc. with SMTP Relay from multiple applications that are also being replaced at the same time the server is. My issues is that Microsoft has recently stopped allowing SMTP Relaying through Office365 with TLS1.0 or TLS1.1. Well not stopped because there is a work around. New opt-in endpoint available for SMTP AUTH clients still needing legacy TLS

I have followed all the steps (I think) correctly but still can't get it to work. The first thing I did is use PowerShell to Set-TransportConfig -AllowLegacyTLSClients $true and then set 4 email clients. I also went to my IIS 6 Management Console and changed the Smart host from smtp.office365.com to smtp-legacy.office365.com per the directions on this page. Next I logged into the Office365 Admin center and lastly I went to the three users that send out these emails and unchecked Authenticated SMTP From the Mange Email Apps tab.

And after doing all that I am still unable to send SMTP mail out from our system. The event log shows this error Message delivery to the host 'xx.xx.xx.xx' failed while delivering to the remote domain 'customer.com' for the following reason: The remote SMTP service rejected AUTH negotiation.

So just to be clear SMTP has been working all along and didn't not work until MS blocked them specifically so I don't think it is bad setting somewhere. Has anybody else run into this and know what step I missed or have any suggestions of what to try next?

By the way if it wasn't clear. This is just a temporary situation because were already planning on replacing this server. I just need to limp along for another couple of months.

joeqwerty avatar
cv flag
From the linked article: **Make sure that the mailbox is configured to allow sending using SMTP AUTH**.
Buck Hicks avatar
cn flag
I read that the opposite. I unchecked the boxes for SMTP Auth. Anyway that was the issue. Thanks
Buck Hicks avatar
cn flag
Why can't I mark this question resolved?
vidarlo avatar
ar flag
Because it doesn't have a answer. You can self answer the question and mark that question as accepted.
Score:0
cn flag

@joeqwerty answered the question in comments. The issue was that I had unchecked the SMTP Auth instead of leaving it checked.

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.