Email Security: SMTP Auth Configuration on 8.3

03/26/2020 986 12301

DESCRIPTION:

As of 8.3, you can now configure SMTP AUTH on both inbound and outbound paths. Below are the configuration details on SMTP AUTH.

CAUSE:
SMTP Authentication, often abbreviated SMTP AUTH, is an extension of the Simple Mail Transfer Protocol whereby an SMTP client may log in using an authentication mechanism chosen among those supported by the SMTP server. The authentication extension is mandatory for submission servers.

RESOLUTION:

To configure this, perform the steps below:

-

1. Go to your Inbound or Outbound path by navigating to Manage| Network | Server Configuration and depending on your requirement, select the Inbound or Outbound Path you want to enable SMTP AUTH on by clicking on "Edit Path".

2. In the Popup window that opens, scroll down to "Configure Authentication" and select it.

3. Configure the SMTP Authentication :

Use this window to configure SMTP authentication.

NOTE: For Hosted Email Security (HES) SMTP is only supported for the outbound paths.

Select one of three options:

⦁ This path does not use SMTP authentication. 

        This is the default setting, where no authentication is required.

⦁ This path relays SMTP AUTH commands unchanged from upstream to downstream. 

This is typically selected when you want to relay mail through to an external mail server. The AUTH commands are relayed downstream to the external mail    server that requires it before accepting the mail. This option is not available for paths that use the MTA.

NOTE:  Relaying authentication commands downstream will not be supported for HES.

⦁ This path uses credentials as follows. 

This option allows you to perform Server Side Authentication and Client Side Authentication. For Server Side Authentication, choose one of the following: 

⦁ Use This path accepts the following credentials if you want to configure a single set of credentials that is used for all email. These credentials can be used to identify a specific customer or server. Provide the username and password to complete the configuration.

⦁ Use This path uses user login credentials to authenticate to require user authentication.

For Client Side Authentication (for example, when sending outbound email through an ISP that requires authentication), select Sends an SMTP AUTH command with the following credentials to the downstream mail server. Provide the username and password to complete the configuration.

At the bottom of the window, you can require encryption for both upstream and downstream connections. The default is that both are selected.

CAUTION:  Authentication commands include credentials like usernames and passwords. To protect them they should only be transmitted over encrypted connections.

NOTE: If the navigation or the screenshot looks different from the one mentioned above , you may be in an older firmware version and would require a firmware upgrade. Please refer the link below to upgrade the firmware to latest version.

https://www.sonicwall.com/en-us/support/knowledge-base/170504270079039