Topic Last Modified: 2007-05-16

Three authentication methods are available. You can select one, two, or all three methods. By default, only Anonymous access is enabled. By default, only Anonymous access is enabled to prevent anyone from using your Simple Mail Transfer Protocol (SMTP) virtual server to relay mail. For more information, see Setting or Removing Relay Restrictions from a Virtual Server.

The default mail relay settings on the SMTP virtual server allow only mail from authenticated users to be relayed. Therefore, to allow users in your organization to send mail through the virtual server, users must first authenticate. By selecting one of the methods on the Authentication dialog box, your users will be able to send mail, and at the same time, unauthorized users will not be able to use your virtual server to relay mail.

Authentication option Description

Anonymous access

An account name or password is not required.

Basic authentication

An account name and a password are sent using clear text. Specify a Windows domain that is appended to the account name for authentication. We strongly recommend that you require Transport Layer Security (TLS) encryption with Basic authentication, to avoid unauthorized detection of user names and passwords.

Integrated Windows Authentication

A Windows account name and password are authenticated using this option.

Procedure

To disable authentication for incoming messages

  1. In Microsoft Management Console, select the SMTP virtual server, and then click Properties on the Action menu.

  2. On the Access tab, under Access control, click Authentication to open the Authentication dialog box.

  3. Select Anonymous access, and then click to clear the remaining check boxes for the other options.

To set clear text authentication for incoming messages

  1. In Microsoft Management Console, select the SMTP virtual server, and then click Properties on the Action menu.

  2. On the Access tab, under Access control, click Authentication to open the Authentication dialog box.

  3. Select Basic authentication.

  4. In Default domain, type a Windows domain name. This default domain differs from the SMTP virtual server default domain.

To use Integrated Windows Authentication to authenticate incoming messages

  1. In Microsoft Management Console, select the SMTP virtual server, and then click Properties on the Action menu.

  2. On the Access tab, under Access control, click Authentication to open the Authentication dialog box.

  3. Select Integrated Windows Authentication.

  • Setting Operator Permissions
  • Configuring Authentication for Outbound Messages