This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 68%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Hi all,
Currently we have one particular server that required to sending email using our domain.
I created another receive connector that have only specific scope for allowed send email from external.
What i have done, i created the TlsCertificateName under the receive connector and set the port 587.
as the Authentication i set enable TLS, Basic Authentication, Exchange Authentication
and the permission group i set at Exchange Servers, Legacy Exchange Servers, and Exchange Users
Here's when we tried to communicate via STARTTLS
220 XX**** Microsoft ESMTP MAIL Service ready at Wed, 14 Jun 2023 08:51:54 +0700
EHLO XX****
250-XX**** Hello [XXX.XXX.XXX.XXX]
250-SIZE 37748736
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH LOGIN
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-SMTPUTF8
250 XRDST
STARTTLS
220 2.0.0 SMTP server ready
EHLO XX****
Connection closed by foreign host.
Is there anything that i should fix to make the configuration work for sending email from our external server ?
Thanks
A robust email, calendaring, and collaboration platform developed by Microsoft, designed for enterprise-level communication and data management.Miscellaneous topics that do not fit into specific categories.
The administration and maintenance of Microsoft Exchange Server to ensure secure, reliable, and efficient email and collaboration services across an organization.
A powerful email and collaboration platform developed by Microsoft, designed to support enterprise-level communication and productivity. Miscellaneous topics that do not fit into specific categories.
Answer accepted by question author
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 22%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKY%3C/text%3E%3C/svg%3E)
After STARTTLS you got the response 220 2.0.0 SMTP server ready, which means Exchange is waiting for your server to establish the TLS negotiation.
Please refer to rfc3207.
After receiving a 220 response to a STARTTLS command, the client MUST start the TLS negotiation before giving any other SMTP commands.
While since you are seeing the AUTH LOGIN option, I suppose you do not have "Offer basic authentication only after starting TLS" checked.
If you would like to authenticate without TLS, you can also use AUTH LOGIN then input credentials encoded with base64.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi Kael,
Thank you for your response. I just got the command that i need to running the negotiate of TLS.
And the issue already resolved.
Cheers,
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 49%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAH%3C/text%3E%3C/svg%3E)
Hi i have the same problem ,can i ask which command help you in the end ?