This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 72%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERF%3C/text%3E%3C/svg%3E)
Hi All
I am using exchange 2016 hybrid environment. Our application users are using anonymous relay i.e our application users in their application to trigger emails use the relay m.mydomain.com on port 25. Now i want to come up with authenticated relay. i.e i want to create service accounts for the application users so that they can use it in their application for example. m.mydomain.com on port 587 or smtp.office365.com on port 587.
i have few queries here. i have an AD group for service accounts which is synchronized to Azure AD.
Now if a user uses internal relay m.mydomain.com on port 587, i will create a service account which will be synced to azure AD does this account needs to have a mailbox with license. here the user will just use for authentication. if the user uses smtp.office365.com does a mailbox is required.
if the user needs service account also for receiving the emails then i can create mailbox with exchange license. Does this account needs to have POP3 and IMAP enabled.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 22%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKY%3C/text%3E%3C/svg%3E)
if the user uses smtp.office365.com does a mailbox is required.
Yes. You may need a mailbox with Exchange license assigned to it.
Does this account needs to have POP3 and IMAP enabled.
It isn't necessary but depends on the client you are using.
For example if you are using Outlook, you may use Mapi over Http to access the mailbox.
However, if you are using clients which only support POP3 or IMAP4, you may need to enable it.
(by default it is enabled for all users unless you have security defaults enabled).
In addition, if you would like to enable SMTP relay, you may also need to disable security defaults.
For more detailed information on how to setup SMTP relay, please refer to Option 1 in this link:
How to set up a multifunction device or application to send email using Microsoft 365 or Office 365
If you run into problem with sending emails, please refer to this link for troubleshooting:
Fix issues with printers, scanners, and LOB applications that send email using Microsoft 365 or Office 365
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
if my user wants to use onprem relay m.mydomain.com on port 587 does the service account still require exchange license as we create remote mailboxes. we dont have onprem mailboxes.
Yes.
Since the remote mailboxes are mailboxes hosted by Microsoft 365,you may need to assign Microsoft 365 Exchange licenses to them.
Thanks alot
one last question if i just create a service account without mailbox i.e just create account in onprem AD and use onprem relay i.e m.mydomain.com on port 587 will it work, is mailbox required for onprem relay.
Hi,
Yes. You still need to enable a mailbox for the AD account.
As by default port 587 accepts SMTP submissions from authenticated Exchange users, who have Exchange mailboxes.