+1 vote

Hello All, it is possible to configure SMTP mail setting using Exchange Online with modern authentication and Azure security defaults enabled? Currently I have setup local IIS SMTP relay connected to O365 without security defaults but I would like to connect to my more secured tenant.

Regards Ivaylo

by (100 points)
0

Any update on this , as Microsoft deprecated SMTP basic auth on Office 365 , this would really make mailing more secure

0

Hello,

That is not correct. According to Microsoft, basic authentication is not disabled for SMTP. For details, see https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online. However, we keep checking for possible approaches to apply modern authentication for email delivery.

0

Yes SMTP Auth is indeed deprecated. It would be great to make it work via Graph API

0

Hello Roeland,

Unfortunately, there is currently no possibility to use an Azure AD application with Graph API to send emails. Once Microsoft release an update making this available, we will definitely add corresponding changes to Adaxes. As of now, you can keep using Adaxes to send emails as you did before the deprecation of basic authentication for Exchange Online. It is still working fine and you can see the corresponding statements in the article referenced in the above comment.

1 Answer

0 votes
by (292k points)

Hello Ivaylo,

Unfortunately, there is no such possibility. However, we are considering the feature for future releases of Adaxes.

0

Due to the issue with SMTP OAuth 2.0 client credential flow in 365, developers can also send email using Microsoft Graph utilising the Mail.Send Application permission and this endpoint: https://graph.microsoft.com/v1.0/users/[email]/sendMail https://learn.microsoft.com/en-us/graph/api/user-sendmail?view=graph-rest-1.0&tabs=http

For best results, send in MIME format.

Unfortunately, this does mean giving the Adaxes Azure App the Mail.Send Application permission which allows it to impersonate anyone.

Related questions

0 votes
1 answer

Pretty easy to replicate. On the Adaxes server, you can use Powershell to send to that SMTP server so we know it's not a firewall issue: $myCredential = Get- ... packet capture shows the Adaxes server doesn't issue either an EHLO or a STARTTLS command.

asked Jun 28 by ngb (290 points)
0 votes
0 answers

This issue affects only Adaxes versions that use the Exchange Online Management (EXO v3) PowerShell module: Adaxes 2023.2 - all versions Adaxes 2023 - starting from version 3.15. ... . For more details, see how to Register Adaxes as an app in Microsoft Azure.

asked Jun 23, 2023 by Adaxes (560 points)
0 votes
0 answers

ADAXES version is 3.13.18106.0 trying to set up "outgoing email server" for email notification. We are using google smtp-relay which require "SSL" After setting it ... their own credentials, such as the internet information server, are not affected by this."

asked May 20, 2021 by justinh (60 points)
0 votes
1 answer

I am trying to view AD authentication logs to see a user account's authentication attempts. Can this be done in Adaxes?

asked Dec 30, 2021 by Tfarmer (160 points)
0 votes
1 answer

We have a fleet of Macbooks that use NoMAD to handle AD Authentiction and syncronization. How can we use Adaxes to handle the Password reset utility with these users. If they ... resync will be needed. Anybody else doing this or have a solution to the above?

asked May 13, 2020 by jcalvert (60 points)
3,564 questions
3,255 answers
8,264 comments
547,915 users