If you just configure an EDGE server as a SMTP gateway device without a E2k7 HUB
server & relay mail to & from Ti servers anonymously with default config , the SCL
of the message determined & other relevant infor would not reach the Ti servers & hence lost:
Method 1 : Using an account for Auth & Passing Exch50 information
=============================================================
-- Create a Domain account for Edge ( required for Authentication ) on the
Exchange 2003 side & add it to "Exchange Domain servers" Group .
-- Configure a Send connector on Edge to the respective E2k3 Server with
SmartHostMechanism = Basic Authentication & used the domain account created in
Step 1 for the Credentials
-- Add the permission { ms-Exch-SMTP-Send-Exch50 ) on the NT AUTHORITY \ ANONYMOUS
LOGON on the respective send connector.
for e.g. . if the Send connector is named as " To E2k3 " , the command to add
the permission would be
-- Add-adpermission "To E2k3" -user:"NT AUTHORITY \ ANONYMOUS LOGON"
-AccessRights:extendedright -Extendedright:ms-Exch-SMTP-Send-Exch50
-- Now SCL would be sent to E2k3 box using the X-EXCH50 verb , after successful
authentication occurs , this can be verified by Protocol logs , Netmon etc & also
Exposing the SCL values in MS
Outlook at the recepient end.
Method 2: Turn off Requireauth for XEXCH50 on Exchange 2003
============================================================
-- Configure a Send connector on Edge to the respective E2k3 Server with
SmartHostMechanism = ExternalAuthoritative .
-- On the Exchange 2003 server , we need to disable the authentication requirement
to Propogate XEXCH50 . so set
HKLM\SYSTEM\CurrentControlSet\Services\SMTPSVC\XEXCH50\ Exch50AuthCheckEnabled = 0
No comments:
Post a Comment