[mail function]

SMTP = smartermail.yourdomain.com (whatever the FQDN of your SmarterMail server is)
smtp_port = 587
username = "panel@yourdomain.com"
password = "Pa$$w0rd"
sendmail_from = panel@yourdomain.com
;mail.force_extra_parameters =
mail.add_x_header = On
mail.log = "D:\Logs\php_mail.log"

 

Just make sure that the Username & Password you set are a valid user in your SmarterMail configuration.

 

From a security standpoint, since it is trivial for PHP Contact Forms to be compromised or for PHP scripts to be uploaded to directories with IUSR Write access (such as WordPress /content/uploads directories) what I personally do for our Web Servers is in the primary PHP.INI I set a Username/Password/SendMail_From that is on my SMTP Blocked Senders list in SmarterMail so that by default PHP Mail cannot be sent out through SmarterMail unless tenets are using SMTP Authentication in their PHP applications. For those that can't use SMTP Authentication, then in each of those tenet's wwwroot directories I have a USER.INI that has the unique Username/Password/SendMail_From for that site. That way, if one site is compromised it is easily identifiable which one it is, should be throttled/rate-limited by SmarterMail, and it doesn't affect the reputation of all other hosted domains.