Send mail where authentication and from are different addresses
Question asked by Barbara Renowden - 3/1/2016 at 12:20 PM
Hello,  I have a client that has a CRM system "VTiger"  that only allows for one SMTP server setting, however, they want to send from multiple different email accounts. When they do they get an error.
Here is an exert from the logs.   For them it is a hassle to change the smtp settings every-time one of them wants to send an email from the CRM to match their email address.
[2016.03.01] 11:23:31 [][17780962] cmd: EHLO domain.od1.vtiger.com
[2016.03.01] 11:23:31 [][17780962] rsp: 250-mail.centricweb.net Hello []250-SIZE 104857600250-AUTH LOGIN CRAM-MD5250-8BITMIME250 OK
[2016.03.01] 11:23:31 [][17780962] cmd: AUTH LOGIN
[2016.03.01] 11:23:31 [][17780962] rsp: 334 bbbbbbbb
[2016.03.01] 11:23:31 [][17780962] Authenticating as vtiger@domain.com
[2016.03.01] 11:23:31 [][17780962] rsp: 334 xlkdfjadjf
[2016.03.01] 11:23:31 [][17780962] rsp: 235 Authentication successful
[2016.03.01] 11:23:31 [][17780962] Authenticated as vtiger@domain.com
[2016.03.01] 11:23:31 [][17780962] cmd: MAIL FROM:<gbartosz@domain.com>
[2016.03.01] 11:23:31 [][17780962] rsp: 550 From address must match authenticated address
[2016.03.01] 11:23:31 [][17780962] cmd: quit
[2016.03.01] 11:23:31 [][17780962] rsp: 221 Service closing transmission channel
[2016.03.01] 11:23:31 [][17780962] disconnected at 3/1/2016 11:23:31 AM
Is there any way to get around this? 

Barbara Renowden President / Co-Founder Centric Web, Inc. https://www.centricweb.com

2 Replies

Reply to Thread
Scarab Replied


There is a system-wide setting in SmarterMail that can modify this behavior if you are a System Administrator for SmarterMail.

Under SETTINGS > PROTOCOLS > SMTP IN there is a setting called "REQUIRE AUTH MATCH". The highest form of security would be set to "Email Address" which sounds like what you have it currently set to. Changing this setting to "Domain" will allow the address to not match the authenticated address so long as the domain is the same (so authentication as vtiger@domain.com would allow for emails From to be gbartosz@domain.com.) You can also set this setting to "None" but it is highly recommended not to do so as it can open your Mail Server to Abuse.
Barbara Renowden Replied
Thanks for the reply. I did think of that however, that would mean all domains, which is in my opinion still quite risky and we have a very good reputation and do not want to jeopardize it in any way. The client did find a work around for it by having us add an SPF record for VTiger to send mail on their behalf. This seems to have worked for them.

Barbara Renowden President / Co-Founder Centric Web, Inc. https://www.centricweb.com

Reply to Thread