Back to Community Threads
upgrade 9511 issue with checkup
Problem reported by Michael Luer - 1/19/2026 at 2:21 PM
Resolved
After 9511 upgrade I get this on the diagnostic checkup page:

Access to webmail.XXXXXXXX.com was denied
You don't have authorization to view this page.
HTTP ERROR 403


So far no other issues I have seen.   Do we have to fix this or will it be updated ?
Tim Uzzanti Replied
1/19/2026 at 4:28 PM
Employee Post Marked As Resolution
The Checkup page is being enhanced with additional information and will now be internal, requiring a system administrator login.

As mentioned in some of our previous emails, we currently have many security companies thoroughly dissecting SmarterMail. This page was flagged in some instances because it exposes server health and version information, which could potentially be used in an attack.

This is unfortunate, because this page was heavily used by our support team to quickly understand a customer’s environment before responding. It allowed us to provide more detailed first responses, especially when a customer had not yet provided a license key for lookup.

For most customers, this change will not be an issue, as they were typically viewing this page while being authenticated anyway.

However, for those who were using this page in conjunction with a monitoring service and performing web or text lookups to check server health, this will no longer be available. Ironically, this is the very scenario we are trying to block in order to satisfy these vulnerability scans.

For our own SmarterMail server monitoring, we use a third-party tools that check standard protocols such as IMAP, EAS, and HTTP, and performs simple command and login page checks etc.  

This is the direction we are moving forward, and we believe you will like the improvements we will be adding to the new Checkup page now that it will require authentication.  
Tim Uzzanti
CEO
SmarterTools Inc.
J
J. LaDow Replied
1/19/2026 at 4:40 PM
It's not like there couldn't be an API endpoint added that outputs the JSON responses for those who need automation - the API is at least authenticated -- 
MailEnable survivor / convert --
Tim Uzzanti Replied
1/19/2026 at 5:12 PM
Employee Post

Agreed, and something we will get to in the future.  At the moment, we’re focused on anything security-related, and because we need to change the Checkup page, we’re adding more info to make it more useful for you and for our support team to see more granular things now that it’s protected.  
Tim Uzzanti
CEO
SmarterTools Inc.
Michael Luer Replied
1/19/2026 at 10:27 PM
I log in as admin to smartermail.  You mean windows admin?
C
Chris Dickens Replied
1/20/2026 at 10:57 AM
Tim - You might consider the updated security model to require source connection to match what is allowed for the "Restricted login access by IP" option under the Primary Administrator's profile page after setup is completed. During initial setup it could be a simple hard-coded whitelist for your support staff and the local network's subnet for assistance during the initial setup phase?  This would allow for hand holding during the literal hours of initial install, but then be locked down to any source that would be later trusted as an admin.

Just a bit of brain-storming on this.
K
Knud Nexo Replied
1/20/2026 at 5:44 PM
Hey guys I just came across this issue too.
I'm logged in to SmarterMail 9511 as System Admin but I get the same 
"You don't have authorisation to view this page.
HTTP ERROR 403"
How do I view the page? 

EDIT: Found it need to be on the same network
e.g. localhost:9998/About/checkup
Back to Community Threads

Reply to Thread

Enter the verification text
Related Knowledge Base Articles
Upgrading SmarterMail (Domain Conversion)SmarterMail > Installation and Configuration
SmarterTools Licensing InformationGeneral Topics
"Could not load file or assembly" when installing or upgrading SmarterMailSmarterMail > Installation and Configuration
Integrating Existing SSL Certificates With SmarterMail Automated SSL CertificatesSmarterMail > Server Configuration and Management
Plesk, ModSecurity and SmarterToolsGeneral Topics