Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page SMTP auth for relay

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 01-21-2009, 03:14 PM
Active Member
  
Posts: 41
Default SMTP auth for relay
I'm running Zimbra 5.0.11 on Ubuntu, Network Edition. I have mobile users who want to use our Zimbra MTA to relay mail to 3rd party destinations using SMTP auth. I believe I have it set up right per the various forum postings:

zimbra@mail:~$ zmprov getServer mail.example.com|grep Auth
zimbraMtaAuthEnabled: TRUE
zimbraMtaAuthHost: mail.example.com
zimbraMtaAuthTarget: TRUE
zimbraMtaAuthURL: https://mail.example.com:443/service/soap/
zimbraMtaTlsAuthOnly: TRUE

When I try to use it though, as soon as I specify the mail recipient I get RENEGOTIATING from the smtp server, and no error. (I typically do this using openssl s_client -connect mail.example.com:465 so I can see the details of the SMTP conversation.)

Here's what I see:

220 mail.example.com ESMTP Postfix
EHLO garyo
250-mail.example.com
250-PIPELINING
250-SIZE 30720000
250-VRFY
250-ETRN
250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
AUTH LOGIN
334 ......
.....
334 .....
.....
235 2.0.0 Authentication successful
MAIL FROM: garyo@somewhere.example.com
250 2.1.0 Ok
RCPT TO: someone@thirdparty.example.com
RENEGOTIATING
depth=3 /L=ValiCert Validation Network/O=ValiCert, Inc./OU=ValiCert Class 2 Policy Validation Authority/CN=http://www.valicert.com//emailAddress=info@valicert.com
verify error:num=19:self signed certificate in certificate chain
verify return:0


This is weird because first, why does it say RENEGOTIATING when I've authenticated properly? And second, why does it say there is a self-signed cert in the chain? That's not true, it's a bog-standard GoDaddy cert.

Any help?

-- Gary
Reply With Quote
  #2 (permalink)  
Old 01-17-2011, 07:18 AM
Junior Member
  
Posts: 6
Default
After a recent Zimbra upgrade from 6.0.9 to 6.0.10, I'm now in the same boat. How did you get this issue resolved?
Reply With Quote
  #3 (permalink)  
Old 01-17-2011, 07:27 AM
Zimbra Consultant & Moderator
  
Posts: 20,312
Default
Quote:
Originally Posted by ProTip View Post
After a recent Zimbra upgrade from 6.0.9 to 6.0.10, I'm now in the same boat. How did you get this issue resolved?
Well, as the o/p has NE and is authenticating mobile users against his server and this thread is two years old olus you're on a different rlease of Zimbra - how is your issue the same?

If your users want to relay through your server then they must use port 587 as the Submission port and that will require authentication. If you still get problems there are threads all over the forums that cover thos topic and you will need to give more information than 'it doesn't work', start with the log files for any errors.
__________________
Regards


Bill
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.