Right-Hand Cybersecurity

<a href="#h_e4ea970778">Step-by-step Solution</a>

1. <a href="#h_e4e3b4fc07">Issue</a>
2. <a href="#h_e4ea970778">Step-by-step Solution</a>
3. <a href="#h_d7adab12b3">Reference</a>

The customer faced an error while testing the custom SMTP settings in the RH portal.

First, test the settings using a third-party tool <a href="https://mailmeteor.com/tools/smtp-test" rel="nofollow noopener noreferrer" target="_blank">“SMTP Tester Tool: Free tool to test your SMTP configuration.”</a> Below is the video to show how to verify the SMTP settings in a third-party tool.

If the error persists, follow the solution below.

There are a few things you should check:

Use <a href="https://learn.microsoft.com/en-us/powershell/exchange/connect-to-exchange-online-powershell" rel="nofollow noopener noreferrer" target="_blank">Exchange Online PowerShell</a> to verify that authenticated SMTP submission (also known as SMTP AUTH) is enabled on the licensed mailbox that the application is using to connect to Microsoft 365 or Office 365:

In <a href="https://learn.microsoft.com/en-us/powershell/exchange/connect-to-exchange-online-powershell" rel="nofollow noopener noreferrer" target="_blank">Exchange Online PowerShell</a>, replace &lt;EmailAddress&gt; with the email address and run the following command:

1. Use <a href="https://learn.microsoft.com/en-us/powershell/exchange/connect-to-exchange-online-powershell" rel="nofollow noopener noreferrer" target="_blank">Exchange Online PowerShell</a> to verify that authenticated SMTP submission (also known as SMTP AUTH) is enabled on the licensed mailbox that the application is using to connect to Microsoft 365 or Office 365:
 
 In <a href="https://learn.microsoft.com/en-us/powershell/exchange/connect-to-exchange-online-powershell" rel="nofollow noopener noreferrer" target="_blank">Exchange Online PowerShell</a>, replace &lt;EmailAddress&gt; with the email address and run the following command:
 
 PowerShell

Get-CASMailbox -Identity &lt;EmailAddress&gt; | Format-List SmtpClientAuthenticationDisabled

If the value is True, replace &lt;EmailAddress&gt; with the email address and run the following command to enable it:

Set-CASMailbox -Identity &lt;EmailAddress&gt; -SmtpClientAuthenticationDisabled $false

 2. Disable multifactor authentication (MFA) on the licensed mailbox that's being used:

In the Microsoft 365 admin center, in the left navigation menu, choose Users &gt; Active users.

On the Active users page, choose Multi-Factor Authentication.

On the multi-factor authentication page, select the user and disable the multifactor authentication status.

- In the Microsoft 365 admin center, in the left navigation menu, choose Users &gt; Active users.
- On the Active users page, choose Multi-Factor Authentication.
- On the multi-factor authentication page, select the user and disable the multifactor authentication status.

3. Disable the <a href="https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-security-defaults" rel="nofollow noopener noreferrer" target="_blank">Azure Security Defaults</a> by toggling the Enable Security Defaults to No:

Sign in to the Azure portal as a Security administrator or Conditional Access administrator.

- Browse to Microsoft Entra ID &gt; Properties.
- Select Manage security defaults.
- Set the Enable security defaults toggle to No.
- Select Save.

- Sign in to the Azure portal as a Security administrator or Conditional Access administrator.
 - Browse to Microsoft Entra ID &gt; Properties.
 - Select Manage security defaults.
 - Set the Enable security defaults toggle to No.
 - Select Save.

4. Exclude the user from a <a href="https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/overview" rel="nofollow noopener noreferrer" target="_blank">Conditional Access policy</a> that <a href="https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/block-legacy-authentication" rel="nofollow noopener noreferrer" target="_blank">blocks Legacy Authentication</a>:

- Browse to Microsoft Entra ID &gt; Security &gt; Conditional Access.
- In the policy that blocks Legacy Authentication, exclude the mailbox being used under Users and Groups &gt; Exclude.
- Select Save.

- Sign in to the Azure portal as a Security administrator or Conditional Access administrator.
 - Browse to Microsoft Entra ID &gt; Security &gt; Conditional Access.
 - In the policy that blocks Legacy Authentication, exclude the mailbox being used under Users and Groups &gt; Exclude.
 - Select Save.

<a href="https://learn.microsoft.com/en-us/exchange/troubleshoot/email-delivery/fix-issues-with-printers-scanners-and-lob-applications-that-send-email-using-off" rel="nofollow noopener noreferrer" target="_blank">Fix issues with printers, scanners, and LOB apps that send email using Microsoft 365 - Exchange</a>

Issue: Custom SMTP Error: Authentication Unsuccessful

Release Notes

Developers

Find answers and get help from Intercom Support and Community Experts

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.