Considerations For Designing Authentication For Smtp

By Author: iris
Total Articles: 286
Comment this article

Consider the following items when designing authentication for SMTP:
Authentication for relaying, sending, and receiving e-mail can be configured free 70-270 test questions. You configure authentication using the SMTP
Access properties page. Configure authentication for mail relay by configuring authentication and then using the relay restrictions configuration. You can either prevent all relay, identify approved computers that can relay, or set the Allow All Computers Which Successfully Authenticate To Relay setting. In the third case, all computers are blocked unless they can meet authentication requirements. You can also configure SMTP to provide the authentication credentials it requires to forward messages to another server that requires authentication.
You can configure authentication requirements for incoming messages by requiring anonymous, basic (clear text),or Windows integrated authentication. Allowing anonymous authentication will encourage spam.
Do this if the SMTP virtual server is used to relay e-mail from your domain to servers under your management how to get MCSA for free ...
... to those at ISPs, and to other servers with which you have relaying arrangements.
Consider securing client basic authentication connections to the SMTP server by requiring TLS. Consider securing relays between authorized servers by requiring TLS.
Existing Environment
No public Web servers are hosted by the organization. There is a perimeter network that provides a location for the Exchange front-end server. Windows Server 2003 is specified as the server platform of choice for new servers. All client computers run Windows XP Professional or will by the year's end. All laptop computers run Windows XP Professional. PKI has been implemented.
The current Web site does not provide any e-mail services. Customer comment forms are filled out from a Web page and posted to the Web site. Contact e-mail addresses are provided, but the Web server is located on the current Tailspin Toys network.
Using RADIUS for authenticated access to Web sites can provide a way to securely manage authentication in situations in which many authorized users must securely access a public Web site.
Always protect basic authentication by encrypting communications between client computers and the Web server. SSL can be used with or without client certificates to protect access from the Internet. IPSec can be used to protect free Microsoft certification exam papers communications from the internal network to the IIS server.