Transport Service: Basic authentication

Home

Kaiming

Network Layout: 3 forests

Transport1

Basic Authentication –Cross Forest

Win20081.work.com:

DNS

transport2

Win20082.canoe.com

DNS
transport3

Win20081.work.com

Create a user cross@work.com;
Add cross@work.com to Exchange Servers universal group;

$credential=Get-Credential

transport7

Set-TransportConfig -TLSSendDomainSecureList 0.0
Set-TransportConfig -TLSReceiveDomainSecureList 0.0

Get-SendConnector To-canoe.com | Remove-SendConnector
Get-ReceiveConnector From-canoe.com | Remove-ReceiveConnector

New-SendConnector -Name "To-canoe.com" -Usage Internal -AddressSpaces canoe.com -SmartHosts win20082.canoe.Com -Port 26 -SmartHostAuthMechanism BasicAuth -AuthenticationCredential $credential -SourceTransportServers win20081.work.com -DNSRoutingEnabled $False

New-ReceiveConnector -Name "From-Canoe.com" -Server Win20081 -PermissionGroups AnonymousUsers -RemoteIPRanges 191.121.111.200 -AuthMechanism BasicAuth -Bindings 0.0.0.0:26

$ExScripts\Enable-CrossForestConnector.ps1 -Connector "To-Canoe.com" -user "ANONYMOUS LOGON"

Win20082.canoe.com

Create a user cross@work.com;
Add cross@work.com to Exchange Servers universal group;

$credential=Get-Credential

transport8

Set-TransportConfig -TLSSendDomainSecureList 0.0
Set-TransportConfig -TLSReceiveDomainSecureList 0.0

Get-SendConnector To-work.com | Remove-SendConnector
Get-ReceiveConnector From-work.com | Remove-ReceiveConnector

New-SendConnector -Name "To-work.com" -Usage Internal -AddressSpaces work.com -SmartHosts win20081.work.Com -Port 26 -SmartHostAuthMechanism BasicAuth -AuthenticationCredential $credential -SourceTransportServers win20082.canoe.com -DNSRoutingEnabled $False

New-ReceiveConnector -Name "From-work.com" -Server Win20082 -PermissionGroups AnonymousUsers -RemoteIPRanges 191.121.0.200 -AuthMechanism BasicAuth -Bindings 0.0.0.0:26

$ExScripts\Enable-CrossForestConnector.ps1 -Connector "To-work.com" -user "ANONYMOUS LOGON"

Test

Win20082.canoe.com

test-mailflow -TargetEmailAddress Robin.Williams@work.com

TestMailflowResult         MessageLatencyTime                      IsRemoteTest
------------------         ------------------                      ------------
Success                    00:00:01.6093750                                True

Win20081.work.com

test-mailflow -TargetEmailAddress cTom@canoe.com

TestMailflowResult         MessageLatencyTime                      IsRemoteTest
------------------         ------------------                      ------------
Success                    00:00:03.9843750                                True

Basic Authentication—TLS –Cross Forest

Refer the TLS for binding a certificate to the Transport service.

Do the following after completing the Basic Authentication-cross forest

Win20081.work.com

Set-ReceiveConnector From-Canoe.com -AuthMechanism TLS,BasicAuth, BasicAuthRequireTLS -RequireTLS $True

Set-SendConnector To-Canoe.com -SmartHostAuthMechanism BasicAuthRequireTLS

Win20082.canoe.com

Set-ReceiveConnector From-work.com -AuthMechanism TLS,BasicAuth, BasicAuthRequireTLS -RequireTLS $True

Set-SendConnector To-work.com -SmartHostAuthMechanism BasicAuthRequireTLS

test-mailflow -TargetEmailAddress robin.williams@work.com

success

From win20082.work.com

Received: from WIN20082.canoe.com (191.121.111.200) by Win20081.work.com
(191.121.0.200) with Microsoft SMTP Server (TLS) id 8.1.240.5; Sat, 20 Dec
2008 08:32:33 -0800
Received: from WIN20082.canoe.com ([fe80::1c59:6d45:b9a8:246b]) by
WIN20082.canoe.com ([fe80::1c59:6d45:b9a8:246b%10]) with mapi; Sat, 20 Dec
2008 08:32:32 -0800
Content-Type: multipart/mixed;
boundary="_000_F84A637F1F64AF4CB9680A542E67AADA055A6C5346WIN20082canoe_"
From: SystemMailbox{DD02EB11-ABEA-44B7-8B9B-8A7DE8AFE975}
<SystemMailbox{DD02EB11-ABEA-44B7-8B9B-8A7DE8AFE975}@canoe.com>
To: SystemMailbox{DD02EB11-ABEA-44B7-8B9B-8A7DE8AFE975}
<robin.williams@work.com>
Date: Sat, 20 Dec 2008 08:32:31 -0800
Subject: Test-Mailflow 773f4375-b596-4d98-a4dd-4e0dc81353a8
66c7004a-6860-44b2-983a-327aa3c9cfec
Thread-Topic: Test-Mailflow 773f4375-b596-4d98-a4dd-4e0dc81353a8
66c7004a-6860-44b2-983a-327aa3c9cfec
Thread-Index: AcliwI44HZCsCUp1TR6Z+BtftnTUHA==
Message-ID: <F84A637F1F64AF4CB9680A542E67AADA055A6C5346@WIN20082.canoe.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-Exchange-Organization-SCL: -1
X-MS-TNEF-Correlator: <F84A637F1F64AF4CB9680A542E67AADA055A6C5346@WIN20082.canoe.com>
acceptlanguage: en-US
MIME-Version: 1.0
Return-Path: SystemMailbox{DD02EB11-ABEA-44B7-8B9B-8A7DE8AFE975}@canoe.com

Home