SYSTEM ADMIN BOOK
  • Hardware/Physical Machines
    • Physical Networking
      • Patch Panel
    • Hardware Devices
    • PC Build
    • RAID Configs
  • System Configuration
    • Windows
      • OneDrive for Business, Map as Network Drive in Windows
      • PDF Printer
      • Reset Windows Password
    • Linux
    • Mac
      • Factory Reset Mac Mini
      • Install FortiClient VPN
      • Remove FortiClient VPN for Macs
      • Setting Microsoft Teams Notifications in MacOS
      • Download and Install Whatsapp
  • Windows Server
    • Troubleshooting
      • 100% Disk Usage Issue
      • Maximum Path Length Limitation
    • Basic Configurations
      • Change Hostname
      • Change Default RDP Port
      • Create a User
      • Add user to Administrator group
      • Add user to Remote Desktop Users group
      • Allow log on locally - security policy setting
      • Allow Multiple Remote Desktop Connections
      • Enable Insure Guest Authentication
      • Shrink Partition
      • Extend Partition
    • FTP Server
      • Install FTP Server (IIS)
      • Create User Group
      • Add FTP Site (IIS)
      • User Isolation
      • Allow Firewall
      • FTP Client (FileZilla)
      • FTP Server (FileZilla)
      • Configure Passive Mode in FileZilla Server
      • Configuring Windows Firewall for FileZilla Server
      • FileZilla: Password reset
      • Generate a New Self-Signed Certificate
    • Group Policy
      • Block Access to the Control Panel for All Users
      • Create a Logon Banner (Legal Notice)
      • Enable / Disable Copy-Paste Policy
      • Disable Shutdown, Restart Options
      • Disable Multiple Session for Single User
      • Disable Automatic Lock Screen in Windows Server
    • Services
      • NSSM - the Non-Sucking Service Manager
      • Node-windows Library
    • Task Scheduler
      • Automate Program Execution
      • Restart Windows Server Daily
    • Auditing and Diagnostincs
      • Enabling the System Event Audit Log
      • Audit RDP Port Change Event
      • Check the read/write speed of your hard drive
      • Clear temp file and .trc file
    • Event Viewer
      • Restart / Shutdown Event
    • Active Directory
  • Control Panels
    • Plesk
      • Set Hard Quota on disk space for subscription(s)
      • Changing MX, A, and CNAME Records
      • Host Node.js Application
      • Add FTP account
      • Remove FTP account
      • Download a folder using Plesk File Manager
      • Install WordPress on domain using WP Toolkit
      • Change the name of a Subscription system user
      • Exporting and Importing Database Dumps
    • OVI Panel
      • DNS Zone Editor
    • SolidCP
      • Add a MS SQL database in SolidCP
    • cPanel
  • Virtualization
    • Proxmox VE
      • Introduction
      • Download Proxmox ISO
      • Prepare Installation Media
      • Launch Proxmox Installer
      • Create a VM
  • Web Servers
    • IIS
      • Install IIS
      • Configure Default Site
      • Application Pool
      • Installing PHP
      • Deploy a PHP Application
      • Deploying a Laravel app on Windows using IIS
      • Update PHP Version in IIS
      • Host a Node.js /w Next.js Application
    • JBoss
  • VPNs and Proxy Servers
    • Reverse Proxy
      • IIS - Node.js Application
  • Database Servers
    • MS SQL
      • Download and Install
      • Install SSMS
      • Uninstall an Instance of SQL Server
      • Enable SA Account
      • Change SA Account Password
      • Enable Network Access to SQL Express
      • Create and configure a user in MSSQL
      • Clear SQL Server Cache
      • Setting Infinite Timeout in SQL Server Contexts
      • Take SQL Server Database Offline
      • Memory configuration
    • MySQL
      • Install and Configure MySQL
  • Web Dev Stacks
    • MERN (w/ Next)
      • Build and Run Node.js Project with Next.js
  • IT Ticketing Systems
    • Jira Ticketing System
  • Linux Servers
  • AWS Environment
  • Azure Environment
  • Backup and Security
    • SSL Certificates
      • Types of SSL Certificates
      • IIS 10: Create CSR and Install SSL Certificate
      • IIS 7: Generate CSR for Wildcard SSL
      • IIS: Generate CSR for Multi-Domain SSL
      • OpenSSL: Generate CSR
      • IIS 10: How to Install and Configure Your SSL Certificate on Windows Server
      • IIS: Export Pfx using MMC
      • IIS: Import Pfx using MMC
      • IIS: Export Pfx using IIS Manager
      • IIS: Import Pfx using IIS Manager
      • cPanel: Export PFX
      • Godaddy-CPanel: Generate a CSR
      • Godaddy-CPanel: Install SSL Certificate
      • cPanel: Generate CSR
      • cPanel: Install SSL Certificate
      • cPanel: Install Let's Encrypt SSL
      • Plesk: Generate CSR
      • Plesk: Let's Encrypt SSL Installation
      • Plesk: Installing the SSL certificate
      • Plesk: Export Public & Private Key
      • Win-ACME Let's Encrypt SSL
      • Certbot - Install SSL
      • Export Leaf, Root, and Intermediate Files
      • XAMPP - Let's Encrypt SSL Installation
      • JBoss Web Server: CSR Generation
      • JBoss: Install SSL Certificate
    • Backup
      • Database
        • MS SQL DB Backup
        • MS SQL Restore Backup
    • Microsoft Defender for Endpoint
      • Introduction & Licenses
    • Microsoft Intune - Endpoint Management
      • Product Introduction
      • Intune Policies for MacOS
      • Enroll your macOS device using the Company Portal app
    • Vulnerability Scanning
      • OpenVAS Quick Guide
      • Nessus Quick Guide
    • Acronis
      • Download and Install the Acronis Cyber Protection Agent
      • Performing a file-level backup
      • Creating a disk-level backup
      • Performing a file-level recovery
      • Enabling Active Protection and Vulnerability Assessment
  • Email and Office 365
    • Troubleshooting
      • Run a message trace in the Exchange admin center
      • Not receiving email
      • Office 365 Apps Activation Error
      • Gmail Issue: Clearing Cache and Cookies
      • Excel worksheet, right click insert not functioning
      • Microsoft 365 Apps activation error: “Your organization has disabled this device”
    • Hybrid Mail Setup
      • Set Up Connectors Between Microsoft 365 and SmarterMail
    • Email Authentication
      • Protocols
    • Mail Clients
      • Outlook
        • Maximum number of Exchange accounts in an Outlook profile
        • Enable automatic forwarding in new Outlook
        • Add Email Signature
        • Create Email Singature
        • Gmail Account Login in Outlook
        • Enable desktop notifications for Outlook on the Web (OWA) in Windows
        • Move Mails to Specific Folders
      • Apple Mail
        • Add email accounts in Mail on Mac
        • Add Mail Signatures
      • Gmail
        • Mail Forwarding to Another Account
        • Set Up an Auto-Reply (Vacation Responder) in Gmail
    • Office 365
      • Intro & Subscriptions
      • How to Create a Trial Account
      • How to Access the Office 365 Admin Center
      • Creating a Tenant
      • Create Users
      • Add several users at the same time to Microsoft 365
      • Creating & Managing Roles
      • Add a Domain
      • Manage MFA
      • Let users reset their own passwords
      • Assign Global Admin Roles
      • Create APP Password
      • Change a user name and email address
      • Reset MFA for Microsoft 365 User
      • Configure email forwarding
      • Add email aliases to a user
      • Change Username or Email Address
      • Export Mailbox to PST From Office 365
      • Import PST to Exchange Online (Microsoft O365)
      • Enable archive mailboxes for Microsoft 365
      • Grant Export Permission in M365 Compliance Center
      • Generate Transfer Token
    • Google Workspace
      • Intro & Plans
      • Create your Google Workspace trial account
      • Review your DNS records
      • Adding Users
      • Create organizational units
      • Restrict access to a Google Workspace service
      • Edit user attributes
      • Manage user accounts
      • Suspend a User
      • Generate a Transfer Token
      • Reduce Licenses in Google Workspace
      • Auto-forward From Google Workspace Using Routing
      • Recovering administrator access to your account
    • MailEnable
    • SmarterMail
      • SmarterMail Installation
      • SmarterMail Server Setup
      • Installation and Configuration (Practical)
      • Enable / Disable Domain in SmarterMail
      • Enable / Disable MFA for User Accounts
      • Create an Administrator User in SmarterMail
    • Microsoft Teams
      • Guest Access vs. External Access
      • Adding Guests To Microsoft Teams Team
      • Teams Chat DIfferent Domain: Enable External Access
      • Setup Teams Time Zone and Work Hours
      • Add Contact Numbers in Profile Page
    • Microsoft Defender for Office 365
      • Remove blocked users from the Restricted entities page
    • Microsoft Purview
      • Create a Retention Policy for Archiving in M365
  • DevOps
  • Firewalls and Access Points
    • Windows Firewall
      • Allow Ports on Windows Firewall
    • Sophos Firewall
      • Set up a new firewall with Sophos Central
      • Enable Sophos Central management of Sophos Firewall
  • Networking
    • Troubleshooting
    • Cisco Router Config
    • Cisco Switch Config
      • Basic Data and Voice VLAN Setup Homelab
  • Migration
    • Drive Migration
      • Google Drive to One Drive
      • One Drive to One Drive [SharePoint Migration Tool]
      • Migrate Google files to Microsoft 365 for business
    • Mail Migration
      • Google Workspace to Office 365 (Manual Method)
      • Google Workspace to Office 365 (Automatic Method)
      • IMAP to Office 365
      • Migration Using PST File Method
      • Office 365 to Google Workspace Migration
      • G-Suite to G-Suite Migration
    • VM Migration
    • Website Migration
      • Migrating IIS Sites Using Web Deploy
      • Plesk to Plesk Migration
    • Database Migration
  • Monitoring
    • Prometheus
      • Monitoring Windows Servers Using Prometheus
    • Grafana
      • Visualize Data in Grafana
    • Loki
  • Data Center
    • HPE ProLiant ILO Configuration
  • Other Technologies
    • Some R&Ds
      • Active vs. Passive Mode in FTP
      • IIS Recycling and Virtual Memory Limit
      • IIS Application Pool
Powered by GitBook
On this page
  • 💡 Objective
  • 🧰 Prerequisites
  • 🔧 Step-by-Step Setup
  • 1. Configure Connectors in Microsoft 365
  • Create Connector #1: From SmarterMail to Microsoft 365
  • Create Connector #2: From Microsoft 365 to SmarterMail
  • 2. Configure SmarterMail Domain Settings
  • Key Settings:
  • 📡 MX Record Setup
  • 🔄 How It Works:
  • ⚠️ Things to Watch Out For
  • ✅ Final Checks
  • 🧠 Bonus Tip
  • REFERENCES

Was this helpful?

  1. Email and Office 365
  2. Hybrid Mail Setup

Set Up Connectors Between Microsoft 365 and SmarterMail

Note: This setup is functional but skipping TLS can be risky and should only be used in trusted and controlled environments. Proceed with caution.

💡 Objective

To establish a working email flow between Microsoft 365 (M365) and SmarterMail without enforcing TLS, and ensure email delivery works both ways: from SmarterMail to M365 and vice versa.

🧰 Prerequisites

  • Access to Microsoft 365 Admin Center (Exchange Admin Console)

  • Access to SmarterMail Admin interface

  • Admin credentials for both platforms

  • MX Record should point to Microsoft 365

🔧 Step-by-Step Setup

1. Configure Connectors in Microsoft 365

Navigate to: Microsoft 365 Admin Center → Exchange Admin Center → Mail Flow → Connectors

Create Connector #1: From SmarterMail to Microsoft 365

  • From: Partner organization

  • To: Microsoft 365

  • Name: SmarterMail to M365

  • Connection security: Ignore TLS (for this case)

  • IP authentication: Add the public IP of your SmarterMail server (e.g., xxx.xxx.xxx.xxx)

  • Validation: Add test sender domain/email for verification

Create Connector #2: From Microsoft 365 to SmarterMail

  • From: Microsoft 365

  • To: Partner organization

  • Name: M365 to SmarterMail

  • Connection security: Ignore TLS

  • Route email using: Fully qualified domain name (FQDN) or IP address of SmarterMail (e.g., mail.customdomain.com or xxx.xxx.xxx.xxx)

🔐 Tip: Disabling TLS may cause Microsoft to throw warnings. You can still save the connector by confirming it’s a trusted route.

2. Configure SmarterMail Domain Settings

Login to your SmarterMail admin panel and go to: Manage → Domains → [YourDomain] → Email Settings

Key Settings:

  • Inbound Message Delivery: Set to External (use MX record)

  • Deliver locally if user exists: ✅ Enabled

  • Enable Greylisting: Optional but good for spam filtering

  • Sender Verification Shield: Optional for spoof protection

This ensures SmarterMail only delivers emails for local users and all other mail routes based on the domain’s MX record (which points to M365).

📡 MX Record Setup

  • MX Record of your domain should already point to Microsoft 365. That means all incoming email will hit Microsoft first.

  • SmarterMail acts as a relay or internal sender in this scenario.

🔄 How It Works:

Direction Flow Path Connector Used Outbound (SmarterMail → M365) SmarterMail → M365 → External SmarterMail to M365 Inbound (External → M365 → SmarterMail) External → M365 → SmarterMail (local users) M365 to SmarterMail

⚠️ Things to Watch Out For

  • Skipping TLS: This is okay for internal/testing environments, but not recommended for production unless behind VPN or trusted firewall.

  • IP Addressing: Ensure the IP you whitelist is static and properly configured.

  • Smart Host Trust: Without TLS, spoofing risk increases. Trust only static, known IPs.

  • Looping Risk: Avoid loop configs by using “Deliver locally if user exists” toggle correctly.

✅ Final Checks

  • Test sending from SmarterMail to a Microsoft 365-hosted user

  • Test replies from M365 to SmarterMail

  • Monitor headers to ensure correct flow and no TLS errors

🧠 Bonus Tip

If Microsoft 365 blocks or flags your connector, try the following:

  • Set the connector to accept mail only from specific IPs

  • Re-validate the connector using the verification option

  • Temporarily enable TLS for validation, then disable again

REFERENCES

  • https://medium.com/@kumarnirbhay041/how-to-set-up-connectors-between-microsoft-365-and-smartermail-1cc9df6a0403

  • https://support.duocircle.com/support/solutions/articles/5000875472-outbound-routing-from-office-365-to-smarthost

  • https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/use-connectors-to-configure-mail-flow/set-up-connectors-to-route-mail

PreviousHybrid Mail SetupNextEmail Authentication

Last updated 11 days ago

Was this helpful?