User Athentication
Printed From: LogSat Software
Category: Spam Filter ISP
Forum Name: Spam Filter ISP Support
Forum Description: General support for Spam Filter ISP
URL: https://www.logsat.com/spamfilter/forums/forum_posts.asp?TID=6195
Printed Date: 12 March 2025 at 8:31pm
Topic: User Athentication
Posted By: kspare
Subject: User Athentication
Date Posted: 11 August 2007 at 12:17pm
I have two problems here.
1. Active directory lookups work properly, but we don't use the netbios domainname in our logins, is there anyway we can force this?
2. When we test our servers for outgoing mail, it always comes up that you are not allowed to send mail. What am I missing? I've never figured out how to use this server for an outgoing mail server.
|
Replies:
Posted By: LogSat
Date Posted: 11 August 2007 at 1:38pm
|
With Active
Directory, if the domain is example.com, you should also be able to specify the
user as user@example.com in the
username field.
I'm not sure what you mean by "test our servers for outgoing mail".
If you enable one of the authentication options, SpamFilter will output extra
details in the EHLO response that inform the remote server the types of SMTP
AUTH that are accepted. The remote client can then issue the proper AUTH
commands to provide the account info. For example:
>>EHLO client.netwide.net
<<250-AUTH
LOGIN PLAIN
<<250-8BITMIME
<<250-SIZE
9216000
<<250
HELP
>>AUTH
LOGIN
<<334
VXNlcm5hbWU6
>>bheysgyegSGyeJSus8dQ==
<<334
Ukdy7GtrFxc6
>>U2jUyrt647BcvghdUeDheg=
<<235
welcome netwide.net\robertof
-------------
Roberto Franceschetti
http://www.logsat.com" rel="nofollow - LogSat Software
http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP
|
Posted By: kspare
Date Posted: 11 August 2007 at 6:21pm
We don't want to specify the domain, just the username.
As far as sending outgoing email via spamfilter, spamfilter rejects the email each time. Whats the fix for that?
|
Posted By: LogSat
Date Posted: 12 August 2007 at 12:26am
SpamFilter will need the same credentials a user would be using if logging in Windows on the server running SpamFilter. Unless the server is a domain controller, most likely the user will need to specify the domain name along with the username. There is no option to specify a "default domain" to use if the user omits one.
For the rejection problem, are you first of all able to successfully authenticate the user using the "Test" button in the "User Authentication" tab? If yes, then, in SpamFilter, under the "Debug View" tab under Settings, could you please enable the Debug Monitor? You'll need to enter the client IP of the customer attempting to login in the "IP to monitor" field.
This should show the SMTP transactions that the IP is performing, and could give a clue as to what is happening.
-------------
Roberto Franceschetti
http://www.logsat.com" rel="nofollow - LogSat Software
http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP
|
Posted By: kspare
Date Posted: 12 August 2007 at 1:26am
|
alot of program will allow you to force the domain, for example if our windows domain is "DOMAIN" or domain.local why not have the option to force that everytime? We do utilize exchange for pop3 and windows for outgoing mail, but all our users are setup to use their username only. So I am unable to use this option.
|
Posted By: LogSat
Date Posted: 12 August 2007 at 11:55am
We were already at work yesterday before your last post to add the option for the default domain, as it did make sense :-)
Please see the release note for the latest available build in the reg user area....
// New to VersionNumber = '3.5.4.705';
{TODO -cNew : "Exception occurred during FindMatchInStringList: Invalid pointer operation" errors could cause problems with the reloading of some black / white lists}
{TODO -cNew : Added the logging of the filesize when reloading the black / white list files}
{TODO -cNew : The SURBL blacklist is not being automatically sorted to allow user-defined order}
{TODO -cNew : Added options in [authentication settings] of SpamFilter.ini: ActiveDirectoryAuthAppendDefaultDomain, ActiveDirectoryAuthPrefixDefaultDomain to automatically append or prefix the default domain when authenticating users via SMTP AUTH}
[authentication settings]
;By setting this parameter to 1, SpamFilter will automatically add the Active Directory domain name prefix to the username. For example, if the AD domain is logsat.com, and the username is JohnW, SpamFilter will automatically authenticate the user as logsat.com\JohnW
ActiveDirectoryAuthPrefixDefaultDomain=0
;By setting this parameter to 1, SpamFilter will automatically add the Active Directory domain name suffix to the username. For example, if the AD domain is logsat.com, and the username is JohnW, SpamFilter will automatically authenticate the user as JohnW@logsat.com
ActiveDirectoryAuthAppendDefaultDomain=0
-------------
Roberto Franceschetti
http://www.logsat.com" rel="nofollow - LogSat Software
http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP
|
Posted By: kspare
Date Posted: 13 August 2007 at 12:25am
|
This is why we love you software so much :)
|
Posted By: kspare
Date Posted: 13 August 2007 at 12:41am
|
Roberto that worked perfectly, but when I sent an email through, for example to my hotmail account, it forwards that domain onto my email server instead of sending it to a hotmail mx record?
|
Posted By: LogSat
Date Posted: 13 August 2007 at 7:17am
Correct. SpamFilter will never send emails out directly. All emails will always be forwarded to your destination SMTP server(s), letting them perform the actual delivery.
-------------
Roberto Franceschetti
http://www.logsat.com" rel="nofollow - LogSat Software
http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP
|
Posted By: kspare
Date Posted: 13 August 2007 at 10:08am
Ok so here's option request #2 :)
Can we have a way to tell spamfilter where to route the "outgoing" mail from authenticated users? Generally most mail servers will be setup to only accept mail for the mailbox's on the server, so any email a user sends will be dropped, if we were able to route the smtp authed email or something along those lines, that would make this work perfectly.
|
|