Applies to: Exchange Server 2007 SP3, Exchange Server 2007 SP2, Exchange Server 2007 SP1
Topic Last Modified: 2007-06-18

Use the Security Settings page of the New SMTP Send Connector wizard to specify how the new Send connector authenticates with smart hosts.


Select this option if the smart host is configured to accept anonymous connections.

Basic Authentication

Select this option when the smart host requires Basic authentication. Basic authentication requires that you provide a user name and password. Because the user name and password are sent in clear text when Basic authentication is used, Basic authentication without encryption is not recommended. All smart hosts with which this Send connector is authenticating must accept the same user name and password.

  • Basic Authentication over TLS   Select this option to encrypt the transmission of the Basic authentication user name and password. The smart host must have a server certificate installed. The Send connector only performs Basic authentication after the Transport Layer Security (TLS) session has been established. A client certificate is also required to support TLS with mutual authentication.

  • User name   Enter the user name that is used by the smart host for Basic authentication.

  • Password   Enter the password that is used by the smart host for basic authentication.

Exchange Server Authentication

Select this option to authenticate to a smart host by using an Exchange authentication mechanism, such as TLS direct trust or TLS\Kerberos.

Externally Secured (for example, with IPsec).

Use this option if the connection to the smart host is secured by external means, for example, if it is physically secured over a private network or over Internet Protocol security (IPsec). When you select this option, you make an assertion of external security that cannot be programmatically verified by Microsoft Exchange.

For More Information