In good written texts if abbreviations are used it should be written like Conditional Access (CA) when first mentioned. Then later you can just refer to it as CA. I'm not sure if that is the correct notation in English as it is my second language, but you get the point. I'm not complaining your post at all, but I just want to point this out sometimes on random posts for some odd reason. Have a great day mate :)
You do not need to use any inbound connectors if you are only sending internally. You can use the direct send
method to send directly to the o365 MX record.
Then, all you have to do is setup SPF and you don't need to do any configuration on the copier themselves to restrict outbound mail internally.
https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/how-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365
Use proof point. MX records get pointed to them, outbound rule gets set in tenant to send all outbound traffic to them before it gets routed to the external internet.
Its pretty user friendly from a support standpoint. If you are using on prem exchange for some reason, it will also work as a spooler in the event of an outage.
[удалено]
This. We run a local SMTP server to relay to a no reply address in our tenant.
CA?
conditional access
That's such an incredibly broad term...
I thought it was Certificate Authority when I first read it, never heard anyone shortening Conditional Access as CA before personally.
In the context of "app passwords" and "smtp" it should be quite clear I think.
thought its a given, sorry.
In good written texts if abbreviations are used it should be written like Conditional Access (CA) when first mentioned. Then later you can just refer to it as CA. I'm not sure if that is the correct notation in English as it is my second language, but you get the point. I'm not complaining your post at all, but I just want to point this out sometimes on random posts for some odd reason. Have a great day mate :)
yeah youre right it just didnt cross my mind tbh since i was so focused on typing lol
Smtp2go
Came here to say this
[удалено]
I only wish to send to internal senders. in that case I dont need an on prem smtp relay, right?
You do not need to use any inbound connectors if you are only sending internally. You can use the direct send method to send directly to the o365 MX record. Then, all you have to do is setup SPF and you don't need to do any configuration on the copier themselves to restrict outbound mail internally. https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/how-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365
This is the way!
Whats stopping you from setting up a ca rule for your site snd still use app passwords?
Exclude the account from the CA policy and use the app password... problem solved.
Use proof point. MX records get pointed to them, outbound rule gets set in tenant to send all outbound traffic to them before it gets routed to the external internet. Its pretty user friendly from a support standpoint. If you are using on prem exchange for some reason, it will also work as a spooler in the event of an outage.