After you enable and configure POP3 or IMAP4 on an Exchange server as described in Enable and configure POP3 on an Exchange server and Enable and configure IMAP4 on an Exchange server, you need to configure the authenticated SMTP settings for POP3 and IMAP4 clients so they can send email messages.
The default Receive connector named 'Client Frontend <Server name>' in the Client Access services on the Mailbox server listens for authenticated SMTP client submissions on port 587. By default, this connector uses the following settings for internal and external client (authenticated) SMTP connections:
SMTP server:
<ServerFQDN>
. For example,mailbox01.contoso.com
.TCP port: 587
Encryption method: TLS. Note that this is opportunistic TLS (STARTTLS) that results in an encrypted connection after the initial plain text protocol handshake.
For more information, see Default Receive connectors created during setup and Client access protocol architecture.
Office 365 SMTP Settings. Let’s first start with the most asked and simple to answer the question, what are the Office 365 Exchange Server settings? The settings below should in basic work for everyone with an Office 365 or Microsoft 365 plan that has Exchange Online. SMTP Server address: smtp.office365.com; SMTP Port number: 587 (with TLS). POP, IMAP, and SMTP settings for Outlook.com If you're trying to add your Outlook.com account to another mail app, you might need the POP, IMAP, or SMTP settings for Outlook.com. You can find them below or by going to POP and IMAP settings in Outlook.com.
To configure the authenticated SMTP settings that are used by POP3 and IMAP4 clients, perform the following steps:
Configure the FQDN on the 'Client Frontend <Server name>' Receive connector.
Specify the certificate that's used to encrypt authenticated SMTP client connections.
Configure Outlook on the web (formerly known as Outlook Web App) to display the SMTP settings for authenticated SMTP clients at Settings > Options > Mail > Accounts > POP and IMAP.
For more information about POP3 and IMAP4, see POP3 and IMAP4 in Exchange Server.
What do you need to know before you begin?
Estimated time to complete: 5 minutes.
Secure Sockets Layer (SSL) is being replaced by Transport Layer Security (TLS) as the protocol that's used to encrypt data sent between computer systems. They're so closely related that the terms 'SSL' and 'TLS' (without versions) are often used interchangeably. Because of this similarity, references to 'SSL' in Exchange topics, the Exchange admin center, and the Exchange Management Shell have often been used to encompass both the SSL and TLS protocols. Typically, 'SSL' refers to the actual SSL protocol only when a version is also provided (for example, SSL 3.0). To find out why you should disable the SSL protocol and switch to TLS, check out Protecting you against the SSL 3.0 vulnerability.
If you have POP3 or IMAP4 clients that can only send SMTP email on port 25, you can configure port 25 on the 'Client Frontend <Server name>' Receive connector to allow clients to send authenticated SMTP email. However, because port 25 is also configured on the 'Client Frontend <Server name>' Receive connector for email from external SMTP servers, you'll need to modify the local IP addresses that are used to listen on port 25 on one or both of the connectors. For more information, see Receive connector local address bindings.
You need to be assigned permissions before you can perform this procedure or procedures. To see what permissions you need, see the 'Receive connectors' entry in the Mail flow permissions topic.
For information about keyboard shortcuts that may apply to the procedures in this topic, see Keyboard shortcuts in the Exchange admin center.
Microsoft Smtp Server Settings Port
Tip
Having problems? Ask for help in the Exchange forums. Visit the forums at: Exchange Server, Exchange Online, or Exchange Online Protection.
Step 1: Configure the FQDN on the 'Client Frontend <Server name>' Receive connector
You can skip this step if you want to keep the default server FQDN value (for example, mailbox01.contoso.com). Or, you can specify an FQDN value that's more compatible with your Internet naming convention or a TLS certificate that you want to use.
If you change the FQDN value, and you want internal POP3 or IMAP4 clients to use this connector to send email, the new FQDN needs to have a corresponding record in your internal DNS.
Regardless of the FQDN value, if you want external POP3 or IMAP4 clients to use this connector to send email, the FQDN needs to have a corresponding record in your public DNS, and the TCP port (587) needs to be allowed through your firewall to the Exchange server.
Use the EAC to configure the FQDN for authenticated SMTP clients
In the EAC, go to Mail flow > Receive connectors.
In the list of Receive connectors, select Client Frontend <Server name>, and then click Edit ().
In the Exchange Receive Connector page that opens, click Scoping.
In the FQDN field, enter the SMTP server FQDN that you want to use for authenticated SMTP client connections (for example, mail.contoso.com) and then click Save.
Use the Exchange Management Shell to configure the FQDN for authenticated SMTP clients
To configure the FQDN for authenticated SMTP clients, use the following syntax:
This example configures the FQDN value mail.contoso.com.
How do you know this step worked?
To verify that you've successfully the FQDN on the 'Client Frontend <Server name> ' Receive connector, use either of the following procedures:
the EAC, go to Mail flow > Receive connectors > select Client Frontend <Server name>, click Edit () > Scoping, and verify the value in the FQDN field.
In the Exchange Management Shell, run the following command:
Step 2: Use the Exchange Management Shell to specify the certificate that's used to encrypt authenticated SMTP client connections
The certificate needs to match or contain the FQDN value that you specified in the previous step, and the POP3 and SMTP clients need to trust the certificate, which likely means a certificate from a commercial certification authority. For more information, see Certificate requirements for Exchange services.
Also, you need to assign the certificate to the Exchange SMTP service. For more information, see Assign certificates to Exchange Server services.
To specify the certificate that's used for authenticated SMTP client connections, use the following syntax:
This example uses the certificate that has the thumbprint value 434AC224C8459924B26521298CE8834C514856AB.
How do you know this step worked?
To verify that you've specified the certificate that's used to encrypt authenticated SMTP client connections, perform the following steps:
Run the following command in the Exchange Management Shell:
Run the following command in the Exchange Management Shell:
Verify the Subject or CertificateDomains field of the certificate that you specified on the Receive connector contains the Fqdn value of the Receive connector (exact match or wildcard match).
Step 3: Use the Exchange Management Shell to configure Outlook on the web to display the SMTP settings for authenticated SMTP clients
To configure Outlook on the web to display the SMTP settings server for authenticated SMTP clients, run the following command:
Note: To prevent the SMTP settings from being displayed in Outlook on the web, change the value from $true
to $false
.
How do you know this step worked?
To verify that you've configured Outlook on the web to display the SMTP settings for authenticated SMTP clients, perform the following steps:
Microsoft Smtp Server Settings For Gmail
Open a mailbox in Outlook on the web, and then click Settings > Options.
Click Mail > Accounts > POP and IMAP and verify the correct SMTP settings are displayed.
Note: If the SMTP settings that you configured don't appear as expected in Outlook on the web, run the commands
net stop w3svc /y
andnet start w3svc
to restart Internet Information Services (IIS).
How do you know this task worked?
To verify that you've configured the authenticated SMTP settings on the Exchange server, perform one or more following procedures:
Use the Test-PopConnectivity or Test-ImapConnectivity cmdlets, which use authenticated SMTP to send test messages. For more information, see Test-PopConnectivity and Test-ImapConnectivity.
Enable protocol logging on the 'Client Frontend <Server name>' Receive connector, configure a POP3 or IMAP4 client to connect to a mailbox, send a test message from an internal network connection and/or an external Internet connection, and view the results in the protocol log. For more information, see Protocol logging.
Note: You can't use POP3 or IMAP4 to connect to the Administrator mailbox. This limitation was intentionally included in Exchange 2016 and Exchange 2019 to enhance the security of the Administrator mailbox.
Office 365 is the cloud platform of the Microsoft that is now known as the Microsoft 365. It collects all the major services of Microsoft like MS Office, Exchange Online, SharePoint Online, Microsoft Teams, Skype for Business, and large storage space at the OneDrive for Business.
Businesses enjoy the collaborative features from Microsoft 365 and its online server Exchange Online allows the business to place their business domain in the Microsoft 365 accounts. The user can configure their Microsoft 365 accounts in the Outlook application and access their mailboxes from anywhere.
During the configuration of the accounts, the users should be aware of the various email communication protocols like SMTP, IMAP, POP, etc. that are important to send/receive emails without any issue.
IMAP (Internet Message Access Protocol)
The IMAP Protocol works at the Application Layer at the Internet connection that allows the client applications to access a remote mail server.
All the incoming email messages are targeted at an email server that saves the messages in the mailboxes. The email client helps the users to access the email with the help of suitable protocols. The majority of the email clients support the IMAP protocol for email saving and retrieval. The major benefit of using the IMAP protocol is that it saves the email message on the server until the user deletes them. Also, a single IMAP mailbox can be accessed at multiple clients whether from professional vendors like Microsoft or free source like Mozilla Thunderbird.
IMAP settings for Microsoft 365
- IMAP Server / Incoming Mail: outlook.office365.com
- Port: 993 (default), 143 (default)
- IMAP Account / User: username@domain.onmicrosoft.com or username@your-domain.com
- SSL Mode: Implicit or Explicit (Start TLS)
POP (Post Office Protocol)
Post Office Protocol also works at the application layer at the Internet connection and allows the email server to save the email messages at the email server. The POP protocol works in the Internet Protocol network and helps the users to work on any client application to hold your email mailbox. The user can access the email, download it, and delete the messages from the email server.
POP settings for Microsoft 365
- POP Server / Incoming Mail: outlook.office365.com
- Port: 995 (default), 110 (default)
- POP Account: username@outlook.office365.com or username@your-domain.com
- SSL Mode: Implicit or Explicit (Start TLS)
SMTP (Simple Mail Transfer Protocol)
SMTP protocols are the simple text-based email transfer protocol that connects the email sender and receiver with the help of an ordered data stream channel. The connection between the sender and receiver is the Transmission Control Protocol connection and performs the communication by creating the sessions between the SMTP servers.
SMTP settings for Microsoft 365
- SMTP Server / Outgoing Mail: smtp.office365.com
- Port: 587 (default)
- SMTP Account: username@outlook.office365.com or username@your-domain.com
- SSL Mode: Explicit (Start TLS).
Benefits of IMAP over POP
Because IMAP protocols are supported by the majority of the email clients because it offers more benefits than the other popular protocol like POP.
Support for multiple clients at once.
In the POP connection, there can be only a single client application to access the mailbox. But for an IMAP based connection, there can be multiple email clients for the single user mailbox. When a user accesses the mailbox from a single client, then he/she can detect the changes that occurred from other email clients.
Works in both connected/disconnected modes.
When the user is connected to a POP account, then it connects with the server for only a limited time until the message is not downloaded. But the IMAP connection with the server remains active for as long as the client application is active.
Server searches for messages.
In the IMAP-based connection, the user can perform some searches within the server based on a variety of criteria. The user does not need to download the messages to run some searches.
Multiple mailboxes at the server.
The user can create, rename, delete multiple mailboxes on the server for an IMAP client. The user can also copy the email messages from one mailbox to another. Such flexibility allows the user to create a shared mailbox and public folder etc.
Conclusion
The settings for each of the protocols can function for any Microsoft 365 account. If you want to migrate between the mailboxes to another account or upgrade your mailboxes, then you do not need to configure the accounts manually. But you can use professional software and migrate the entire mailboxes.