Up
Previous Next

Sheriff CSMâ„¢

Configure Mail Relay in Sheriff CSM

You can configure to receive emails from Sheriff CSM. For example, if you want to receive an email when an alarm appears, you can create a policy for the email to be sent. For details, see Tutorial: Create a Policy to Send Emails Triggered by Events. But first, you need to configure mail relay in Sheriff CSM.

Sheriff CSM uses Postfix, an open-source mail transfer agent (MTA), as Simple Mail Transfer Protocol (SMTP) Server for outgoing messages.

Sheriff CSM SMTP Server Default Settings
Protocol Port Number Notes
SMTP 25 This is the port number assigned to SMTP and used for mail server relay. Note that most Internet service providers (ISPs) block this port to curb the amount of spam they receive.
TLS (Transport Layer Security) 587 This is the default port number that Sheriff CSM uses to send outgoing messages. The connection is encrypted by executing the STARTTLS command.

Sheriff CSM also enables the following properties from Postfix: 

smtp_sasl_auth_enable = yes 
smtp_sasl_security_options = noanonymous
smtp_sasl_tls_security_options = noanonymous</span>

This means Sheriff CSM enables Simple Authentication and Security Layer (SASL) authentication for SMTP, denying anonymous authentication.

Mail Server Relay Configuration

For simply receiving emails from Sheriff CSM, you do not need to set up mail server relay. However, if your company has a dedicated mail server that you want to keep using, you can configure Sheriff CSM to route emails through your corporate mail program. To prevent such messages from going to your junk mail or spam folder, you can add Sheriff CSM as a safe sender for Office 365 or add it to the email whitelist for Gmail.

You perform this task on either a Sheriff CSM All-in-One or a Sheriff CSM Server.

To configure mail server relay on Sheriff CSM

  1. Login to the Sheriff CSM web UI, and then go to Configuration > Deployment.

  2. Under Sheriff Components Information, click the System Details icon of the system you want to change.

  3. On the next page, click General Configuration, located above the System Status.

  4. In the General Configuration form, select Yes for Mail Server Relay.

    This expands the form to disclose new fields.

  5. Type the Server IP, the username and password used for the mail server, and the port number in the respective fields.

    Note: The Server IP field accepts valid IP addresses or server names.

    • Server IP: smtp.gmail.com
    • User: <your user>@gmail.com or <your user>@<your domain>.tld if <your domain>.tld is managed by Google Professional Services
    • Pass/Confirm Pass: <your password>
    • Port: 587

    Note: If your Office 365 admin has set up two-step verification for your organization, you may need to create an app password allowing Sheriff CSM to access your Office 365 account.

    • Server IP: smtp.office365.com
    • User: <your user>
    • Pass/Confirm Pass: <your password>
    • Port: 587

    Important: Before continuing, follow the steps in How to Configure a Relay Connector in Exchange Server 2013 to allow SMTP relay through the Frontend Transport service.

    • Server IP: <your Exchange Server 2013 IP address>
    • User: (leave it blank)
    • Pass/Confirm Pass: (leave it blank)
    • Port: 25 (default)

  6. Click Apply Changes .

This topic: Sheriff > UserGuides > SheriffCSMDocumentation > DeploymentGuide > SheriffCSMInitialSetup > ConfigureMailRelayInSheriffCSM
Topic revision: 28 Mar 2022, SheriffCyberSecurity
Copyright 2020 Sheriff Cyber Security, LLC. All rights reserved.