First I successfully configure a working Postfix configuration to use the SendGrid SMTP to send mails.
Now I modify the configuration to use the Exchange 2013 SMTP server to send mail.
I have looked from many forum and I can't find what is not working.
Everytime I try to send a mail I have in the mail.log : SASL Authentication failed; server XXX.XXX.XXX.XXX[XXX.XXX.XXX.XXX] said: 535 5.7.3 Authentication unsuccessful
Here is the main.cfg :
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate “delayed mail” warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = MYNAME
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = MYNAME, localhost.localdomain, localhost
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = procmail -a “$EXTENSION”
mailbox_size_limit = 51200000
recipient_delimiter = +
inet_interfaces = loopback-only
default_transport = smtp
relay_transport = smtp
inet_protocols = ipv4
myorigin = /etc/mailname
# enable SASL authentication
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = static:Domain\email@domain.fr:password
smtp_sasl_security_options = noanonymous
smtp_tls_security_level = encrypt
header_size_limit = 4096000
relayhost = XXX.XXX.XXX.XXX:587
#smtp_tls_security_level=none
Best Answer
your configuration:
is wrong.
The documentation is: http://www.postfix.org/postconf.5.html#smtp_sasl_password_maps
To find out about lookup tables, take a look at postfix documenation on tables
So you will probably need to create a file with your exchange server credentials, postmap it to build the hash database and point the smtp_sasl_password_maps directive to that file.
[your.exchange.server]:587 username@domain.tld:password
The [] indicate you do not want to perform mx lookups on the host, and 587 is the submission port. Modify to meet your requirements.
This file contains credentials, protect it, at the very least it should not be world readable. Ideally only root should read/write it.
postmap the sasl_password file:
This will create a hash db file /etc/postfix/sasl_password.db which postfix will use.
Modify your main.cf:
restart the postfix service (depends on you OS, if you do not know how to do that, reboot the server). Test to see if it works.