Unable to configure Outlook or Android mail client with Plesk server: Authentication methods not supported

Follow

Comments

3 comments

  • Avatar
    Seb

    The solution did not work for me.

    I set smtpd_sasl_security_options = noanonymous in main.cf, but also had to modify master.cf
    There, I set smtpd_enforce_tls=no and removed smtpd_tls_security_level=encrypt from the submission line.

  • Avatar
    Felipe Santos

    me too.
    Gmail app there is no manual config, anymore.

    why plesk is not able to ensure properlly use of SSL and TLS ?

  • Avatar
    Francisco Garcia

    Hi Felipe, Thanks for the feedback,

    The actual work of a SSL certificate is to verify that the place you're connecting is correct, by mathching certificate' signed domain with the server name you're connecting to.

    If they match, then it will be a pass, if they differ (the server name where you connect is not in the list from within the certificate) it will not pass and proper warning will appear, anyway, in this case connection is still possible if the mail client ignores/accepts the warning.

    The problem here (in this article) is when the mail client does not select the proper encryption method, because by default it may have it set to "none", or because before it was not secure connection, then it's required to set this manually.

    Or a better solution is to have a proper certificate which could be:

    1. Order a certificate for all the domains in such Plesk server
    2. Make all mail clients to connect to the same server name (usually the hostname of the server) <= That one is prefferable for not modifying the SSL cert many many times.

    However, this better solution is not the purpose of this article, as it's described in this other: Outlook shows warning connecting to Plesk mail server: the server to which you are connected uses a security certificate that can not be verified. The main destination name is not valid

    And also there's another one: Incorrect certificate used for mail client

     

Please sign in to leave a comment.

Have more questions? Submit a request