Exchange: How to anonymous relay outside domain

Issue: You are creating an “anonymous relay connector” to allow unauthenticated devices and software to relay mail outside your organization.  This is commonly done to allow copiers/scanners and network alerting system to relay mail outside the organization.  Often this capability is permitted based on the sending devices IP address.

Solution: The following powershell command will allow an existing anonymous relay connector to relay mail outside the organization for unauthenticated senders.  Note: The senders IP must be in the allowed IP ranges list in the properties of the relay connector.

Get-ReceiveConnector “SERVERNAME\Anonymous Relay Connector SERVERNAME” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”

Substitute “SERVERNAME\Anonymous Relay Connector SERVERNAME” in the command above for the name of your relay connector.  If you haven’t created a new Anonymous Relay Connector yet, here are steps to create an anonymous relay receive connector.


Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.