|
Share this
Mister Wong
Digg
Del.icio.us
Slashdot
Furl
Yahoo
Technorati
Newsvine
Blinkbits
Googlize this
Blinklist
Facebook
Wikio
Export PDF
Print
E-mail
| Table of Contents This tutorial will help you to install and set up a few email accounts, by using the built-in POP3 Service in Windows Server 2003. I will assume you have basic knowledge about the Windows Server family and Mail Servers, but I have tried to make this tutorial as easily comprehensible as possible. The tutorial has been tested on Windows Server 2003 Enterprise Edition but should also work on Windows Server 2003 Standard Edition. I will not cover MX records and other similar things in this release. To follow this tutorial you need a stand alone server. You can of course use a Domain Controller, but that assumes you understand when to not follow the tutorial and use other settings (i.e. authentication method). You can install the Email Server by using Add or Remove Windows Components or Manage Your Server. In this tutorial we will use the latter, because it?s the quickest way to get this up and running. Manage Your Server is a bit easier to use too, because it will prompt you for the domain you want to use during setup. That will not Add or Remove Windows Components do, and we have to do everything manually.
 This will start the Configure Your Server Wizard. Read the text and make sure you have connected all the necessary cables and all the other things it says you should do before continuing. 
The wizard will now detect your network settings. This will take a while depending on how many network connections you have We now come to the step where we add and remove roles for our server. We will add the Mail Server role. I also suggest that before you click Next, click Read about mail servers because this tutorial is not a complete reference. 
You will now specify the type of authentication and type the email domain name. In this tutorial we will use Windows Authentication, and I will use my domain name, ilopia.com. You should of course use your domain name. 
Next step is to confirm the options you have selected.
The installation will start, and will also start the Windows Components Wizard. When you get prompted to insert your Windows Server 2003 CD-ROM into your CD-ROM drive, do so. If you didn?t get prompted to do that, you maybe already have it in the drive. Hopefully within some minutes you get this screen:  You can now see the log, click view the next steps for this role, or click Finish. Do whatever you feel you want to do before continuing.
You have now successfully installed the mail server, congratulations! So, it is no fun with a mail server installed, if we can?t use it. And to use it, we have to configure it. This section will help you configure the mail server.
This will open up the POP3 Service. This is where you configure and manage the POP3 part of the mail server.
This brings up the Properties for our Mail Server.  As you can see, we have a lot of settings. We will use the standard setup in this tutorial, but I will explain every setting we can change in case you want to change something in the future. There are three different authentication methods you can use; Local Windows Accounts, Active Directory Integrated and Encrypted Password File. It is an important decision which method to use, because once you have chosen, you must delete all email domains on the server to change method (from now on, you can migrate Encrypted File user accounts to AD, but nothing else can be migrated).
I strongly recommend that you use port 110 because this is the standard port for the POP3 protocol. If you change this, make sure you notify all users so they can configure their email clients to use this other port. Also make sure you restart the POP3 service if you change this. Four options to choose between. If you change this, remember that you must restart the POP3 service.
If you don?t want to use the default Mail Directory, you can choose another one. Make sure the path is not more than 260 characters and you can also not store to the root of a partition (i.e. C:). It is strongly recommended that you use a NTFS formatted partition. You can?t use a mapped drive, but the UNC name (\\servername\share) can be used. If you later change the store, and there are still emails in one or more boxes, you must manually move the folders in which there are emails to the new location. You must also reset the permissions on the directory by using winpop set mailroot. Enable SPA if you want to have a secure communication between your email sever and email clients. This will send both the user name and password encrypted from the client to the server, instead of sending it in clear text. SPA supports only Local Windows Accounts and Active Directory Integrated Authentication. It is recommended to use this. Remember to restart the POP3 service if you change this. The Setup Wizard created a domain to us, so we do not need to create this manually. If you did not use Manage Your Server to install, add the domain manually be clicking the server name in the left pane and then click New domain in the right pane. Remember to set the properties before you add the domain.
This will open up the Add Mailbox window. 
A message will pop-up and tell you how to configure the email clients. Read this, and notice the difference when using SPA or not. 
What we just did was not only creating a mailbox named bob, but we also created a user bob. We will also create a mailbox for an existing user - ariel. To do that we simply perform the same steps, but we uncheck Create associated user for this mailbox. Remember that the mailbox name must be less then 21 characters (64 for Encrypted Password File and Active Directory). Periods are allowed to use, but not as the first or last character. So, we have now two users. Are they equally? No, bob is a member of the POP3 Users group, which is denied to logon locally. Ariel is not member of this group, and can still logon locally and access her mailbox. Actually, that?s it! It is this simple to configure the POP3 part. But it is not yet working as we want, we have to configure the SMTP part to be able to receive and send emails. Yes, I said receive emails. A common mistake is to think that the POP3 server receives the emails. But that is not true, all the POP3 is doing is ?pop? the emails out to the clients. It?s the SMTP server that is communicating with other SMTP servers and receives and sends emails.
First of all, Authentication and Relay is not the same thing. We use the Authentication button to specify which authentications methods are allowed for users and other SMTP servers. So enabling Anonymous here is not a security issue, in fact, it?s required if we want our server to be able to receive emails from other servers on Internet (I doubt you want to tell all administrators of email servers on Internet how they should logon to yours). We also need Windows Authentication so the email clients can authenticate to the server and be able to relay (send emails). As Relay Restrictions we selected Only the list below because we do not want to be used by spammers to send emails. But we never specified any computers. That is valid, because we wants our clients to always use the username and password to authenticate, no matter where they are. If you want users to only be allowed to relay if they are on a private network, then you can uncheck Windows Authentication as allowed authentication method, and specify the IP range for your network in the Relay Restrictions window. Is that all? Do we have a working email server now? Well, the answer is yes. But we still haven?t configured the email clients. We will use Outlook Express as email client.
A wizard starts. Use the following table to complete the wizard:
Are we finished now? Well, let us try to send an email. Didn?t work, did it? I?m sure you got an error message similar to this one: The message could not be sent because one of the recipients was rejected by the server. The rejected e-mail address was ' This e-mail address is being protected from spambots. You need JavaScript enabled to view it '. Subject 'Test', Account: 'ilopia.com', Server: 'ilopia.com', Protocol: SMTP, Server Response: '550 5.7.1 Unable to relay for This e-mail address is being protected from spambots. You need JavaScript enabled to view it ', Port: 25, Secure(SSL): No, Server Error: 550, Error Number: 0x800CCC79 The reason why we got this is written in the error message. ?Unable to relay for <email address>?. This means that we didn?t get authenticated to the SMTP server. So, let us take a look at the email client?s settings again.
This will bring up this window: 
And hopefully you will receive an email within some minutes (if you sent it to your own email account). Of course we want our network as secure as possible, so we prefer to use SPA (Secure Password Authentication). This will, as stated before, send the user name and password from the client encrypted, instead of clear text.
We must also change some settings for the email clients.
If you need more help, or are curious about things, take a look at the help files in Windows Server 2003. They are excellent and you will find out that there are more features that I have not talked about. Advanced Mail Server Configurations Additional questions and answers can be found here:
Q. Where are the POP3 logfiles? The POP3 Service logs to the Event Logs, which can be viewed by using Event Viewer. |
To create link towards this article on your website,
copy and paste the text below in your page.
Preview :
Friday, 03 April 2009
© 2012 - ebanwait.net
Nice
