Use the Directory Security property sheet to specify the methods for anonymous access and authentication control, and to set the secure communication method. Also use this sheet to set IP address and domain name restrictions, and to grant or deny permissions to relay mail through the SMTP site.
Anonymous Access and Authentication Control
Allows you to enable anonymous access and edit the authentication methods for this resource. Click Edit to select one of more authentication methods from the following options:
- Allow Anonymous Access – This option requires no user name or password for access to the resource.
- Basic Authentication – This option allows client authentication with password sent over the network in clear text using standard commands.
- Windows NT Challenge/Response – This option allows the client and server to negotiate the Windows NT Systems Security Provider Interface using Windows NT Challenge/Response.
Secure Communications
Sets the Secure Communication method used when the SMTP site is accessed. Once a valid key certificate from a Certificate Authority is installed on your virtual server, you can require that access to your virtual directory take place on a secure channel.
IP Address and Domain Name Restrictions
Use these properties to block individuals or groups from gaining aeecss lo your server, or to grant acc'ess only to specific individuals or groups. Click Edit to set the defaults for your service.
By default, all computers will be:
- Granted access – Select this option to grant access to all computers by default. Click Add to list those computers that will be denied access by exception.
- Denied access – Select this option to deny access to all computers by default. Click Add to list those computers that will be granted access by exception.
Relay Restrictions
Use these properties to determine whether to grant or deny permission to relay mail through the SMTP site. Click Edit to set the defaults for your service.
By default, all computers are:
- Allowed to relay – Select this option to allow all computers to relay mail by default. Click Add to list those computers that, by exception, will not be allowed to relay mail.
- Not allowed to relay – Select this option not to allow all computers to relay mail by default. Click Add to list those computers that, by exception, will be allowed to relay mail.
- Allow any computer that successfully authenticates to relay. Select this option to override the default for any computer that authenticates itself successfully.
In order to limit the proliferation of Unsolicited Commercial E-mail (UCE)—special offers, commentaries, or any message a sender wants to convey to as many recipients as possible—the SMTP Service, by default, doesn't allow mail to be relayed through it to an external e-mail address. To allow mail to be relayed from specific IP addresses, you must change the settings in the Relay Restrictions section of the Directory Security property sheet. Please note that changing these settings will make your site a prime target for UCE.