- 최신
- 최다 투표
- 가장 많은 댓글
Im confused what Email Domain your using in SES and M365. Are they both the same?
You can’t run the same domain on different mail servers without some complexity.
You’d best setup a subdomain in SES and forward the emails over.
Thank you Gary, you are right, a subdomain is way more simple.
These posts [0,1,2] pointed me in the right direction. In my lab environment it wasn't working because the exchange server was configured as authoritative, hence it was trying to deliver the mail inside the server instead of redirecting it to aws. Once I changed the acepted domain setting to internal relay the validation was successfull and the rule started working, correctly receiving the mail in AWS SES and executing the action previously configured.
So, to summarize:
- On the Exchange online Admin side:
- Verify that the domain you'll use (in my case, my.org ) is set as internal relay instead of authoritative, or edit it accordingly [3]
- Create a connector from Office 365 to your organization's email server [4], settting the use of connector to
only when a transport rule is set up that redirects messages to this connector, routing it to the AWS SES
inbound SMTP endpoint URL for your region [5] (in my case,
inbound-smtp.us-east-1.amazonaws.com) - Create a rule [6] that uses the connector for the email address you wan't to use with SES (in my case court-notice@my.org)
- On the AWS side:
- In the DNS:
- Your MX record for M365 stays the same, priority 0, name @ and content yourdomain.mail.protection.outlook.com
- As per this Knowledge Center article [7] , one the first steps is to publish an MX record [9], it has to be a lower priority than M365 (anything than 0, unless for some reason your MX record for M365 has a priority other than 0, which in such case it has to be a greater number in order to be a lower priority).
refs: 0. https://stackoverflow.com/questions/75542238/link-office-365-to-aws-workmail-ses
- https://serverfault.com/questions/1141709/send-emails-from-exchange-to-external-recipient-with-the-same-domain-name
- https://practical365.com/how-to-share-an-email-domain-between-two-mail-systems/
- https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/manage-accepted-domains/manage-accepted-domains
- https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/use-connectors-to-configure-mail-flow/set-up-connectors-to-route-mail
- https://docs.aws.amazon.com/ses/latest/dg/regions.html#region-receive-email
- https://learn.microsoft.com/en-us/exchange/security-and-compliance/mail-flow-rules/manage-mail-flow-rules
- https://repost.aws/knowledge-center/ses-receive-inbound-emails
- https://docs.aws.amazon.com/ses/latest/dg/receiving-email-setting-up.html
- https://docs.aws.amazon.com/ses/latest/dg/receiving-email-mx-record.html
Both the same domain, @my.org . I tried following this advice: https://stackoverflow.com/questions/75542238/link-office-365-to-aws-workmail-ses , but in my case we don't have Workmail.
I've tried using the imap.mail.us-east-1.awsapps.com url as suggested in the referenced site, but it can't be reached.