By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS WorkMail can't send emails!

0

Hey, I'm trying to send emails with my newly created email account info@mydomain.com.

I'm always getting this email returned:

*Sending Email failed. Could not send email.

SubmitId: E5C4D5F784298A6BDD19AA964A874B40

Your administrator needs to give permissions to WorkMail to perform e-mail sending on your behalf. To give WorkMail sending permissions, follow the instructions here:

https://docs.aws.amazon.com/workmail/latest/adminguide/editing_domains.html*

The description in the link does not fit to the current UI, but I supposed I found the right place. So I created the following Policies related to the email account

{
  "Version": "2012-10-17",
  "Id": "ExampleAuthorizationPolicy",
  "Statement": [
    {
      "Sid": "AuthorizeAccount",
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::AccountID:root"
      },
      "Action": [
        "ses:*",
        "ses:SendBounce",
        "ses:SendRawEmail"
      ],
      "Resource": "arn:aws:ses:eu-west-1:AccountID:identity/info@mydomain.com"
    }
  ]
}
  • the domain in SES:
{
  "Version": "2012-10-17",
  "Id": "ExampleAuthorizationPolicy",
  "Statement": [
    {
      "Sid": "AuthorizeAccount",
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::AccountID:root"
      },
      "Action": [
        "ses:*",
        "ses:SendBounce",
        "ses:SendRawEmail"
      ],
      "Resource": "arn:aws:ses:eu-west-1:AccountID:identity/mydomain.com"
    }
  ]
}

I'm running out of ideas why I still can't send emails from WorkMail.

Topics
Front-End Web & MobileBusiness Applications
Tags
Amazon Simple Email ServiceAmazon WorkMail
Language
English
AWS-User-7444961
asked 2 years ago1051 views
1 Answer
1

Hi,

I'm sorry to hear you're experiencing problems with sending mail. It looks like the principal in the policy is incorrect. It looks like its the one for your account (which I have removed).

It should be for WorkMail to allow WorkMail to send mail using your domain. You can update it to:

  "Principal": {
    "Service": "workmail.eu-west-1.amazonaws.com"
  },

Kind regards, Robin

Edit: More details on this new Documentation page

AWS
EXPERT
robinkaws
answered 2 years ago
profile picture
EXPERT
Giovanni Lauria
reviewed 17 days ago
  • AWS-User-7444961
    2 years ago

    Cool!, works now! But where could I've found this information myself? Thank you

  • robinkaws EXPERT
    2 years ago

    Hi,

    The documentation for the WorkMail service principal will go live later today. The WorkMail service principal is new as before this change the policy would contain a WorkMail account Id. I will check if we can add extra warnings on the documentation page you received in the bounce message.

    Kind regards, Robin

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content