Introduction
Your LANIER scanner can be configured to use Office365 to send scans to email, you may find that unlike other SMTP providers, there are special caveats to setting up Office365.
Your LANIER scanner can be configured to use Office365 to send scans to email, you may find that unlike other SMTP providers, there are special caveats to setting up Office365.
The following article will first establish the 3 ways you can enable and/or obtain the SMTP settings and credentials required to connect your LANIER device to send emails with your Office365 or Microsoft365 accounts, then provide you with instructions on where to enter those settings on your LANIER device. If you already have your SMTP settings configured on your Office365 account, you can skip to setting up your LANIER device.
Authenticate your device directly with a Microsoft365 or Office365 mailbox, and send mail using SMTP AUTH client submission
This option supports most usage scenarios and is the easiest to set up. Choose this option when:
To configure your device, connect directly to Microsoft365 or Office365 using the SMTP AUTH client submission endpoint smtp.office365.com.
Each device must be able to authenticate with Microsoft365 or Office365. The email address of the account that’s used to authenticate with Microsoft365 or Office365 will appear as the sender of messages from the device or application.
You must also verify that SMTP AUTH is enabled for the mailbox being used. SMTP AUTH is disabled for organizations created after January 2020 but can be enabled per-mailbox. For more information, see Enable or disable authenticated client SMTP submission (SMTP AUTH) in Exchange Online.
Device or Application setting | Value |
---|---|
Server/smart host | smtp.office365.com |
Port | Port 587 (recommended) or port 25 |
TLS/StartTLS | Enabled |
Username/email address and password | Enter the sign-in credentials of the hosted mailbox being used |
Features of SMTP AUTH client submission
Requirements for SMTP AUTH client submission
Limitations of SMTP AUTH client submission
Send mail directly from your printer to Microsoft365 or Office365 (direct send)
Choose this option when:
Other scenarios when direct send may be your best choice:
Settings for direct send
Enter the following settings on the device or in the application directly.
Device or application setting | Value |
---|---|
Server/smart host | Your MX endpoint, for example, domainname-com.mail.protection.outlook.com |
Port | Port 25 |
TLS/StartTLS | Optional |
Email address | Any email address for one of your Microsoft365 or Office365 accepted domains. This email address does not need to have a mailbox. |
We recommend adding an SPF record to avoid having messages flagged as spam. If you are sending from a static IP address, add it to your SPF record in your domain registrar’s DNS settings as follows:
DNS entry | Value |
---|---|
SPF | v=spf1 ip4: include:spf.protection.outlook.com ~all |
Step-by-step instructions for direct send
domainname.mail.protection.outlook.com
.v=spf1 ip4:10.5.3.2 include:spf.protection.outlook.com ~all
where 10.5.3.2 is your public IP address.Features of direct send
Requirements for direct send
Limitations of direct send
Configure a connector to send mail using Microsoft365 or Office365 SMTP relay
This option is more difficult to implement than the others. Only choose this option when:
SMTP relay lets Microsoft365 or Office365 relay emails on your behalf by using a connector that’s configured with your public IP address or a TLS certificate. Setting up a connector makes this option more complicated.
Settings for Microsoft365 or Office365 SMTP relay
Device or application setting | Value |
---|---|
Server/smart host | Your MX endpoint, for example, yourdomain-com.mail.protection.outlook.com |
Port | Port 25 |
TLS/StartTLS | Enabled |
Email address | Any email address in one of your Microsoft 365 or Office 365 verified domains. This email address does not need a mailbox. |
If you already have a connector that’s configured to deliver messages from your on-premises organization to Microsoft 365 or Office 365 (for example, a hybrid environment), you probably don’t need to create a dedicated connector for Microsoft 365 or Office 365 SMTP relay. If you need to create a connector, use the following settings to support this scenario:
Connector setting | Value |
---|---|
From | Your organization’s email server |
To | Microsoft 365 or Office 365 |
Domain restrictions: IP address/range | Your on-premises IP address or address range that the device or application will use to connect to Microsoft 365 or Office 365 |
We recommend adding an SPF record to avoid having messages flagged as spam. If you are sending from a static IP address, add it to your SPF record in your domain registrar’s DNS settings as follows:
DNS entry | Value |
---|---|
SPF | v=spf1 ip4:<Static IP Address> include:spf.protection.outlook.com ~all |
Step-by-step configuration instructions for SMTP relay
Due to the complex nature of this process, we recommend you visit Microsoft’s own documentation for instructions.
Here’s a comparison of each configuration option and the features they support.
Features | SMTP client submission | Direct send | SMTP relay |
---|---|---|---|
Send to recipients in your domain(s) | Yes | Yes | Yes |
Relay to internet via Microsoft365 or Office365 | Yes | No. Direct delivery only. | Yes |
Bypasses antispam | Yes, if the mail is destined for one of your Microsoft365 or Office365 mailboxes. | No. Suspicious emails might be filtered. We recommend a custom Sender Policy Framework (SPF) record. | No. Suspicious emails might be filtered. We recommend a custom SPF record. |
Supports mail sent from applications hosted by a third party | Yes | Yes. We recommend updating your SPF record to allow the third party to send as your domain. | No |
Saves to Sent Items folder | Yes | No | No |
Requirements | |||
Open network port | Port 587 or port 25 | Port 25 | Port 25 |
Device or application server must support TLS | Required | Optional | Optional |
Requires authentication | Microsoft365 or Office365 username and password required | None | One or more static IP addresses. Your printer or the server running your LOB app must have a static IP address to use for authentication with Microsoft365 or Office365. |
Here are the limitations of each configuration option:
Limitations | SMTP client submission | Direct send | SMTP relay |
---|---|---|---|
Throttling limits | 10,000 recipients per day. 30 messages per minute. | Standard throttling is in place to protect Microsoft365 or Office365. | Reasonable limits are imposed. The service can’t be used to send spam or bulk mail. For more information about reasonable limits, see High-risk delivery pool for outbound messages. |
Your LANIER scanner can be configured to use Office365 to send scans to email, you may find that unlike other SMTP providers, there are special caveats to setting up Office365.
The following article will first establish the 3 ways you can enable and/or obtain the SMTP settings and credentials required to connect your LANIER device to send emails with your Office365 or Microsoft365 accounts, then provide you with instructions on where to enter those settings on your LANIER device. If you already have your SMTP settings configured on your Office365 account, you can skip to setting up your LANIER device.
Authenticate your device directly with a Microsoft365 or Office365 mailbox, and send mail using SMTP AUTH client submission
This option supports most usage scenarios and is the easiest to set up. Choose this option when:
To configure your device, connect directly to Microsoft365 or Office365 using the SMTP AUTH client submission endpoint smtp.office365.com.
Each device must be able to authenticate with Microsoft365 or Office365. The email address of the account that’s used to authenticate with Microsoft365 or Office365 will appear as the sender of messages from the device or application.
You must also verify that SMTP AUTH is enabled for the mailbox being used. SMTP AUTH is disabled for organizations created after January 2020 but can be enabled per-mailbox. For more information, see Enable or disable authenticated client SMTP submission (SMTP AUTH) in Exchange Online.
Device or Application setting | Value |
---|---|
Server/smart host | smtp.office365.com |
Port | Port 587 (recommended) or port 25 |
TLS/StartTLS | Enabled |
Username/email address and password | Enter the sign-in credentials of the hosted mailbox being used |
Features of SMTP AUTH client submission
Requirements for SMTP AUTH client submission
Limitations of SMTP AUTH client submission
Send mail directly from your printer to Microsoft365 or Office365 (direct send)
Choose this option when:
Other scenarios when direct send may be your best choice:
Settings for direct send
Enter the following settings on the device or in the application directly.
Device or application setting | Value |
---|---|
Server/smart host | Your MX endpoint, for example, domainname-com.mail.protection.outlook.com |
Port | Port 25 |
TLS/StartTLS | Optional |
Email address | Any email address for one of your Microsoft365 or Office365 accepted domains. This email address does not need to have a mailbox. |
We recommend adding an SPF record to avoid having messages flagged as spam. If you are sending from a static IP address, add it to your SPF record in your domain registrar’s DNS settings as follows:
DNS entry | Value |
---|---|
SPF | v=spf1 ip4: include:spf.protection.outlook.com ~all |
Step-by-step instructions for direct send
domainname.mail.protection.outlook.com
.v=spf1 ip4:10.5.3.2 include:spf.protection.outlook.com ~all
where 10.5.3.2 is your public IP address.Features of direct send
Requirements for direct send
Limitations of direct send
Configure a connector to send mail using Microsoft365 or Office365 SMTP relay
This option is more difficult to implement than the others. Only choose this option when:
SMTP relay lets Microsoft365 or Office365 relay emails on your behalf by using a connector that’s configured with your public IP address or a TLS certificate. Setting up a connector makes this option more complicated.
Settings for Microsoft365 or Office365 SMTP relay
Device or application setting | Value |
---|---|
Server/smart host | Your MX endpoint, for example, yourdomain-com.mail.protection.outlook.com |
Port | Port 25 |
TLS/StartTLS | Enabled |
Email address | Any email address in one of your Microsoft 365 or Office 365 verified domains. This email address does not need a mailbox. |
If you already have a connector that’s configured to deliver messages from your on-premises organization to Microsoft 365 or Office 365 (for example, a hybrid environment), you probably don’t need to create a dedicated connector for Microsoft 365 or Office 365 SMTP relay. If you need to create a connector, use the following settings to support this scenario:
Connector setting | Value |
---|---|
From | Your organization’s email server |
To | Microsoft 365 or Office 365 |
Domain restrictions: IP address/range | Your on-premises IP address or address range that the device or application will use to connect to Microsoft 365 or Office 365 |
We recommend adding an SPF record to avoid having messages flagged as spam. If you are sending from a static IP address, add it to your SPF record in your domain registrar’s DNS settings as follows:
DNS entry | Value |
---|---|
SPF | v=spf1 ip4:<Static IP Address> include:spf.protection.outlook.com ~all |
Step-by-step configuration instructions for SMTP relay
Due to the complex nature of this process, we recommend you visit Microsoft’s own documentation for instructions.
Here’s a comparison of each configuration option and the features they support.
Features | SMTP client submission | Direct send | SMTP relay |
---|---|---|---|
Send to recipients in your domain(s) | Yes | Yes | Yes |
Relay to internet via Microsoft365 or Office365 | Yes | No. Direct delivery only. | Yes |
Bypasses antispam | Yes, if the mail is destined for one of your Microsoft365 or Office365 mailboxes. | No. Suspicious emails might be filtered. We recommend a custom Sender Policy Framework (SPF) record. | No. Suspicious emails might be filtered. We recommend a custom SPF record. |
Supports mail sent from applications hosted by a third party | Yes | Yes. We recommend updating your SPF record to allow the third party to send as your domain. | No |
Saves to Sent Items folder | Yes | No | No |
Requirements | |||
Open network port | Port 587 or port 25 | Port 25 | Port 25 |
Device or application server must support TLS | Required | Optional | Optional |
Requires authentication | Microsoft365 or Office365 username and password required | None | One or more static IP addresses. Your printer or the server running your LOB app must have a static IP address to use for authentication with Microsoft365 or Office365. |
Here are the limitations of each configuration option:
Limitations | SMTP client submission | Direct send | SMTP relay |
---|---|---|---|
Throttling limits | 10,000 recipients per day. 30 messages per minute. | Standard throttling is in place to protect Microsoft365 or Office365. | Reasonable limits are imposed. The service can’t be used to send spam or bulk mail. For more information about reasonable limits, see High-risk delivery pool for outbound messages. |