Skip Ribbon Commands
Skip to main content

Simple Incoming Email with On Premises SharePoint and Exchange

Avoid Configuring AD by Using An Email Alias

Andrew Walman

09/10/2014

SharePoint document libraries can be email-enabled so that documents can be uploaded by simply sending an email. In single server, lab-type environments, this is relatively simple to achieve, but in multi-server production environment, particularly where Exchange is handling internet email, there's a lot more to consider. Having Exchange handle the incoming email routing before the document reaches SharePoint has a number of advantages:

  • Exchange will typically be set up to handle inbound threats far more robustly than SharePoint can be – while they can both scan documents for viruses, Exchange can also check against spam lists, blacklists and sender reputation before allowing mail through.
  • Exchange can also apply various rules to mail messages before they are delivered – such as checking for attachments, attachment size, subject etc. – and then routing accordingly.
  • Exchange can also auto-reply to messages – useful where a receipt or other response is required to the sender.
  • Tracking messages through Exchange is far easier than looking through SMTP logs – useful for compliance and auditing purposes.
  • Using Exchange, the message doesn't just have to be delivered to SharePoint – it can be also sent to a journal mailbox, or copied/forwarded to any other recipient or group.
  • The email address given to users for the document library can be part of your internet address space, e.g. doclibrary@example.com, not doclibrary@sharepoint.example.com – this is beneficial when external users are involved in the document sending process (e.g. partners, suppliers) and internal users can find the address in the Exchange address book.

SharePoint can use the directory management feature to automatically create email addresses in the corporate directory when email-enabled document libraries are created. Designed to simplify the process for SharePoint, this can be a headache for Exchange administrators, particularly in large environments. The method below avoids having SharePoint create the entries automatically, introducing a manual process, but ensures that the SharePoint and Exchange support teams remain friends!

Scenario:

You want external partners to be able to email documents to an on-premises SharePoint document library, using an email address that routes through the on-premises Exchange organization.

High Level Overview

  • SharePoint is installed as three tier farm with multiple web/front-end servers.
  • Internet email is handled by Exchange
  • An Exchange mailbox is set up to receive emails from partners with the address partnerdocs@example.com
  • An email contact object is set up with the external address, doclib@sp.example.com
  • The mailbox is setup to forward incoming emails to the contact
  • An Exchange SMTP connector is used to route email for the sp.example.com namespace to the SharePoint frontend load balanced address.
  • Exchange transport rules can be configured to process the mail further, e.g. send a receipt, change the destination address based on sender/subject etc.

Pre-requisites

  • Exchange is set up to receive email from the internet using SMTP for the domain example.com
  • No external DNS changes are required.
  • The SMTP service has been installed on all the SharePoint web/front-end servers, set to automatic start-up, and load balanced with a virtual IP address and local DNS entry.

SharePoint Farm Set Up

To configure incoming email, complete the following steps:

  • Verify that the user account that is performing this procedure is a member of the Farm Administrators group.
  • Open SharePoint Central Administration.
  • Click on System Settings.
  • Select Configure incoming e-mail settings.
  • Select "Yes" to enable sites on this server to receive e-mail.
  • Leave the other settings as default – "Settings mode = automatic" and "Use the SharePoint Directory Management Service = no"
  • Ensure the E-mail server display address (excluding mylist@) is set to the SharePoint address space, e.g. sp.example.com. This is only to make setup easier, you don't need to create any DNS settings for this as we'll be using the load balanced IP address of the frontend servers to route to this namespace.
  • Click OK

SharePoint document library set up

  • Create a new document library or email enable an existing library by opening the document library settings and selecting the "incoming e-mail settings"
  • Select "Yes" to "Allow the library to receive email?"
  • Enter an email address that is appropriate for the library – a suggested convention might be [libraryname].[sitename]@sp.example.com. This address will be used by the contact object in Exchange
  • Configure attachment settings and email message settings as needed.
  • As you'll be accepting messages from the internet, change the security policy to "Accept e-mail messages from any sender" – we're offloading message security to Exchange.

Exchange Set Up

  • Create a contact object with the naming convention of the organization, using the document library email address as the external email address.
  • Create a mailbox with the required external internet email address, e.g. partnerdocs@example.com and ensure it can receive from the internet. Set any properties needed on the mailbox (e.g. maximum size) and in the "Mail Flow" tab, select "delivery options". Configure the forwarding address to be the contact object you've just created.
  • To route mail between Exchange and SharePoint, create a new "send connector" in the hub transport section of the organisation configuration.
  • Enter an appropriate name (SharePoint) for the connector and choose a "custom" type.
  • In the address space, enter your SharePoint address space, e.g. sp.example.com
  • Select "Route mail through the following smart hosts" and click "Add"
  • Enter the load-balanced IP address of the front end servers and complete the wizard.

When incoming email for partnerdocs@example.com arrives at the exchange server (either from the internet or from internal senders) it will be forwarded from the mailbox to the contact object, causing it to be routed through the new send connector to the one of the front-end servers in the load balancer, where the SMTP service will store it in the drop folder. SharePoint will monitor the drop folder, find the new email, and store any attachment in the document library – with the email message too, depending on the setting chosen.

Extending the Solution

This is a very simple example, but it's possible to meet a variety of business requirements by adding Exchange transport rules, SharePoint routing rules, and workflow into the solution. The major benefit if using the mailbox/contact forwarding method above is the email address given to partners doesn't change – simplifying collaboration. For example:

  • Transport rules can be used to route email to different mailboxes (and then to different contacts) depending on different conditions, such as subject, sender or attachment type. Contacts can be created for each document library.
  • Alternatively, SharePoint routing can be used to move the attachment from the drop-off library to different libraries, based on metadata in the attachment, approval status, or document type, keeping the Exchange side simple, and retaining the business logic in SharePoint.
  • Further processing can be accomplished through custom workflows, triggered on item creation within the email-enabled document library. These may move the item straight away, trigger an approval process, or start another external process entirely.

 

 


 About us

Fuse Collaboration Services is a Cloud Solution Provider and Microsoft Gold Partner specialising in delivering SharePoint, Skype for Business, and Azure cloud-based solutions. Based in Northampton, UK.

Microsoft Gold Partner Logo showing 5 competencies

Read more

 Latest Tweets

 Latest Blog

 

 

Have you forgotten about the WannaCry Cyber Attacks already?373<p style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">The NHS cyber attacks were less than two weeks ago yet it feels like it’s been far longer. So much has happened since and if updating your IT infrastructure was on your agenda but has now been put to one side due to other tasks taking priority read on…..</font></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Nobody in the IT world wants to say “I told you so” following &#160;the recent events but the NHS cyber attack should&#160;have made Managing Directors globally, &#160;sit up and listen to their IT advisors. Everyone knows that technology evolves at an alarming pace and our generation has seen the fastest change in this… at least until we land on Mars. </font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">This means instead of ignoring the IT gurus, we should be taking on board their advice and expertise, particularly around cybersecurity; trust us, it’ll save you money in the long run. Why are we not listening to the experts who thankfully know everything about ransomware, patch management, nibbles, craplets and&#160;DOS attacks? (High five if you know any of that!)</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Put it this way&#58; If a doctor told you that you had a hole in your heart requiring immediate surgery, otherwise it’s game over, you would agree to it being patched up immediately, right? The health of your business is just as critical. The body of your business is reliant on your IT infrastructure for keeping your business profitable whilst also allowing the lunchtime google sessions! Your out of date software, your lack of adequate back up and your ancient operating system are causing holes that are potentially lethal for your business. </font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Hackers are more advanced now than ever before , potentially sitting In your system undetected for, on average, over two hundred&#160;days. You need to be ready with the most up-to-date defences you can. The most frustrating part of what has recently happened is that there will be companies out there who will listen to the news, read it in the papers and yet still take the risk, genuinely believing that it will happen to them. If it hasn’t already been drilled in, take a look at a breakdown of last years’ statistics&#58;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><a href="http&#58;//www.hackmageddon.com/category/security/cyber-attacks-statistics/"><span style="text-decoration&#58;underline;"><font color="#0563c1" face="Calibri" size="3">http&#58;//www.hackmageddon.com/category/security/cyber-attacks-statistics/</font></span></a></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Still don’t think you’re at risk?</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;​</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font face="Calibri"><font size="3"><font color="#000000">If the cost implication of a hack doesn’t shock you in to action (and after reading these five case studies from top corporate losses I think it will - </font><a href="https&#58;//hotforsecurity.bitdefender.com/blog/top-5-corporate-losses-due-to-hacking-1820.html"><span style="text-decoration&#58;underline;"><font color="#0563c1">https&#58;//hotforsecurity.bitdefender.com/blog/top-5-corporate-losses-due-to-hacking-1820.html</font></span></a></font></font><font face="Calibri"><font color="#000000" size="3">), then what about the other crippling effects of a hacking that, ultimately, could have been prevented?</font></font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Your reputation would take a hit, especially if thousands of customer’s valuable data including their full names, logins, passwords, e-mails, home addresses, purchase history, and credit card numbers are stolen. It’s a company’s responsibility and legal requirement to keep this information safe. Your customers may jump ship to another competitor, meaning a further hit on your profitability. </font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">In 2016, two thirds of large UK businesses were hit by a cyber breach or attack. Could this number have been reduced? We know it can.</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Fuse Collaboration are experts in the following&#58;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><ul style="margin-top&#58;0in;"><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Cyber Security</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Patch management</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Back up</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Sharepoint</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Azure</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Office 365</span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">System Center </span></li><li style="margin&#58;0px 0px 0px 3px;color&#58;#000000;font-family&#58;&quot;calibri&quot;,sans-serif;font-size&#58;11pt;font-style&#58;normal;font-weight&#58;normal;"><span lang="EN-GB" style="margin&#58;0px;">Dynamics CRM</span></li></ul><p style="margin&#58;0px 0px 0px 51px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;"><font color="#000000" face="Calibri" size="3">Our services include a bespoke combination of business consulting, </font></span><span lang="EN-GB" style="margin&#58;0px;color&#58;#302e2f;font-family&#58;&quot;segoe ui&quot;,sans-serif;font-size&#58;10.5pt;">infrastructure design, SharePoint development and managed services and as a </span><span lang="EN-GB" style="margin&#58;0px;font-family&#58;&quot;segoe ui&quot;,sans-serif;font-size&#58;10.5pt;"><font color="#000000">certified </font><span style="margin&#58;0px;color&#58;#302e2f;">Microsoft Gold Partner you have that added reassurance that your business is in the right hands</span><font color="#000000">. </font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;font-family&#58;&quot;segoe ui&quot;,sans-serif;font-size&#58;10.5pt;"><font color="#000000">&#160;</font></span></p><p style="margin&#58;0px;"><span lang="EN-GB" style="margin&#58;0px;font-family&#58;&quot;segoe ui&quot;,sans-serif;font-size&#58;10.5pt;"><font color="#000000">Any upgrades to your infrastructure can be phased in over a time suitable to your users, business demands and your budget. Our team are experts in delivering what you want - call us on 01604 797979</font><span style="margin&#58;0px;"></span></span></p><p>​​</p>l.ozier@fusecollaboration.com | Louise Ozier | 693A30232E777C6675736563735C6C2E6F7A696572 i:0#.w|fusecs\l.ozier24/05/2017 23:00:002017-05-24T23:00:00Z25/05/2017 14:27:14http://www.fusecollaboration.com/ourblog/Pages/Forms/AllItems.aspxhtmlFalseaspx

 Contact us

Our address
12-14 Brookfield, Duncan Close
Moulton Park, Northampton
NN3 6WL
P: +44(0)1604 797979
Contact Us