1. Home
  2. Docs
  3. Email Relay – Office365 Microsoft Exchange Online
  4. Configuration using Trustifi MTA

Configuration using Trustifi MTA

Trustifi admin portal

Step 1 – Verifying the plan and user type

⚠ NOTE! In case that you aren’t running under “Pro” plan and your user type isn’t an “Admin”, you will have to upgrade your plan to “Pro”.

Navigate to "My Plan" page and verify that your plan type is "PRO" and your level is "Admin".

"My Plan" page

Step 2 – Navigating to Outbound Management

Navigate to “Outbound Management” (Shield icon)

Navigating to "Outbound Management"

Step 3 – Navigating to the domains tab

The email relay section will be locked because you have no verified domains yet. Click on the “Domains” tab to continue.

Navigating to "Domains"

Adding new domain

This is a quick overview of the domain verification process. To view the full guide click here - https://trustifi.com/docs/general/domain-verification/

Step 4 – Adding a new domain

Now, we will need to add the domain used to send emails. Continue by clicking on the “Add Domain” button.

Adding a new domain

Step 5 – Verifying the domain

After adding the domain, you will have to copy and import the records to your DNS provider (e.g. DNS Made Easy, GoDaddy). Continue to the next step after all the DNS records have been imported to your DNS environment.

Showing the domain's DNS records

Note: You can also click on "Download records CSV" from the "Actions" menu to save these records as a CSV file.

Step 6 – Verifying the domain and navigating to the Plan Settings tab

After you have added all the DNS records to your domain, click on “Check if verified” to see if the status changes to “Verified”. Continue to the next step only if the domain has been verified.

Note: Depending on your DNS system, your domain may take up to 24 hours to update DNS records.

A verified domain

Step 7 – Enabling and generating the email relay secret key

In this part, you will need to enable the Email Relay toggle, and copy the “Email Relay key” which is the secret key that will be used to authenticate the transport flow of your emails.

At the "Plan Settings" tab, scroll to the "Email Relay Integration" section and click on the toggle to enable.

Enabling the Email Relay integration

After the integration was enabled, your secret key will be generated. You can click on the "copy" button to copy the Email Relay secret key for later use.

Copying the Email Relay secret key

Microsoft Exchange Admin Center

Step 8 – Navigating to the Exchange Admin Center – Mail flow

Navigate to the “Exchange admin center” via the following link – https://outlook.office365.com/ecp/

After you have logged in, navigate to the “Mail flow” – “Connectors” page.

Step 9 – Navigating to the connectors tab

Navigate to the “Connectors” tab.

Creating new connector

Step 10 – Adding new connector

In this section, you will have to create a new connector by clicking on the “New” (Plus icon) button.

Step 11 – Selecting mail flow scenario

Here, you will have to select the mail flow scenario. At “From” select “Office 365”, and at “To” select “Your organization's email server” and continue by clicking “Next”.

Selecting the connector's mail flow

Step 12 – Naming and describing

In the "Name" field, enter the following name: "Trustifi Outbound Connector (Send)", you can also add a description (optional).
Continue by clicking on "Next".

Naming the Trustifi connector

Step 13 – Usage type

Select “Only when I have transport rule set up that redirects message to this connector” and continue by clicking “Next”.

Step 14 – Selecting route type

Now we will need to select the route type for the smart host, select “Route email through these smart hosts” and click on “Add” (Plus icon).

Step 15 – Adding the smart host

Add “smtp.trustifi.com” (Without double quotes) to the smart host’s field and continue by clicking “Next”.

Step 16 – Verifying if the smart host added to the list

Verify if the smart host is added to the list, continue by clicking “Next”.

Step 17 – Configuring the smart host

Now we will have to configure the smart host by selecting “Always use TLS” (First checkbox), selecting “Issued by a trusted certificate authority (CA)”, selecting the checkbox, entering “*.trustifi.com” into the field and continuing by clicking on “Next”.

Step 18 – Confirmation

Verify and confirm that all the settings are correct. Continue by clicking “Next”.

Confirming the connector settings

Step 19 – Validating the connector

Here you will have to add an email address other than the one being set-up for the email relay. Use your personal email for this quick test.

Step 20 – Adding personal email

Add your personal email address to the email address field. Continue by clicking “OK”.

Step 21 – Validating the connector

Make sure the personal email address existing in the list. Continue by clicking “Validate”.

Step 22 – Validation results

After the connection check will be done, you will receive two statuses, one for the connectivity which must be “Succeeded”, and the second one “Failed”. We can ignore the “Failed” status, it was failed due to missing the secret key which we will add in the next steps.

Step 23 – confirming the warning

Confirm the warning by clicking on “Yes”.

Disabling Rich-Text Format (RTF)

Step 24 – Navigating to the remote domains tab and editing the default

Note: For a detailed explanation of the required changes to "Remote domains", please read this article.

Editing the default "remote domains" settings

Step 25 – Disabling the RTF option

Under "Use rich-text format" select "Never".

Under "MIME character set" and "Non- MIME character set" select "Unicode (UTF-8)".

Disabling RTF

Support "Out of Office" (OOF)

Step 26 – Allowing external reply types

Under "Out of Office automatic reply types" select "Allow external and legacy Out of Office replies" and click "Save".

Selecting out-of-office type and saving

Step 27 – Navigating to the Rules tab

Now we will have to navigate to the Rules tab to create a new rule to use the connector.

Creating new rule

Step 28 – Creating new rule – adding new rule

At the “Rules” page, click on the “New” (Plus icon) button and select “Create a new rule”.

Step 29 – Expanding the options

Click on “More options” to expand the options of the rule creation.

Step 30 – Naming and configuring the sender type

Name the new rule that will be used for the Trustifi Email Relay. Continue by hovering over “The sender” and select “Domain is”.

Step 31 – Domain selection

Select “Domain is” and continue to the next step.

Step 32 – Adding the domain

Add the domain that will be used to send emails through Trustifi Email Relay.

NOTE: Add here all the domains you want to be connected through the Trustifi Email Relay. In case you are adding more than one domain, make sure you added and authenticated him. (See Step 4, Step 5 and Step 6)

Step 33 – Adding new condition

Add new condition by clicking “Add condition”.

Step 34 – Adding domain type

Hover over “The sender” and select “Is external/internal”.

Step 35 – Selecting domain type

Select “Is external/internal”.

Step 36 – Applying domain type

Select “Inside the organization” and apply by clicking “OK”.

Step 37 – the connector redirection

Hover over “Redirect the message to” and select “The following connector”.

Step 38 – Selecting redirection type

Select “The following connector”.

Step 39 – Selecting the connector

Select the connector as you named him at the previous step at “Connectors” tab.

Step 40 – Adding new action

Add a new action by clicking on “Add action”.

Step 41 – Modifying the message properties

Hover over “Modify the message properties” and select “Set a message header”.

Step 42 – Selecting the modification type

Select “Set a message header”.

Step 43 – the header name

Click on “Enter text” and enter “x-trustifi-creds” (Without double quotes) at the message header field.

Step 44 – Entering the header name

Enter “x-trustifi-creds” (Without double quotes) in the message header field. Continue by clicking “OK”.

Step 45 – Adding the header value

Click on “Enter text” and paste your secret key from the Trustifi Outbound Management (Plan Settings) at the header value field.

Step 46 – Entering the header value

Paste the secret key you have copied from the Trustifi Outbound Management (Plan Settings). Continue by clicking “OK”.

Step 47 – Creating an exception

Click on “add exception” and hover over “Sender is…”, then click on “IP address is in any of these ranges or exactly matches

Selecting a sender exception

Step 48 – Adding the exception IPs

In the pop-up window, enter the following IPs - and (click on the “+” icon to add each one) and then click on “OK” to confirm.

Adding the Exception IPs

Step 49 – Setting rule properties

Set the final rule properties as follows:

  1. Select the rule severity level to “High
  2. Check the boxes for "Stop processing more rules" and "Defer the message if rule processing doesn't complete".
  3. Under “Match sender address in message”, select “Header or envelope” .
  4. Save the rule by clicking “Save”.

Setting the rule properties

Was this article helpful to you? Yes 2 No

How can we help?