Show TOC

SMTP Authentication and SMTP Using TLS / SSL for Inbound Mails (System Type AS ABAP) Locate this document in the navigation structure

Applies to Parameter: icm/server_port_<xx> (AS ABAP)

Caution Caution

The implementation of SMTP using TLS and SMTP authentication is included as of 7.31 SP6 and 7.21 kernel. To be able to use SMTP with TLS / SSL and SMTP authentication, you need a 7.21 kernel with patch level 33 or higher. For more information, see Note: 1747180

End of the caution.

You have already set the protocol (PROT) to be used in parameter icm/server_port_<xx> to SMTP, and specified the port (PORT) to be used, and now you want to configure SMTP authentication and/or SMTP settings with TLS / SSL for inbound mails.

SMTP-specific configuration options are described below:

  • TLS: Configures SMTP using TLS / SSL

  • AUTHMECHANISM: Authenticates inbound mails

  • AUTHUSERS: Defines authorized AS ABAP users

Example Example

Below are two examples of the possible configuration:

  • Example A: icm/server_port_1 = PROT=SMTP, PORT=25000, TLS=2

    Opens port 25000 for SMTP requests, and requests the client to encrypt with TLS. If this is not possible, the connection is cancelled.

  • Example B: icm/server_port_1 = PROT=SMTP, PORT=25000, TLS=2, AUTHMECHANISMS=PLAIN; EXTERNAL, AUTHUSERS=ABAPUser1; ABAPUser2

    Opens port 25000 for SMTP requests, and requests the client to encrypt with TLS. If this is not possible, the connection is cancelled. The client must authenticate itself either with user/password or client certificate. ABAPUser1 and ABAPUser2 are entered as authorized users.

End of the example.

Syntax Syntax

The character string has the following syntax:
End of the code.

PROT=<SMTP>, PORT=<port or service name>[, TIMEOUT=<timeout>, PROCTIMEOUT=<proctimeout>, EXTBIND=1, HOST=<host name>, SSLCONFIG=ssl_config_<xx>, VCLIENT=<SSL client verification>, ACLFILE=<ACL file>, TLS=<SMTP TLS use>, AUTHMECHANISMS=<SMTP authentication>, AUTHUSERS=<SMTP user authentication>]

Configuration

TLS: Configure SMTP using TLS / SSL

  • 0: No TLS request takes place.

  • 1: The server asks the client to encrypt with TLS. If this is not possible, the connection is accepted using SMTP without TLS.

  • 2: The client must encrypt with TLS; if not, the connection is cancelled.

AUTHMECHANISMS: Authentication for inbound mails

  • PLAIN: Authentication requires user/password

  • EXTERNAL: Authentication is done using a client certificate

  • NONE: No authentication requested

(Internet standard RFC 4422 describes SMTP authentication in detail.)

AUTHUSERS: Defines authorized users

The AUTHUSERS option specifies the users authorized for SMTP authentication. Standard AS ABAP users in client 000, user type SYSTEM, are used for SMTP authentication.

In the AUTHUSERS option you have to specify at least one user and a maximum of ten users is permitted. Users are separated in the character string by a semicolon — see Example B.

Note Note

If you want to use user/password authentication (PLAIN), you first have to generate an ABAP user.

If you want to use client certificate authentication (EXTERNAL), the ABAP user must first be assigned a valid certificate.

End of the note.

More Information