Modern authenticationConfigure Token Vault Settings in eCopy ShareScanConfigure a SMTP via LDAP connector with Google's Gmail SMTP server and modern authentication

Configure a SMTP via LDAP connector with Google's Gmail SMTP server and modern authentication

This topic describes the second part of the fourth configuration task in the process of setting up eCopy ShareScan connectors and email watchers to use modern authentication.

Perform this task in the eCopy ShareScan Administration Console after you have successfully

  • registered a Google application for Token Vault on the Google Cloud Platform Console portal,

  • registered a Google authorization provider with Gmail scope set in Token Vault,

  • authorized Token Vault in Google through a Token Vault Google authorization provider,

  • configured Token Vault settings in the ShareScan Administration Console under Advanced > Tools.

To configure an SMTP via LDAP eCopy connector with Google's Gmail SMTP server and modern authentication, perform the following steps.

  1. Open the Properties dialog box of an SMTP via LDAP connector profile, and select the Logon/SMTP tab.
  2. Select Runtime: LDAP as Authentication under the Logon options group.
  3. Under the SMTP Server group, click Reset... and select to Gmail defaults to set the default values for the Google's Gmail SMTP server automatically, or do the following:

    • Enter the Google's Gmail SMTP server fully qualified name and port as Server and Port.

    • Select Server requires SSL checkbox.

    • Select Use sender's LDAP UserID attribute and runtime password as Authentication. You can also select Runtime: Prompt sender for a user name and password / passcode as Authentication. If you select this Authentication option, select between Password or One-time passcode Authentication method.

  4. Ensure that the user specified as User name (under the SMTP Server group on the Logon/SMTP tab) has previously authorized Token Vault for Google - as described in Authorize a Google provider in Token Vault.

    In case of Password Authentication method, to specify a user name, use the DOMAIN\username format if the Use Specified domain if secure SMTP is enabled checkbox is deleted. Otherwise, fill out the textbox under this checkbox with the users' domain.

    In case of One-time passcode Authentication method, specify the User name in the User Principal Name (UPN) format and a valid One-time passcode which was generated by Token Vault or an authenticator app set up on the Token Vault UI.

    The one-time passcode authentication method enables to use this connector with Azure Active Directory users as well.

  5. Click Test.

    (If the above authorization was not completed before the test, the test fails).

At this point, you are ready to invite your end-users to perform their own authorization step on the Token Vault Available authorization providers page. Once this end-user authorization step is complete, the SMTP via LDAP connector profile configured with Google's Gmail SMTP server and modern authentication is operational.