Vaultwarden Office365 SMTP Relay Configuration

Dezrin · April 10, 2024, 2:46pm

I am facing issues when attempting to utilise Office365’s SMTP relay with Vaultwarden.

My configuration is as below:

{
  "_enable_smtp": true,
  "use_sendmail": false,
  "smtp_host": "smtp.office365.com",
  "smtp_security": "force_tls",
  "smtp_port": 587,
  "smtp_from": "***@***.com",
  "smtp_from_name": "Vaultwarden",
  "smtp_username": "***@***.com",
  "smtp_password": "*******",
  "smtp_auth_mechanism": "Login",
  "smtp_timeout": 15,
  "smtp_embed_images": true,
  "smtp_accept_invalid_certs": true,
  "smtp_accept_invalid_hostnames": true,
  "_enable_email_2fa": false,
  "email_token_size": 6,
  "email_expiration_time": 600,
  "email_attempts_limit": 3
}

When attempting to send a test mail, I get the following error message:

Error sending SMTP test email
SMTP error: Connection error: Connection error: error:0A00010B:SSL routines:ssl3_get_record:wrong version number: …/ssl/record/ssl3_record.c:354:

Any support in resolving this to get mail sending successfully would be greatly appreciated.

Many thanks.

BlackDex · April 10, 2024, 8:18pm

You need to use starttls instead of force_tls

Dezrin · April 11, 2024, 12:02pm

Thanks for the feedback. However, using starttls as opposed to force_tls results in the error message:

Error sending SMTP test email
Undefined

This results in the email not even being attempted to be sent at all, so it is not the solution.

Any further advice?

BlackDex · April 11, 2024, 3:11pm

Check the logs.
Also see

github.com

dani-garcia/vaultwarden/blob/main/.env.template#L512...L515


      
          # SMTP_AUTH_MECHANISM=
          
          ## Server name sent during the SMTP HELO
          ## By default this value should be is on the machine's hostname,
          ## but might need to be changed in case it trips some anti-spam filters
          # HELO_NAME=
          
          ## Embed images as email attachments
          # SMTP_EMBED_IMAGES=true
          
          ## SMTP debugging
          ## When set to true this will output very detailed SMTP messages.
          ## WARNING: This could contain sensitive information like passwords and usernames! Only enable this during troubleshooting!
          # SMTP_DEBUG=false
          
          ## Accept Invalid Certificates
          ## DANGEROUS: This option introduces significant vulnerabilities to man-in-the-middle attacks!
          ## Only use this as a last resort if you are not able to use a valid certificate.
          ## If the Certificate is valid but the hostname doesn't match, please use SMTP_ACCEPT_INVALID_HOSTNAMES instead.
          # SMTP_ACCEPT_INVALID_CERTS=false

Dezrin · April 17, 2024, 1:55pm

Enabling debugging was very helpful, thank you.

It was 2FA being dumb after changing to starttls

Thanks for your help.

Topic		Replies	Views
SMTP does not work Help	1	1228	August 18, 2022
Relay emails through MS365 Help	4	117	May 24, 2024
Unable to get SMTP function to work Help	30	3220	September 19, 2022
SMTP: temporary failure in name resolution Help	5	3171	January 25, 2022
SMTP problem after last update Help	1	1311	July 5, 2021

Vaultwarden Office365 SMTP Relay Configuration

Related Topics