Support Article
Email listener can't access shared folder via IMAP
SA-20352
Summary
Unable to get an email listener (email server record) to connect to a shared folder on our server. When testing the connection to a shared folder an "AUTHENTICATE failed" message is displayed. This connection uses a Active Directory username like "ads\mkdas1\CARDS_TEST_EMAIL". This connection appears to require NTLM authentication, which is not natively supported by the JavaMail 1.4.1 APIs.
Error Messages
"AUTHENTICATE failed"
Steps to Reproduce
1) Configure email server record to connect to mail server using IMAP and NTLM style authentication. The user ID field should present a shared folder name, not a traditional username.
2) Test connection
Root Cause
A defect or configuration issue in the operating environment
Resolution
Perform the following local-change:
This issue can be circumvented by actually disabling all authentication options. This can be done by setting advanced properties such as below:
mail.imap.auth.plain.disable
mail.imap.auth.ntlm.disable
mail.imap.auth.gssapi.disable
mail.imaps.auth.plain.disable
mail.imaps.auth.ntlm.disable
mail.imaps.auth.gssapi.disable
With this configuration the system uses plain authentication (despite the fact it appears as though plain authentication would be disabled), and is able to access the shared folder. NTLM authentication doesn't allow shared folder access.
Published February 27, 2016 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.