- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
- AIOps for NGFW
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- Cloud NGFW for AWS
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
Traps ESM - Failed Email Notifications using Gmail SMTP-Relay
- LIVEcommunity
- Collaboration
- Discussions
- Endpoint (Traps) Discussions
- Traps ESM - Failed Email Notifications using Gmail SMTP-Relay
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Traps ESM - Failed Email Notifications using Gmail SMTP-Relay
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
12-14-2017 09:18 AM
Hello,
I am currently running the Traps ESM v4.1.2 console and core on a single Windows Server 2016 environment. I have been unable to get email notifications to send. When I send a test message within Settings > ESM > Email, I receive the error "Failed to send test message." My organization is using Google Apps / G-Suite, and I have ensured that our smtp-relay rule allows for all addresses to send through SMTP without requiring SMTP authentication or TLS encryption. Within the email settings on the ESM, I have provided a valid user account and password. I tried using smtp-relay.gmail.com and smtp.gmail.com on ports 25, 465, and 587.
Palo Alto Support has asked that I provide logs from Google's servers, which is not possible. Google support has assured me that nothing on their end should block smtp relays with my rule enabled. I am able to see the smtp traffic leave my network when I attempt to test notifications on the ESM. I also have several other services running on my network that use SMTP relay through Gmail and have no problems.
- Has anyone else had any luck with enabling notifications with Google Apps?
- Is there a log file that I can view on the ESM that is specific to SMTP / Notifications?
I would appriciate any advise on this issue. Thank you.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
08-03-2018 11:38 AM
Got this to finally work by SMTP-Relay
Go to your Admin Console (admin.google.com) > Apps > G Suite > Gmail.
Then go to Advanced settings > Routing > SMTP relay services.
Next to the setting named "Internal Servers" > Click Edit.
Add the external IP address that will send the email and a range if it more then one
please check "Require TLS" and Save the setting
After you save the changes, please go to the application's setup and for Host server use: smtp-relay.gmail.com
And for port try again 587.
Make sure your user name is password is correct...
test email...
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
09-25-2018 10:59 PM
Hi Dears,
We are trying to enable Email Reporting on ESM server.
Filled all the required fields with correct information. Using the account which has accessibility to the SMTP Server.
Tried configuring with SSL Enabled and Disabled, but no luck. getting error - Failed to Send Test Message.
Attaching the error screen shot.
Kindly help getting this issue resolved..
Regards,
Sandeep
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
09-26-2018 05:05 AM
Sandeep,
I would recommend to reach out to Palo Alto support. Any of the support engineers would be more than happy to validate the settings for you, and answer any other questions you may have.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
04-09-2019 08:11 AM
was this ever solved?
I am seeing this now again with ESM V4.2.4 (V4.2.3 was working - see topic opened today)
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
04-09-2019 08:16 AM
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
04-09-2019 08:21 AM
Thx cmaiorino
I'm asking not in reply of the initial Gmail question, I'm asking in Reply of Sandeep_R - sorry for the confusion...
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
05-13-2019 05:47 AM
Just to inform the community about the solution of problem faced by "Sandeep_R":
I had a (long) case open with paloalto networks. They confirmed that they have changed the whole eMail Framework with ESM Update V4.2.3 to V4.2.4 (I could not find this in the release notes...). With that change they have a now confirmed bug with smtp servers without certificate AND without user authentication (before we used no certificate, no user auth). They promised to fix in upcoming V4.2.5. To workaround the problem I installed a valid certificate on my smtp receiver first. In addition I was not able to add user authentication in our prod environment and that is why paloalto networks support provided a engineering fix where I had to replace two dll's. For the momment it works - I will check after upgrdaing to V4.2.5 again...
- cortex xdr agent connection problem in General Topics
- Import Device config into Panorama Missing Radius key in Panorama Discussions
- Why is the notification "Globalprotect is running" shown on Android? in General Topics
- GP uses Microsoft Account connected to Windows 11 User | Can't declare actual VPN User in GlobalProtect Discussions
- Commit failure due to ha1-backup interface in Panorama Discussions
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
