SMTP: STARTTLS failed (code: 220, response: 2.0.0 Ready to start TLS)

shivamch7

Server Information
osTicket Version v1.14.1 ((f1e9e88) ) — Up to date
Web Server Software Microsoft-IIS/10.0
MySQL Version 5.6.26
PHP Version 7.3.4

When I try to update E-mail settings, I get:
Unable to log in. Check SMTP settings.
authentication failure [SMTP: STARTTLS failed (code: 220, response: 2.0.0 SMTP server ready)]

How to solve? Please help me.

ntozier

the mail settings that you entered are not allowing a connection. It is telling you to correct the settings so that it allows a connection. Since you have not provided the settings that you are using it would be hard for anyone to assist you any further with troubleshooting this.

shivamch7

ntozier
https://forum.osticket.com/assets/files/2019-11-25/1574658107-959097-image.png

Hi,
These are the settings we are using. It is working with PHP V5.5 and Not with 7.3. Please guide.
Thanks.

shivamch7

Hi,
These are the settings we are using. It is working with PHP V5.5 and Not with 7.3. Please guide.
Thanks.

krvam

shivamch7 i have the same error,
you can fixed?

ntozier

Try changing the port to 465.

Also you should check on your mail server to find out what errors are being logged.

ntozier

@krvam Please help us to help you by reading and following the posting guidelines located in this thread: Please read before requesting assistance. The more information you give us the better we will be able to assist you. Thank you.

Please make sure that you provide envioronment information, osTicket version, screen shots etc.

dbplx

The following worked for me but limited to port 25 only. 465 and 587 won't work.
Using OSTicket 1.14.1 on a Synology. PHP 7.2.24.

In the Synology, downloaded and edited the file web/osticket/upload/include/pear/Net/SMTP.php

I commented/removed out the entire section in auth() - the if ($tls && version_compare) section.
It works now. For my use, port 25 is good enough for OSTicket emails.

public function auth($uid, $pwd , $method = '', $tls = true, $authz = '')
{
    /* We can only attempt a TLS connection if one has been requested,
     * we're running PHP 5.1.0 or later, have access to the OpenSSL
     * extension, are connected to an SMTP server which supports the
     * STARTTLS extension, and aren't already connected over a secure
     * (SSL) socket connection. */
    /* if ($tls && version_compare(PHP_VERSION, '5.1.0', '>=')
        && extension_loaded('openssl') && isset($this->esmtp['STARTTLS'])
        && strncasecmp($this->host, 'ssl://', 6) !== 0
    ) {
        // Start the TLS connection attempt. 
        if (PEAR::isError($result = $this->put('STARTTLS'))) {
            return $result;
        }
        if (PEAR::isError($result = $this->parseResponse(220))) {
            return $result;
        }
        if (isset($this->socket_options['ssl']['crypto_method'])) {
            $crypto_method = $this->socket_options['ssl']['crypto_method'];
        } else {
            // STREAM_CRYPTO_METHOD_TLS_ANY_CLIENT constant does not exist
            // and STREAM_CRYPTO_METHOD_SSLv23_CLIENT constant is
            // inconsistent across PHP versions. 
            $crypto_method = STREAM_CRYPTO_METHOD_TLS_CLIENT
                             | @STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT
                             | @STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT;
        }
        if (PEAR::isError($result = $this->socket->enableCrypto(true, $crypto_method))) {
            return $result;
        } elseif ($result !== true) {
            return PEAR::raiseError('STARTTLS failed');
        }

        // Send EHLO again to recieve the AUTH string from the
         * SMTP server. //
        $this->negotiate();
    }*/

    if (empty($this->esmtp['AUTH'])) {
        return PEAR::raiseError('SMTP server does not support authentication');
    }