Configure WSUS Email Notification for Office365

Configuring WSUS Email Notifications ensures effective communication. It’s a powerful way to inform subscribers about changes or updates to a website or service alongside push notifications. For related content, see these guides, Windows Server Update Services Commands, WAUACLT, PowerShell, and USOClient. How to Start, Stop, and Restart Windows Server Update Services (WSUS) via PowerShell and CMD, Windows 2016 Servers does not show up on WSUS console, and WSUS clients appear and disappear from the WSUS Update Services console.

To effectively configure WSUS Email Notification, as WSUS lacks SSL/TLS support, an SMTP relay setup is essential for connecting to the Mail Server (Office365).

For more articles I have written, see the following hyperlinks below: How to set up and configure Windows server update services (WSUS), important Areas to Master on WSUS (Installed and not applicable, Install 1/4, and Installed / Not applicable 100),

SMTP-Relay server

To Solve this problem, you will have to setup an SMTP-relay server: Setting up smtp relay on windows server 2012:

Install SMTP on Windows Server

To do this, open Server Manager and select Add Roles and Features.

Select Server Selection and make sure that the server that will be running the SMTP server is selected and then select Features.

On the Select Features screen. Choose SMTP Server. You may be prompted to install additional components. If that’s the case, select Add Required Features and Click Next.

Select Install to install the SNMP Server. After the installation is finished, you may have to start the SMTP service by using the Services snap-in for the Microsoft Management Console (MMC).

See how to configure WSUS Clients to get Updates from the WSUS server using Registry settings, how to apply Windows Updates from WSUS to the server using AWS RunCommand, how to Configure SSL between WSUS servers (Upstream and Downstream Servers).

Configure SMTP on Windows Server

Open Server Manager, select Tools, and then select Internet Information Services (IIS) 6.0.

Adjust Server Settings: SMTP Virtual Server Properties

Expand the current server, right-click the SMTP Virtual Server, and then select Properties.

On the General tab, select Advanced, and then click on Add. Enter the Public IP of the WSUS/SMTP server if they are installed on the same server but if not enter the IP of the SMTP server followed by port 25

In the IP Address box, specify the address of the server that’s hosting the SMTP server. In the Port box, enter 25 and select OK.

Step 3: On the Access tab, do the following: Select Authentication

and make sure that Anonymous Access is selected.

Select Connection as shown below

Select “Only the List” below, and then specify the IP addresses of the devices that will be connecting to the SMTP server, such as the WSUS server itself or a printer

Upon click ok, this will be granted to the Private IP address

Select Relay > Only the List Below, and then specify the IP address of the devices relaying through this SMTP server

While we’re here, click on “Relay” and check that the box labeled “Allow all computers which successfully authenticate to relay…” is ticked and also enter the Private IP Address here.

On the Delivery tab, select Outbound Security, and then do the following:
Select Basic Authentication.

And select Anonymous access as shown below

Select Outbound Connections, and in the TCP Port box, enter 25 and select OK.

Finally, Select Advanced and specify the SMTP server as smart host as the Smart Host.

Configure WSUS Email Notification: Admin Center Connection

Note: This is not smtp.office365.com. You can find this when you connect to the Office365 admin center

Go to settings on Office365 and select domain as shown below

Note: Create a connector on Office365 using the EIP (Public IP Address of the SMTP server). This process is very simple. Now go back to the SMTP-Relay server,

Select Advanced and enter the FQDN and the MX record for your office365