Environment
NetIQ Self Service Password Reset 3.x
Situation
When attempting to setup email messages for password events the following error is received at the top of the Self Service Password Reset (SSPR) login page:
WARN - Error - Unable to send email due to error: 554 Transaction failed Invalid domain name: '10.0.0.2'
After Turning the log level to trace the following is seen in the SSPR log.
2014-11-25T05:42:27Z, TRACE, queue.EmailQueueManager, queued item successfully sent and removed from queue: {"itemID":216,"timestamp":"2014-11-25T05:42:27Z","to":"User1@netiq.com","from":"Event Notification <noreply@10.0.0.2>","subject":"SSPR - Audit Event - STARTUP"}, queue size: 0
2014-11-25T05:42:27Z, ERROR, queue.EmailQueueManager, error sending email (554 Transaction failed: Invalid domain name: '10.0.0.2'.
) from: Event Notification <noreply@10.0.0.2>, to: User1@netiq.com, subject: SSPR - Audit Event - STARTUP, permanent failure, discarding message
2014-11-25T05:42:27Z, ERROR, queue.EmailQueueManager, error during email send attempt: com.sun.mail.smtp.SMTPSendFailedException: 554 Transaction failed: Invalid domain name: '10.0.0.2'.
2014-11-25T05:42:27Z, TRACE, pwm.SessionManager, incremented request counter, current pwmFormID=sVg1eo5BdIAA5h8cTQyOuCOC3kDIjZ2K149e5710efcvh46or [10.0.1.2]
2014-11-25T05:42:27Z, TRACE, util.ServletHelper, forwarding to /WEB-INF/jsp/login.jsp [10.0.1.2]
WARN - Error - Unable to send email due to error: 554 Transaction failed Invalid domain name: '10.0.0.2'
After Turning the log level to trace the following is seen in the SSPR log.
2014-11-25T05:42:27Z, TRACE, queue.EmailQueueManager, queued item successfully sent and removed from queue: {"itemID":216,"timestamp":"2014-11-25T05:42:27Z","to":"User1@netiq.com","from":"Event Notification <noreply@10.0.0.2>","subject":"SSPR - Audit Event - STARTUP"}, queue size: 0
2014-11-25T05:42:27Z, ERROR, queue.EmailQueueManager, error sending email (554 Transaction failed: Invalid domain name: '10.0.0.2'.
) from: Event Notification <noreply@10.0.0.2>, to: User1@netiq.com, subject: SSPR - Audit Event - STARTUP, permanent failure, discarding message
2014-11-25T05:42:27Z, ERROR, queue.EmailQueueManager, error during email send attempt: com.sun.mail.smtp.SMTPSendFailedException: 554 Transaction failed: Invalid domain name: '10.0.0.2'.
2014-11-25T05:42:27Z, TRACE, pwm.SessionManager, incremented request counter, current pwmFormID=sVg1eo5BdIAA5h8cTQyOuCOC3kDIjZ2K149e5710efcvh46or [10.0.1.2]
2014-11-25T05:42:27Z, TRACE, util.ServletHelper, forwarding to /WEB-INF/jsp/login.jsp [10.0.1.2]
Resolution
There are several potential resolutions to this issue.
1. Configure the SiteURL to a DNS name instead of an IP address.
2. Remove all noreply@10.0.0.2 messages from SSPR, by removing all the noreply@@SiteHost@ email addresses in your email configuration, and turning off the event notification emails by removing the email addres in System Audit Event Email Alerts (leave it blank) (system, logging & Auditing) This specific startup error is coming from the Event Notification system. So removing the email address in System Audit Event Email Alerts, got rid of the error.
3 Try using different SMTP Server.
1. Configure the SiteURL to a DNS name instead of an IP address.
2. Remove all noreply@10.0.0.2 messages from SSPR, by removing all the noreply@@SiteHost@ email addresses in your email configuration, and turning off the event notification emails by removing the email addres in System Audit Event Email Alerts (leave it blank) (system, logging & Auditing) This specific startup error is coming from the Event Notification system. So removing the email address in System Audit Event Email Alerts, got rid of the error.
3 Try using different SMTP Server.
Cause
SSPR is configured to send out SSPR status emails by default for startup
and other events with the SSPR server. These emails come from the
@SiteHost. So if if the SiteURL is configured with an IP address, the
@SiteHost will be @IPAddress. Some SMTP servers do not allow that and
require a dns name.