This guide explains how to let mail clients (users, printers/scanners, or applications) send mail through your Artica SMTP relay by authenticating with a login and password — stored in a local Artica database, without requiring Active Directory or an external LDAP directory.
Artica stores the accounts in a dedicated database, generates a Dovecot passwd-file for each Postfix instance, and configures Postfix to delegate SMTP authentication to Dovecot through a Unix socket.
Passwords are stored hashed only (SHA512-CRYPT) and are never displayed again after entry.This feature is available Artica v4.50 Service Pack 7 or Artica v4.50 Service Pack 6 Hotfix 20260704-16.
If you already authenticate against a Windows domain, use SMTP Authentication using Active Directory instead.
When directory authentication is enabled it takes precedence over local accounts — see Coexistence at the bottom of this page.
SMTP Router > Authentication > Local Members.
Enabling the feature is safe: it does not interrupt mail flow, and it changes nothing for domains and clients that do not authenticate. You can manage accounts while the feature is disabled — nothing becomes active until you enable it and apply.
scanner-3rdfloor.username@domain (e.g. scanner-3rdfloor@corp.example.com); leave it empty to use the bare user name.
The same login may exist independently on two different SMTP instances, but must be unique within one instance. Logins may not contain spaces, colons or line breaks.
Creating, editing or deleting accounts marks the instance as having pending changes; nothing changes for live authentication until you apply.

Point the client at your Artica relay and enable SMTP authentication:
587 (submission) or 25, per your relay configuration.LOGIN or PLAIN, using the account’s full login (e.g. scanner-3rdfloor@corp.example.com) and its password.A successful authentication returns 235 2.7.0 Authentication successful and the client is then allowed to relay. An unauthenticated client gains no new relay rights, and a wrong or disabled account is refused with 535 5.7.8 authentication failed.
Artica removes only the settings this feature created: local-account authentication stops, the dedicated authentication service is stopped, and Postfix reverts to its previous SASL configuration.
Mail flow is not interrupted and any other authentication mechanism already in place is untouched.
Your accounts are retained, so re-enabling the feature restores service without re-creating them.
When Active Directory / LDAP SMTP authentication is enabled, it takes precedence over local accounts.
In that case the page shows a notice, the effective mechanism reads Directory (LDAP/Active Directory), and the local accounts stay inactive until directory authentication is disabled.
This prevents the two mechanisms from silently conflicting.
Test configuration reports "Dovecot installed" as failed
The dovecot-core package is not present. Install it (Artica installs it on demand when you enable the feature) and apply again.
The client gets 535 authentication failed with the right password
Confirm the account is enabled and that you applied the configuration after the last change. Re-run Test configuration to confirm the authentication service is running and its socket is present.
Effective mechanism shows "Directory (LDAP/Active Directory)"
Directory authentication is enabled and takes precedence. Disable it if you want the local accounts to be the active mechanism.
Changes do not take effect
Account changes only become live after Apply this instance (or Apply all instances). Watch for the “pending changes” notice on the status card.