FluentSMTP failures often come down to a small mismatch between WordPress, the selected mailer, and the provider account. Common real-world causes include trying to use Cloudflare Email Routing as a sender, an expired Microsoft client secret, or a shared mailbox that the connected account is not allowed to send from. Start by sending one FluentSMTP test email and reading the failed log entry before changing DNS, OAuth apps, or plugin settings.
Quick checks before changing settings
Go to FluentSMTP > Settings and confirm the active connection is the one your site should use. FluentSMTP supports several connection types, including API-based providers and SMTP services, so the right fix depends on the selected mailer. Use the vendor’s own setup docs for the connection you chose, starting from the FluentSMTP documentation.
Check these first:
- The From Email matches a mailbox or domain your provider allows.
- The From Name is plain text, not a template variable from another plugin.
- The active connection is not a leftover test connection.
- The provider account is active and not over quota.
- FluentSMTP email logging is enabled, then review the most recent failed message.
- A form, booking, or ecommerce plugin is not overriding the sender address.
WordPress sends mail through wp_mail(), but delivery depends on the mailer configured underneath it. The WordPress developer reference for wp_mail() is useful background, but the practical fix is almost always in FluentSMTP, the mail provider, or DNS.
Safest fix order
1. Send a FluentSMTP test email
In wp-admin, open FluentSMTP > Settings and use the test email tool for the active connection.
Use a mailbox you control outside the sending domain, such as a Gmail or Outlook address. If the test email fails, stay inside FluentSMTP and the mail provider logs. If the test email succeeds but form notifications fail, the issue is probably the form, booking, membership, or ecommerce plugin that created the message.
2. Read the FluentSMTP log message
Open FluentSMTP > Email Logs and check the failed message. Do not stop at “failed”; look for the provider response.
Common meanings:
- Authentication failed: the username, password, API key, client secret, or OAuth token is wrong or expired.
- Forbidden: the provider account is authenticated but not allowed to send as that mailbox or through that app.
- Sender not allowed: the From Email does not match an approved domain, verified sender, or mailbox.
- Connection timed out: the host may block the SMTP port, or the SMTP hostname, port, or encryption setting is wrong.
- Sent in log but not received: check spam, quarantine, suppression lists, DMARC alignment, and provider delivery logs.
3. Fix the sender address
Make the From Email a real mailbox or verified sender that belongs to the same domain you are sending from.
For example, use [email protected] or [email protected], not a visitor’s email address from a contact form. Contact forms should normally put the visitor’s email in the reply-to field, not the From Email. This avoids DMARC failures and provider rejections.
After saving, send another FluentSMTP test email and one real workflow email, such as a form submission or password reset.
4. Reconnect OAuth mailers when tokens or secrets expire
For Gmail, Google Workspace, Outlook, Microsoft 365, or other OAuth-based mailers, re-authenticate the connection from FluentSMTP after confirming the app credentials are still valid.
For Microsoft connections, pay special attention to client secrets and mailbox permissions. Microsoft’s identity platform docs explain that app credentials such as client secrets can have expiration dates. If the secret expired, create a new one, update FluentSMTP, then reconnect the account.
If you see a Microsoft “Forbidden” style error, treat it as a permission or mailbox authorization problem, not just a bad password. Confirm the connected account is allowed to send from that mailbox. Shared mailboxes and organizational accounts may need admin-side permission changes before FluentSMTP can send through them.
5. Do not use Cloudflare Email Routing as an SMTP sender
Cloudflare Email Routing is for receiving and forwarding mail, not for sending WordPress transactional email through SMTP. Cloudflare’s own Email Routing documentation describes routing inbound mail to destination addresses.
If your domain uses Cloudflare for DNS, keep using Cloudflare DNS, but connect FluentSMTP to a real sending service such as your mailbox provider, SMTP host, or transactional email provider. Then add the SPF, DKIM, and DMARC records that provider gives you.
6. Check DNS only after the mailer is correct
DNS changes are useful only when the selected sender and provider are already correct.
In your DNS manager, confirm the domain has the SPF, DKIM, and DMARC records required by your mail provider. Avoid stacking multiple SPF TXT records on the same domain; most providers expect one SPF record that includes all approved senders.
After changing DNS, wait for propagation and retest. If the provider has a domain verification screen, trust that screen over a generic DNS checker.
7. Isolate plugin or theme conflicts only when FluentSMTP works by itself
If the FluentSMTP test email works but a specific workflow still fails, test the plugin that creates that email.
Examples:
- A form plugin may override the From Email.
- A booking plugin may send to a malformed recipient address.
- A membership or ecommerce plugin may use its own email template settings.
- A security plugin may block REST or admin requests used during OAuth reconnect.
Change one thing at a time. If you disable plugins, do it during a low-traffic period and keep a list of what changed.
Optional recovery checks with SSH
Use WP-CLI only if wp-admin is unavailable or you already have SSH access and need to confirm plugin state during recovery. It should not replace the main troubleshooting flow in wp-admin, FluentSMTP settings, provider logs, and DNS.
wp plugin status fluent-smtpIf wp-admin is broken after a plugin update, you can temporarily deactivate FluentSMTP:
wp plugin deactivate fluent-smtpThat is a recovery step, not an email fix. WordPress may fall back to the server’s default mail handling, which is often less reliable than a properly configured SMTP connection.
How to confirm it worked
Confirm in this order:
- FluentSMTP test email sends successfully.
- The message arrives in an external mailbox.
- The same message is marked successful in FluentSMTP logs.
- A real site workflow sends correctly, such as a form notification, password reset, order email, or booking email.
- Your mail provider’s activity or delivery log shows the message as accepted.
If FluentSMTP says the email was sent but the recipient never receives it, move to the mail provider’s delivery logs, spam quarantine, suppression list, or domain authentication screen. At that point FluentSMTP has likely handed off the message successfully.
Rollback and escalation
Before replacing credentials, changing DNS, or reconnecting OAuth, copy the current FluentSMTP connection settings into a private note or take an admin screenshot for your own rollback reference.
If a change makes delivery worse, restore the previous connection settings and retest with one message. For DNS, revert only the record you changed and wait for propagation before testing again.
Contact the right support team based on the failure point:
- Contact FluentSMTP support when the plugin cannot save settings, logs are unclear, or OAuth reconnect fails inside WordPress.
- Contact your mail provider when authentication succeeds but the provider rejects the sender, blocks the mailbox, or reports quota, permission, or policy errors.
- Contact your host when SMTP connections time out or common SMTP ports are blocked.
- Contact your DNS provider or registrar when provider verification says SPF, DKIM, or DMARC records are missing after you added them.
- Contact your Microsoft 365 or Google Workspace admin when an organizational mailbox, shared mailbox, or app permission is involved.