Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 4249 articles
Browse latest View live

Remove User Encryption and/or siging certificates on Exchange for Mac Outlook users

October 11, 2016, 1:42 am
$
0
0

We have a self-hosted Exchange server and we have Users that have smartcard tokens with new Signing and Encryption  certificates installed on the token.

We can successfully install these certificates using Outlook and for Windows users, Publish to GAL, is successful and works great. The old certificates are removed and replaced with the new certificates.

However, Outlook on a Mac does not have a Publish to GAL function and therefore we have a problem getting rid of the old certificate. We cannot find these old certificates to remove them manually. The old certificates are not present in Active Directory, so the only other location must be Exchange server. But we cannot find these certificates to delete them.

Any suggestions?

Search

lack of recent anti Spam-Filter updates?

October 19, 2016, 2:07 am
$
0
0

Hello,

it has been a while since my Exchange Server Edge-Transport (2010 Enterprise) installed new anti-spam definition files. 24th September 2016 was the last time.

Is there something wrong with the definition updates (we had this issue some time ago: Microsoft didn't Update the definition files for some months)? Anyone suffer under the same issue?

I am also wondering why it is called Standard-Antispam Updates and not Enterprise.

Delivery report shows status of Pending for external address. Email sent to both internal and external addresses.

October 6, 2014, 4:22 am
$
0
0

We have an Exchange 2013 on-premise server and seem to have an issue with emails sent to internal and external users at the same time.

The issue came to light because someone sent an email to 44 recipients, of which one was internal. None of the external recipients received the email. I checked the delivery report in the EAC and found the internal email marked as 'Delivered' and all of the external ones marked as 'Pending'. I checked the queues and there were none. I did some testing and sent an email to just one of the external addresses on the list, it arrived. I tried sending the email again to all of the recipients, the external ones all showed 'Pending'. I tried it again, but this time excluded the internal email address and all of the 43 external emails were immediately delivered.

So it seems that the issue only arises when we are sending to both internal and external addresses.

I then tried a test email to one internal address and one external address. The Delivery report says that the internal address was delivered immediately, while the external address is 'Pending' and gives more information saying: 'Message delivery is taking longer than expected. There may be system delays. For more information, contact your helpdesk.'. To add further mystery to this, the email was actually delivered.

So, I have two concerns:

First is seems that some emails sent both internally and externally are only arriving internally. This is a huge problem because I don't know how many have been affected. There may be many lost emails we don't know about.

Second, it looks like I can't trust the delivery report. It says pending for some emails which didn't arrive, but it also says pending for some which did arrive. That is no good at all.

For info the server is running Windows Server 2012. I have run a Microsoft Update to check if there are any to apply and the only Exchange one is a spam filter update, which I doubt has any bearing but I will apply when I get chance.

Many errors relating to - Winsock error code: 10060 win32

October 12, 2016, 1:14 am
$
0
0

Looking through the SMTP send logs I've come across lots of errors mentioning this:

Winsock error code: 10060, Win32 error code: 10060, Error Message: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 159.15.129.84:25"

AND

,,"Failed to connect. Winsock error code: 10061, Win32 error code: 10061, Error Message: No connection could be made because the target machine actively refused it 192.64.119.254:25"

There are over a 1200 winsock related errors per day in each SEND log.

Any help with this would be greatly appreciated.

Thanks,

DG

Is it possible to exclude domain within send connector? Exchange 2010

October 19, 2016, 1:57 am
$
0
0

Hello,

I have an exchange 2010 server with some antispam servers in front. Because of the setup we have, I have to use two different send connectors - 1 one for email to a specific domain which goes directly to the internet (cost 1) and another 1 for all other domains (cost 100).

The problem I have is that twice now, and only when the email with the large attachment is sent, server decides to use the connector to the antispam which causes a loop and I have massive queues of email stuck on exchange.  

So my question is, is there a way to exclude a domain name from the send connector? Use this connector for everything but contoso.com?

Thanks in advance.

Peter

Hybrid Exchange MX records

October 19, 2016, 10:22 pm
$
0
0
Would like to know where does the MX records point to ..in an hybrid exchange deployment.

add mailbox permissions exchange 2013 powershell to all mailbox

October 19, 2016, 10:30 pm
$
0
0

Hi 

I need to a power shell command to give user < full access Rights > to all mailboxes

Also , in case if I want to remove this permissions , what is the power shell command 

Regards, 

Mahmoud

How can i redirect mails from other smtp server only to certain email addresses?

October 20, 2016, 4:00 am
$
0
0

Hi there guys, i need your help.

I got test environment with smtp server (not EX). I can not find exchange 2010 forum so im writing here.
What do i need?

I need to get emails from that smtp server to exchange and allow to send it to other company but only for certain addresses. For example, that smtp server is domain named test.com(.local). I want to send emails from my internal test smtp server to my exchange. I do not want to allow all emails been send to other company. From all this emails i can send some of them to recipients:

user1@friendexternaldomain.com, user5@friendexternaldomain.com and user 13@friendexternaldomain.com.

Other emails cannot be send (from that server).

Structure looks like here:
test smtp server -> exchange -> postfix as forwarder (and here we got rule that friendexternaldomain.com is send by vpn to our friend company, other mails to otherexternaldomains.xxx goes to the internet). I know all forwarded mails will be send by postfix to friendexternaldomain.com but im afraid that plp can write manually private addresses and it will be directed to the internet). I just want to be sure that mails from internal test smtp send to this defined recipients exchange will forward, and if smth comes from this internal server and the recipient will be other than defined, exchange will not forward it to postfix). All other company mails must work like its working now. 

Can i do smth only on exchange, without reconfigurin last email server (postfix forwarder) ? If im not clear please ask.

Search

Emails sent,receive and size of a single user in exchange 2013 for last 30 days

October 13, 2016, 5:07 pm
$
0
0
Hi,

Need urgent help. Please help me to create the report in below format in exchange 2013 for a single user.

Daily Traffic Summary from 2016-09-01 to 2016-09-30

Selection of mailboxes:

Rahul Mallaiya, rahul.mallaiya@abc.com


Day Sent Number Sent Size, MB Received Number Received Size, MB
Thursday, 2016-09-01 0 0 107 5,31
Friday, 2016-09-02 0 0 100 6,23
Saturday, 2016-09-03 0 0 32 0,84
Sunday, 2016-09-04 0 0 56 0,66
Monday, 2016-09-05 0 0 115 17,96
Tuesday, 2016-09-06 0 0 103 5,48
Wednesday, 2016-09-07 0 0 112 5,37
Thursday, 2016-09-08 0 0 98 6,24
Friday, 2016-09-09 0 0 148 16,52
Saturday, 2016-09-10 0 0 30 1,01
Sunday, 2016-09-11 0 0 89 2,72
Monday, 2016-09-12 0 0 190 51,63
Tuesday, 2016-09-13 0 0 149 43,54
Total 0 0 1329 163,51

Date: 1 October 2016; Multiple sending counted1

Regards, Rahul

Clearing Specific Queue on Schedule

October 20, 2016, 1:57 pm
$
0
0

I need to setup a Powershell script to periodically delete all emails in a specific Queue ID. I have tried the following and receive errors (following PS line post):

Get-TransportServer | Get-Queue | Get-Message -ResultSize unlimited | where {Queue -eq "<server>\<queueID>"}
 | Remove-Message -WithNDR $False

Errors:

Pipeline not executed because a pipeline is already executing. Pipelines cannot be executed concurrently.
    + CategoryInfo          : OperationStopped: (Microsoft.Power...tHelperRunspace:ExecutionCmdletHelperRunspace) [],
   PSInvalidOperationException
    + FullyQualifiedErrorId : RemotePipelineExecutionFailed

A positional parameter cannot be found that accepts argument '<server>\<queueID>'.
    + CategoryInfo          : InvalidArgument: (:) [Get-Queue], ParameterBindingException
    + FullyQualifiedErrorId : PositionalParameterNotFound,Get-Queue

What am I doing wrong? Manual deletion of the stuck emails is not acceptable, it needs to run on a schedule. Please advise. TIA

Namespace sharing between 2 Domains (Exhcange 2010) without contacts.

October 14, 2016, 4:49 am
$
0
0

Hi

following these articles to share a domain between 2 differnent exchange orgs works ok without contacts.

http://exchangeserverpro.com/how-to-share-an-email-domain-between-two-mail-systems/

https://technet.microsoft.com/en-us/library/bb676395(v=exchg.141).aspx

DomainC address is setup as an accepted "Internal relay" domain on DomainA "Receiving" and as Authorative on DomainB.

A send connector is done from DomainA to DomainB.

Mail flow works fine and email is delivered to both orgs and NDRs are also created.

Without using a contact if a user in DomainB sends an email to someone in DomainA using DOMAINC as the email address then delivery fails as there is no connector back from DomainB to DomainA for it to forward this way for checking.

IF a connector is put in back in this direction is there now a definite chance of mail looping ?

thanks for any responses

Mail flow via high latency / slow link between sites

October 24, 2016, 1:22 am
$
0
0

Organization has two Exchange 2013 servers installed in different sites. Sites are connected via satellite link with high latencies (600-1000ms). In the near future TCP-acceleration on network equipment will be disabled because of encryption enforcement. Without TCP-acceleration single TCP (and SMTP) session speeds up to 200kbit/s maximum.

It looks that Exchange servers do not create more than one SMTP session when transferring messages from server one to another inside of organization and when we turn TCP-acceleration off, messages just stand in queue waiting for other messages to transfer.  If Exchange could create for example a new SMTP session for every message it would help in our situation.

Is there a way to increase a number of simultaneous SMTP sessions between two Exchange servers, or is there another way to speed up messages transfer in our situation?

Does Exchange behavior vary in other versions? 2010? 2016?

Thanks!


Erro do SQL Management Studio

October 23, 2016, 9:42 am
$
0
0

Bom dia,

Eu tenho o Microsoft SQL Server 2016 instalado no meu PC (Windows 10 Home 64-Bit). Quando abro o SQL Server Management Studio e escrevo o Server Name (supostamente o nome do meu PC), aparece uma mensagem de erro.

Já tentei com o servidor MySQL do XAMPP ligado, mas dá o mesmo erro.

Podem-me ajudar?

Obrigado,

Guilherme

Creating receive connector on exchnage 2013 for Oracle EBS not working

October 23, 2016, 9:33 am
$
0
0

Hi All,

I wanted to configure a receive connector for company's EBS which uses IMAP ,i am aware exchnage 2013 uses only secured connection and it will work on imaps ,i created the connector and set the below permission but its not working.

i get the below error when i do telnet form the server

Regards

JAck

 

TechGUy,System Administrator.

'550-Message refused by spam filter

October 24, 2016, 1:02 pm
$
0
0

Hi guys,

in our organization we are using Exchange 2013 latest build, we pick up the emails using our POP 3 connector from the domain registra  and send usining our ISP Smarthost using port 25 because port 587 never works.

lately every emails we sent its bounce back with the warning '550-Message refused by spam filter |

Can you please advise how to fix this irritating issue ?

a much appreciate it

Search

Exchange Server 2013 and ms-Exch-SMTP-Accept-Authoritative-Domain-Sender

January 8, 2015, 11:18 am
$
0
0

Hello, Team!

I think I’ve found a serious issue in last CU releases. This is the case:

1 Multirole server Exchange 2013 SP1 (and older) , one creceive connector from internet to this server, no edge, nothing.

I care about preventing spoofing my company’s email addresses, and remove remove the ms-Exch-SMTP-Accept-Authoritative-Domain-Sender transport permission from anonymous senders.

To do this, we usually simple run powershell command

Remove-ADPermission <ReceiveConnector Name> –user “NT AUTHORITY\Anonymous Logon” –ExtendedRights ms-Exch-SMTP-Accept-Authoritative-Domain-Sender

This command works on Exchange SP1, the client (telnet session, f.e.) which try spoof address of company will be refused. (see screenshot below)

But in Exchange 2013 CU5, CU6 and even CU7 release this revoke permissions DOESN’T WORKS without any errors, softly. I've try Powershell and ADSI but unsuccessfully.

Then we take off permission on connector above, we keep 3 default permissions:

Accept-any-sender

Accept-Routing-Headers

Submit-Message to Server

It is wonderful works only on server SP1, but not on servers with older versions, which have right settings.

The saddest thing is I have information about Office 365 this behavior reproduced too. And I also think what in your lab you could take 15 minutes and play this simply thing....

I found only that information on connector side is diffenent on SP1 and CU5,6,7.

This is normal connection on SP1, when somebody try spoofed address. We can see a 250 AUTH Response on server side, and server refuse fake connection, all right.

And on CU5 and newest versions we doesnt see this code. Maybe auth mechanism miss something?

Any suggestions? On MS connect site a didn't found exchange bugs topic :)




Check for list of email messages awaiting moderation\approval

October 25, 2016, 7:15 am
$
0
0

Hi all,

I have an Exchange environment where, in order to protect against malware, some document types are quarantined. Occassionally, despite approving, the email seems to get stuck awaiting further approval but I dont see the notification.  Is there a powershell script that I can use to see what messages are awaiting moderation\approval?

Thanks

Craig

X-Mailer: iPhone Mail Spoofing... Defense Suggestions?

October 25, 2016, 1:49 pm
$
0
0

About once a month I'll have a user that's bombarded by undeliverable emails (roughly 1,000+- of them). Each of these have one thing in common. A line that reads "X-Mailer: iPhone Mail ". Though they display the origin of the server as mine. I am skeptical that it's coming from my server, primarily because I've exhausted any additional way to find it on my exchange server. 

Is there a way to protect against these types of attacks or ways to some how trace where they could be actually originating from? I'm open to any suggestions really.
Thank you kindly!

Jesse

Support for TLS 1.2 over Exchange 2013 on Server 2012?

August 19, 2013, 1:12 pm
$
0
0

Greetings,

We're trying to roll out TLS 1.2 in our test environment and can't seem to get Exchange to work with the protocol.

We've been using this method to enable TLS 1.2 (and disable the other protocols - TLS1.0, SSL2.0, SSL3.0, PCT1.0): http://www.adminhorror.com/2011/10/enable-tls-11-and-tls-12-on-windows_1853.html

We originally tried using Exchange 2010 on 2008 R2, but then I ran across this article saying that it is not supported: http://support.microsoft.com/kb/2709167/en-us

We've since tried to set it up with Exchange 2013 on Server 2012. Still no luck. The only time Exchange wants to work is when TLS1.0 is enabled.

I suspect that TLS1.1 and TLS 1.2 are also not supported on Exchange 2013, or that I'm changing the wrong registry keys, but I wanted to find confirmation. I've searched extensively and can't find any documentation leading me to believe one way or the other if it's supported.

Any help or insight would be greatly appreciated. Thanks!

--Aric

First E-Mail Message

October 26, 2016, 8:02 am
$
0
0

Hi!

Is it possible to check when did a user send his first e-mail message in exchange 2013?

Thanks.

Viewing all 4249 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>