Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 4249 articles
Browse latest View live

How to send an email from shared mailbox?

August 15, 2018, 9:20 am
$
0
0

I know this is a very vague question.

I want to deep dive into this question

Scenario 1: User A has send as access to the shared mailbox. But when User A tries to send email to from the Shared mailbox

This is what User A does click- New email - options -from - select the shared mailbox name and tries to send an email and he gets an undeliverable message.

This message could not be sent. Try sending the message again later, or contact your network administrator. You do not have the permission to send the message on behalf of the specified user. Error is [0x80070005-0x0004dc-0x000524].

When I gave him the send as access why is it throwing the error that the user doesnot have send on behalf of permission.

Scenario 2: User B migrated to exchange online tries to send email from the shared mailbox he has (send as) access and get an message failure that  (shared mailbox is on premise)

You don't have permissions to send on behalf of the specified user.

please can some one elaborate on what is going on?

Search

Exchange 2013 Mail Delivery Slow

September 12, 2018, 1:08 am
$
0
0

Dear all,

i have a question from you all, i have 3 exchange 2013 server with update CU20, 3 MAILbox and cas servers, two are primary and one at DR. i have a question that is when we enable two receive connectors in EXCH02 primary, emails have to deliver very slow/delay, it receives after 8 to 10 minutes. when we disable receive connectors in exch02, routing of emails with exch01 perfectly. 

connectors name: default "Server Name" and Client Proxy "Server Name" 

I also checked the settings with server 1, setting of both receive connector is same. Let me know the solution, what can we check further? 

gmail messages

September 12, 2018, 6:18 am
$
0
0

all my emails from TELKOMSA server which is a POP server are delayed to Gmail accounts and then ultimately I get failure messages. I cannot send to gmail from my computer. PLease assist.

Microsoft Exchange Server Auth Certificate about to Expire on the 22nd !

September 13, 2018, 4:33 am
$
0
0 
My Microsoft Exchange Server Auth Certificate - Self Signed Certificate about to expire!!

Do I need to renew this?

My understanding is that its used during setup and therefore may not be needed?

I could be wrong.

If its needed - How do I replace it?... I did a search but...

dynamic distribution group in an Exchange hybrid deployment

September 13, 2018, 8:03 am
$
0
0

1- the users does not received email send to dynamic distribution group after migration to office 365 cloud .

2- and cannot see the dynamic distribution group from the cloud "ECP"

Ahmed Zidan Network Administrator

Emails not going through, ExplicitlyDiscarded, HADISCARD

April 6, 2015, 7:19 pm
$
0
0

Hi,

We got an application sending out emails internally to our end users, it does so in bulks of about 50 or so. The application sends via a Exchange 2013 receive connector where the application server is listed as an allowed relay.

About 30% of the emails go through fine, but most are dropped in Exchange as such:

TimestampSourceContextSourceEventId

2/04/2015 13:02ExplicitlyDiscardedSMTPHADISCARD

Its different recipients that get dropped every time and no other issues sending to any of these users.


What is the port used between smtp server and MX server?

November 21, 2014, 5:39 pm
$
0
0

Hi,

What is the port used to connect from smtp server to MX server of recipient server?

I think it's port 25 but this what I'm confused.

Send email using smtp server to recipient: works

Telnet on port 25 from smtp server to recipient MX server: connection failed

Is there something I missed? 

Disclaimer logic

September 14, 2018, 7:44 am
$
0
0

Hi,

I have created a series of rules for disclaimers. There are several legal entities we cater for and so it firstly looks at the email address. We then separate mobile phone users from non-mobile phone users (mobile users are part of a specific group).  There are also some "exceptions" (members of another group) for whom a slightly different disclaimer is required.  Each rule says to stop processing further rules.  The logic works like this:

  • Apply disclaimer A if email suffix 1 and member of "mobile phone users" UNLESS member of "exceptions"
  • Apply disclaimer B if email suffix 1 and member of "mobile phone users"
  • Apply disclaimer C if email suffix 1

So the disclaimers should apply:

  • Disclaimer 1 to mobile phone users who are not exeptions
  • Disclaimer 2 to mobile phone users who are exceptions
  • Disclaimer 3 to non-mobile phone users

The rules are in force and we have a mobile phone user who IS an exeption whose is getting Disclaimer 1 ... so the exceptions aren't working.  He is definitely a member of the exceptions group - any ideas what I'm doing wrong?

Thanks.

Search

Message Approval to group, different moderator for different sender

September 18, 2018, 3:31 am
$
0
0

Hi all,

I am facing a very troublesome request by users about having different moderator for different sender for an email group containing all users.

scenario:

email group: all_users. it contains all the email users. not everyone allow to send to the group. only some users from each department are allowed to send to this group.

if a sender from HR department is sending the email to the email group all_users, only the moderator from the HR department can make decision on the approval process.

if a sender is from IT department wants to send email to that email group, only the moderator from the IT department can make decision on the approval process.

anyone knows if it is possible to have such setup for the email group about the message approval?

thanks so much.

Add second exchange server for a Dag and now mail delivery from external source is delayed

September 18, 2018, 9:29 am
$
0
0

We added a second server that will be used for DAG. Once we added the second server we noticed that mail delivery from approver was delayed in some cases by several hours. We did not configure the DAG yet.  I think we are going to need to uninstall exchange from the second server as this has become a real issue.  any  Ideas why adding the second server would have caused this?

 

Delivery has failed to these recipients or groups

September 3, 2018, 3:08 am
$
0
0
For some reason or the other we cant not send mails from Exchange server to other email domains for example user@gmail.com or @yahoo.co.uk. we only receive mails from within and others outside our domain can also send mails to us.  please help 

Exchange 2013 On Prem - OOTO / NDR Replies Fail DMARC Authenication Outbound

June 8, 2018, 10:51 am
$
0
0

Overview - 3 On Prem Installations of Exchange 2013 on Server 2012 R2 in a DAG configuration. All exchange boxes are running build 1367.3.

Issue - Automatic Replies (Out of the Office) and NDR responses from users are failing DMARC checks on the receiving end / being bounced. This is because the Return-Path header value and Mailfrom header values of both NDR and Automatic replies are set to null or <>. This results in the DMARC not having a domain to query against, so the DMARC fails all checks and the recipient domain bounces the email. 

The reason why the headers are set to null is because of RFC 2298 - this makes sure that the automatic replies / NDRs do not keep going back and forth, creating an email loop that could potentially bring the servers down. However, RFC 2298 forces RFC 5321 MailFrom header as <> or null, which doesn't give a DMARC policy anything to pull its query from, thus the DMARC fails and the email is bounced. To visualize this -

NDR/OOTO Response:

MailFrom: <>

From:Email@domain.com

HELO/EHLO: mail.outboundsmtp.com

DMARC Fails

Normal Email:

MailFrom: Email@domain.com

From: Email@domain.com

HELO/EHLO: mail.outboundsmtp.com

DMARC - Passes - the policy has a RFC 5321 header to pull its information to query DNS and passes. 

The reason the DMARC policy is pulling from the 5321 header is to help prevent spoofed emails, where the envelope header may possibly be spoofed, which would then pass the DMARC check, allowing a spoofed email into the domain. 

My question is for anyone that has a strict reject 100% or quarantine 100% DMARC policy, how did you overcome this? Are you just allowing your NDR/OOTO replies to be bounced / rejected?

I've tried 2 solutions. Main idea behind my solution was to remove the null value or <> and replace it with a donotreply@domain.com address so that the DMARC has a RFC 5321 header to run against, thus both RFC 5321 and 5322 domains would technically align and pass the DMARC query.

1. We use mimecast as our email gateway / filter. I've tried to create an address alteration policy going outbound looking for <> as the header value to then input donotreply@domain.com into the header, but mimecast cannot detect the <> value in the header because it is technically null or blank. Using a "null" value doesn't work either. You cannot leave the value blank because some type of syntax is needed for the policy. Opening a ticket with mimecast, L2 engineers confirm that it is working as expected and this is a Microsoft / on prem deployment issue. 

2. Attempting to use a transport level policy to insert a donotreply@domain.com address into the header doesn't work either. I believe something in exchange is preventing the transport policy from executing. The policy I configured was anything with subject"Automatic Reply" or "Undeliverable" change header property of "Return-Path" to "Donotreply@domain.com" and "MailFrom" to "donotreply@domain.com. Doesn't work and tests to google / gmail do not pass dmarc still and show null values. 

For reference, I found 2 other issues on technet with the same issue. One solution proposed was to use an outside tool to manipulate the emails going outbound to rewrite the headers so that the DMARC has something to run against. Link here: https://social.technet.microsoft.com/Forums/en-US/9d17cd55-36b0-4d00-8114-d7f1e54fc725/dmarc-test-fails-on-out-of-office-replies-but-not-on-regular-emails?forum=Exch2016MFSM. Another extremely well explained post is here: https://social.technet.microsoft.com/Forums/en-US/51519377-48f5-4833-ac0d-4128eaf9c25e/how-do-you-setup-dmarc-to-allow-null-returnpath-rfc5321mailfrom-messages-out-of-officendr?forum=onlineservicesexchange

I cannot imagine this being intended nor do I think that a transport policy or using a third party tool to correct this is a real fix, but a work around for the issue. 

Any help is appreciated. 

Cheers,

Jason

Some internal emails getting delayed

September 19, 2018, 4:08 pm
$
0
0

Hey all, we have a single Exchange 2013 server and we're all connecting through Outlook 2013. Some of my users are having their emails delayed by up to a couple of days. I had one of our maintenance supervisors show me and it actually failed to send while I was there (I was amazed it failed while he was showing me-doesn't always work that way). He tried to send an email four times and it failed each time. Then he forwarded one from his Outbox and two others left with it. I'm not an Exchange guy but I have done basic tasks in it. In my Exchange 2007 server I could enter an email's information like who sent it and who was it sent to and when and I could see the tracking information. I checked the tool box in my 2013 server and I can't find anything like that. Any ideas on what's going on or what to look for?

Thanks,

Joe B

Exchange 2013 421 4.3.2 Service not available

September 23, 2018, 12:29 pm
$
0
0

Exchange Server 2013 running virtualized on Server 2012 Hyper-V host. All services are running. No errors in the Event Logs. No mail is flowing internally or externally. Test-MailFlow shows failure when testing local mailboxes from the Exchange Server console. Outlook client cannot connect. Error is "421 4.3.2 Service not available".

MS will not assist using partner tech support events because Exchange Server 2013 is out of mainstream support.

Effect on User created Websites in Exchange Server 2013 during Cummulative Update

September 24, 2018, 2:53 pm
$
0
0

Hello All,

I have Exchange Servers 2013 CU 13 in my environment and I have created a new website in the IIS to create new owa, ecp virtual directories to user login from internal and external networks. I am planning to upgrade to the Latest CU. As we all know that the new CU upgrade means installation of exchange from scratch. In my case do I have to re-create the new website again after I upgrade to the new CU or will the new website (owa and ecp virtual directories) be available even after the CU upgrade.

Search

TLS negotiation failed with error AlgorithmMismatch

September 24, 2018, 3:28 pm
$
0
0

Hi I just install an E2k16 server on my current e2k10 organization, Mail flow from e2k10 to e2k16 fails but works on the other way(e2k16 to e2k10), I get this error from the receive connector log on e2k6:TLS negotiation failed with error AlgorithmMismatch.

018-09-10T23:58:25.827Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,1,192.168.192.210:25,192.168.192.163:57170,>,"220 E2k16SRV.contoso.com Microsoft ESMTP MAIL Service ready at Mon, 10 Sep 2018 17:58:25 -0600",
2018-09-10T23:58:25.827Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,2,192.168.192.210:25,192.168.192.163:57170,<,EHLO E2k10SRV.contoso.com,
2018-09-10T23:58:25.827Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,3,192.168.192.210:25,192.168.192.163:57170,>,250  E2k16SRV.contoso.com Hello [192.168.192.163] SIZE 37748736 PIPELINING DSN ENHANCEDSTATUSCODES STARTTLS X-ANONYMOUSTLS AUTH NTLM X-EXPS GSSAPI NTLM 8BITMIME BINARYMIME CHUNKING XRDST,
2018-09-10T23:58:25.828Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,4,192.168.192.210:25,192.168.192.163:57170,<,X-ANONYMOUSTLS,
2018-09-10T23:58:25.828Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,5,192.168.192.210:25,192.168.192.163:57170,>,220 2.0.0 SMTP server ready,
2018-09-10T23:58:25.828Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,6,192.168.192.210:25,192.168.192.163:57170,*, CN=E2k16SRV CN=E2k16SRV 788B4ACD32E40E9142CC215E91B89247 A5F065E6F7F0537B680EEB2442B234BAE94A1885 2018-09-08T20:52:03.000Z 2023-09-08T20:52:03.000Z E2k16SRV;E2k16SRV.contoso.com,Sending certificate Subject Issuer name Serial number Thumbprint Not before Not after Subject alternate names
2018-09-10T23:58:25.829Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,7,192.168.192.210:25,192.168.192.163:57170,*,,TLS negotiation failed with error AlgorithmMismatch
2018-09-10T23:58:25.830Z,E2k16SRV\Default Frontend E2k16SRV,08D616BC9D84D342,8,192.168.192.210:25,192.168.192.163:57170,-,,Local

MCITP MCTS


Bounce backs not being received

September 25, 2018, 3:51 am
$
0
0
We are using a web based bulk email application to run marketing campaigns. I have it configured to send any bounce-backs to an address on our Exchange server, and verified this configuration. When I send a test email to an address that I know will bounce, the bounce message does not appear in the appropriate mailbox. It's definitely being passed through our spam filter, so why would it not be received?

Embedded Images are blocked on exchange 2013 SP1

April 25, 2017, 5:59 am
$
0
0
We are facing problem of blocking Embedded Images, we have changed the image type from jpg to png and disable the attachment filter on edge server but Embedded Images are still blocking on user end (outlook & OWA). When we sent an email to gmail it's working fine but when send to inside of organization the embedded image have destroyed. we are using an application that needs to send an email to outside and inside with embedded image through SMTP settings and we are using CAS server as a SMTP for sending email from application.  Please suggest workaround to cater this problem. 

Sensitive Word List - Content Filter

February 11, 2015, 3:49 am
$
0
0

Hi All

I am hoping someone will be able to shed some light on an issue i am experiencing.

I have enabled (Selected ON) the sensitive word list on the content filter within Exchange for my o365 subscription, however without knowing the exact words that are in the list, I have tested with some words that I'd expect to cause the email to be marked as spam however they still come through. Is there something else I should be doing?

Unable to add an e-mail address to the distribution group

September 27, 2018, 5:12 pm
$
0
0

Hi guys,

I've got Exchange online and I'm trying to add an a-mail address to the restriction list in one of the distribution groups but unable to do that since it gives me an error message below:

The action 'Set-DistributionGroup', 'AcceptMessagesOnlyFromSendersOrMembers', can't be performed on the object 'Board of Directors' because the object is being synchronized from your on-premises organization. This action should be performed on the object in your on-premises organization.

I'm aware that such changes must be done on premises but I wasn't able to do that in AD as well. Could you please advise what can be done in that case? Thank you in advance.

Viewing all 4249 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>