All,
So I'm trying to send mail from inside -> Internet, and my messages are getting stuck in the queue saying "451 5.7.3 Cannot achieve Exchange Server Authentication."
This is a brand new Exchange setup, brand new receive connector created by default.
All of my edgesync stuff works fine. I can start-edgesync, works great. No errors. No failures.
I thought it may have been the TLS certificate (I initially had the original self-signed cert).
The only thing I'm wondering is if it's failing because I applied my single unified cert to this server (the same cert I'm using for OWA/Autodiscover/etc). I put the 'smtp.contoso.com' in the SAN field.
I can SEND mail from the outside just fine. It shows up in my internal mailbox. So Edge -> CAS/Hub is working great.
Pretty standard setup.
2x Dual Role CAS/MBX boxes in a DAG
1x Edge Transport in DMZ
No firewall between CAS/MBX servers
Firewall between CAS/Edge
Ports open between CAS/Edge:
2525 (bidirectional)
25 ( bidirectional)
50389 (CAS -> Edge)
50636 ( CAS -> Edge)
