Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


IMCEAEX NDRs after migrating PSTs to Exchange or Office 365

Published on
3,655 Points
Last Modified:
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In recent project, we helped a company diverge from their parent organization to a new domain. As a result of the separation, the parent company decided to only provide PST files that we would use to populate the Office 365 mailboxes.

After we imported over 700 PSTs to their associated mailboxes in O365, users began using their PSTs to access and reply to historical items that were not imported.  The result of replying to emails that came from an environment that had Exchange in an environment that does not have Exchange resulted in NDRs and confusion for the users.  The confusion had to do with the fact that the reply seemed to have the correct email address but in actuality had some weird address that attempted to direct the reply back to the originating Exchange organization.  Since that organization is no longer accessible, messages failed to be delivered.

The consequence was an NDR with information that included text similar to the following.  This info did not exist in the O365 tenant.

Open in new window

A little research lead me to this article … IMCEAEX non-delivery report when you send email messages to an internal user in Office 365 dedicated.  The first method in the article would cause the IT staff to contact each user to help them clear their Outlook name cache, however, it wouldn't have worked since these were brand new Outlook profiles, in a brand new domain, on brand new machines.

To resolve the issue, we needed to somehow add the cached LegacyExchangeDN attribute (that was causing the NDR) as a proxy address in AD that would then be synced to O365.

So, using method 2, we were able to convert the information in the NDR to a readable X500 address.


Open in new window

This address actually matched what was in the parent company Exchange environment.  The CN, in this example, is a reference to the user principle name. And since we had this info, were able to create a list of X500 addresses for every user in the new company that was moved to O365.

With this information, we then used PowerShell to add a proxy address to every user and group in AD.

Get-ADUser -Identity "email.user1" | Set-ADUser -Add @{'ProxyAddresses'=@("X500:/O=FIRST ORGANIZATION/OU=FIRST ADMINISTRATIVE GROUP/CN=RECIPIENTS/CN=326000960")}

Open in new window

After adding the proxy addresses and confirming they had been synced to O365 (via DirSync), the users were able to successfully reply to the historical mail items from their PST files.


Author:Todd Nelson

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Join & Write a Comment

This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month15 days, 2 hours left to enroll

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month