Solved

Exchange 2003 NDR #5.7.1 and event 7004

Posted on 2004-09-10
6
734 Views
Last Modified: 2012-06-27
Hi,  I hope yall can help.

We have an exchange 2003 environment (Native Mode). I have a few users accross the company that get NDR #5.7.1  which basically says"You do not have permissions to send to this recipient..."
This does not happen all the time, just occasionally.  They are able to send to the same address ok, but then some times they get the NDR.  I check the event logs and we are getting alot of EVent 7004 errors.  Which says "This is an SMTP protocol error log for virtual Server ID 1, connection #310.  The remote host "xxx.xxx.xxx.xxx", responded to the SMTP command sent "xexch50" with "504 Need to authenticate first".  The full commad sent was "XEXCH50 2144 2".  This wil probably cause the connection to fail.  
I do not know if these two issues are related.  I do not think so, because we are getting this event every few minutes or so, and the NDR's are not near that often, maybe one every few days.  I have looked at various articles and have had no luck.  Has anyone seen this before?  Any Ideas?
This is difficult because it is random, at least the NDR #5.7.1. is.  An interesting note, when looking at articles for the event ID 7004, The remote host has a FQDN.  I get only IP's.  Not sure if that has any meaning.  I did read some where that its possible DNS issue.  Please help!
0
Comment
Question by:Louis-Adams
  • 2
6 Comments
 
LVL 12

Expert Comment

by:BNettles73
ID: 12032031
I saw this but it was more for E2K ... probably not much help but interesting http://support.microsoft.com/default.aspx?scid=kb;EN-US;283287


Also, make sure you have a reverse PTR record setup for your MX ... I'll check back this weekend and try to give you some other ideas ... a bit busy with migration tonight so don't have much time ...

Brian
0
 

Expert Comment

by:sewellcm
ID: 12710950
We are currently experiencing this same exact issue and can not find resolution to it on Microsoft's site or here. Has anyone else had any luck on this to date?

Thanks.
0
 
LVL 12

Accepted Solution

by:
BNettles73 earned 500 total points
ID: 14303832
Leaving this here in case someone comes across the question and wonders what the probable solution was:

The user never really responded but given the NDR there were other possibilities:

Permissions problem is the primary cause for 5.7.1.  For some reason the sender is not allowed to email this account.  Perhaps an anonymous user is trying to send mail to a distribution list. Check SMTP Virtual Server Access Tab.  Try checking this box: Allow computers which successfully authenticate to relay
User may have a manually created email address that does not match a System Policy.

The second possiblitity is delivery restrictions or as I mentioned earlier to check the reverse PTR record. Some ISPs do not allow you to send email through their networks if you don't have a reverse PTR.

It could have also been issues with the recipient policy. Review, reconfigure, rebuild if necessary.

Brian
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
how to add IIS SMTP to handle application/Scanner relays into office 365.

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now