[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now


URGENT Relay help - please

Posted on 2006-06-29
Medium Priority
Last Modified: 2008-02-01
Exchange 2003

I have a mailbox called Joe Bloggs (for example)
His Primary SMTP address is joe.bloggs@mydomain.com

I have created a "Contact" to divert his mail to with the SMTP address of joe.bloggs@otherdomain.com

Under the Delivery Option within Exchange General in Active Directory against his account - I have set up the Forward To option to forward to the contact (joe.bloggs@otherdomain.com)

I can send email internally to him using the Global Address List - but when I try and sent mail externally (from a mail account such as hotmail etc), I get a delivery failure sent to my hotmail address saying the following:

Status: 5.7.1 (Permanent failure - security: delivery not authorised, message refused)

I thought it might be becuase i did not have a recipient policy for mydomain.com - but i added one the other day and still it does not work.

Please can someone help me.
Question by:naifyboy123
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
LVL 104

Expert Comment

ID: 17011356
That message isn't an Exchange message. So it is probably coming from something else.
Do you route your email via your ISP for example?


Author Comment

ID: 17014499
we go through mailsweeper first.

here is the full error message - if it helps more - perhaps this shown in full now is an Exchange meesage.

Reporting-MTA: dns; mailfilter1.XXX.co.uk
Received-From-MTA: dns; XXXXX.com (unverified [xxx.xxx.xxx.xxx])
Arrival-Date: Fri, 30 Jun 2006 00:14:45 +0100

Final-Recipient: rfc822; john.bloggs@mydomain.com
Action: failed
Status: 5.7.1 (Permanent failure - security: delivery not authorised, message refused)
Remote-MTA: dns; {IP address of our Exchange server}
Diagnostic-Code: smtp; 550 5.7.1 Unable to relay for joe.bloggs@mydomain.com
LVL 104

Expert Comment

ID: 17016780
This line is not an Exchange message:
"Permanent failure - security: delivery not authorised, message refused"

The Diagnostic code below is.

I suspect that your mailsweeper application is probably causing the problem. When you use a contact to forward, the messages comes in and goes straight back out again. As such, the message can appear to come from the original address on the message, not from the internal server. I have seen some applications cough over that type of configuration, because the message isn't coming from a domain name that they recognise.

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why


Author Comment

ID: 17016838
I have totally removed the forward and still get the same error.

I can see the mail coming into our mailsweeper server in the queue. it just does not relay it to Exchange.

All other domains work fine.

LVL 104

Expert Comment

ID: 17017509
Is the mailsweeper application doing any kind of LDAP lookup on the address to see if the account exists?


Author Comment

ID: 17017731
no - it just sends all the mail to the exchange server using ip address

Author Comment

ID: 17017771
i just figured it out!

in the recipient policy i did not have the "The Exchange Organisation is responsible for all mail delivery to this address" option ticked.

I ticked this option and it started working.

thanks for all your help anyway.

Author Comment

ID: 17017772
Request made to close this question

Accepted Solution

GhostMod earned 0 total points
ID: 17047239
Closed, 500 points refunded.

Community Support Moderator

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As much as Microsoft wants to kill off PST file support, just as they tried to do with public folders, there are still times when it is useful or downright necessary to export Exchange mailboxes to PST files. Thankfully, it is still possible to e…
With so many activities to perform, Exchange administrators are always busy in organizations. If everything, including Exchange Servers, Outlook clients, and Office 365 accounts work without any issues, they can sit and relax. But unfortunately, it…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question