Solved

Why can't POP3/IMAP4 clients send to Distribution Lists in AD?

Posted on 2006-07-09
7
261 Views
Last Modified: 2010-03-06
Howdy Experts,

I have a problem in where a pop3/imap4 client sends an email to a Distribution List in Active Directory. Mail Marshall recieves the email, processed it and forwards it to Exchange but the email is not recieved in DL Members' inbox.

We're rolling out RPC which will resolve this problem, however the the rollout phase will be over the next few months and pop3/imap4 clients will still be live.

The Environment:
Exchange 2003 Front-End
   - OWA and soon to be RPC Proxy
Exchange 2003 Back-End
   - Mailstore
   - POP3 and IMAP4 services are and running, I know this should be done through the front-end but this required
     setting up another 'domain' for Exchange which my organisation was not keen on.
   - SMTP VSI set to allow relaying from Mail Marshal and Domain Users, Authenticated Users has default options set.
Mail Marshall SMTP
   - Processes all SMTP deliveries

I've visited Simon's website and found this article http://www.amset.info/exchange/smtp-relaysecure.asp. Just wondering if anyone else has come across this problem and what was their resolution.

Riqsta


0
Comment
Question by:Riqsta
  • 4
  • 3
7 Comments
 
LVL 104

Expert Comment

by:Sembee
Comment Utility
Does message tracking show the message coming in?
Have you restricted the access to the distribution groups in any way? I tend to lock them down so that external people cannot send to them. If your POP3 users are sending their messages via an external server, and not the Exchange server, then the restriction may be causing the problem.

Simon.
0
 
LVL 1

Author Comment

by:Riqsta
Comment Utility
On Mail Marshal it shows the message being delivered to Exchange and Message Tracking confirmed the message was recieved in Exchange.

POP3 users are sending via MM, Domain Users have Send To access on the DL in question. I'll continue looking at the restrictions/security settings.

Riqsta
0
 
LVL 104

Expert Comment

by:Sembee
Comment Utility
If the distribution lists are set to only accept email from domain users, then that is your problem. The email that is coming in from your Mail Marshal application is not a domain user. It is an anonymous connection and will be blocked. The fact that it is coming from an internal IP address will not work - otherwise all anyone would have to do is spoof the from address to abuse the list.

Simon.
0
How does your email signature look on mobiles?

Do your employees use mobile devices to reply to emails? With mobile becoming increasingly important to the business world, it is in your best interest to make sure that your email signature looks great across all types of devices.

 
LVL 1

Author Comment

by:Riqsta
Comment Utility
So if I add the MailMarshall server object to allow Send To access to the DL will this then resolve the problem or shall I configure MM to use a Domain account?
0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
Comment Utility
I would be surprised if either works.
I haven't used Mail Marshal, but if it is the same as other spam appliances and applications, once it has accepted the email message it just sends it as a standard anonymous SMTP message to the Exchange server - which is how Exchange would receive the message if it was receiving the email directly.
If the Mail Marshal product can be configured to authenticate when it sends email to your internal email server, then you may be able to get the messages distributed to the list. However that would also allow spammers to abuse your lists - because the session would be authenticated.

I don't think you are going to be able to achieve what you want without opening the distribution lists to abuse, unless you change your configuration so that IMAP/POP3 users send their email through the Exchange server, not the Mail Marshal server.

Simon.
0
 
LVL 1

Author Comment

by:Riqsta
Comment Utility
Yes you're assumption is correct. Yea it's strange as I can can send email from a POP3 client to DLs fine but maybe that's because I'm an administrator. I'll leave this question open for the meanwhile in case I do resolve it.

Riqsta
0
 
LVL 1

Author Comment

by:Riqsta
Comment Utility
I ended up opening up the DL in question to accept messages from Everyone. Not ideal but its working....Consider this questioned answered.
0

Featured Post

Wish Marketing would stop bothering you?

Is your marketing department constantly asking for new email signature updates? Are they requesting a different design for every department? Do they need yet another banner added? Don’t let it get you down! There is an easy way to manage all of these requests...

Join & Write a Comment

Resolve DNS query failed errors for Exchange
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now