Exchange 2003 SP2 Intermittently tells it's own users Relaying Denied

Posted on 2008-01-31
Medium Priority
Last Modified: 2012-05-05
Here's an odd problem.  Running SBS2003 SP2 with Exchange 2003 SP2.  A user just received the following yesterday:

Your message did not reach some or all of the intended recipients.
      Subject:  RE: XXXX
      Sent:     1/30/2008 12:16 PM
The following recipient(s) could not be reached:
      'Remote Recipient' on 1/30/2008 12:17 PM
            You do not have permission to send to this recipient.  For assistance, contact your system administrator.
            <localdomain.com #5.7.1 smtp;550 5.7.1 <recip@remotedomain.com>... Relaying denied>
      'Remote Recipient 2' on 1/30/2008 12:17 PM
            You do not have permission to send to this recipient.  For assistance, contact your system administrator.
            <localdomain.com #5.7.1 smtp;550 5.7.1 <recip2@remotedomain.com>... Relaying denied>

User is setup to use Microsoft Exchange with no additional POP/SMTP profiles setup, so their Outlook client only talks to the Exchange Server.  The Exchange server kicked back an NDR stating that the user in the local domain doesnt now have permission to send to the recipient.  Looking at the SMTP log, it appears that it didnt even attempt to send the message to the SMTP connector, as the only references to the recipient e-mail was the second attempt, where the e-mail then went through.  The only thing different the local user did the second attempt was put the recipient addresses in the TO field instead of the CC field.

Anyone have any ideas on this.  I have another user who has reported this issue as well, and a second attempt at sending the e-mail is usually successful.

Question by:forthphaze

Accepted Solution

cedarghost earned 750 total points
ID: 20787096
This is typically cause by bad DNS settings, recipient policies having updating problems or SMTP being blocked at some point. In your case it is probably not your SMTP connector but something stopping the mail from getting to that point. Now I see you are getting a 5.7.1 errorand that indicates a problem with your Recipient Policy. Take a look at this article for some initial troubleshooting steps for this problem:

Author Closing Comment

ID: 31427189
I've read through everything on the link you posted above, and would agree that of all the scenarios theorized in the webpage, RP or message routing would have to be the likely cause.  Looking at the following:


It's evident that the error was produced in the Exchange MTA, because I do see both messages in the MTA log, but only the successful send attempt in the SMTP log.  I also found this link regarding the event ID codes:


And it appears that the Exchange server got confused and tried to send to the wrong MX.  There were three recpients in the e-mail, two of one remote domain, one of another remote domain.  The Exchange server attempted to send the message to all three recipients to the remote domain that only hosted one of the recipients.

Three months ago I removed Symantec MS for Exchange and IHateSpam, I'm guessing there's a correlation to this problem and those un-installs.

Since your link referenced DNS and MX errors, and led me to my answers, I'll award the points.

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange database can often fail to mount thereby halting the work of all users connected to it. Finding out why database isn’t mounting is crucial and getting the server back online. Stellar Phoenix Mailbox Exchange Recovery is a champion product t…
In my humble opinion (IMHO), TouchDown from Symantec is the best in class for this type of application, but Symantec has end-of-lifed it and although one can keep using it, it will no longer be supported or upgraded.  Time to look for alternatives t…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question