Internal exchange email "You do not have permission to send to this recepient"

Posted on 2008-11-06
Last Modified: 2012-05-05
I know there are a couple of threads about this issue, but no-one seems to have a bullet-proof answer.

In our exchange setup we have an account intended to be used by temps as a single email address point - ie it is job based not person based.  When a temp arrives they are given their own AD & Exchange accounts to access the network, and permissions are given for them to have full access to the job email account.  Their outlook profile is setup so that the job exchange account is the primary account, and their personal email address is opened as an 'additional mailbox'.

Our current temp can not send from the job email account - internally or externally.  There are no logs in exchange for the job account having sent the email and the error message is sent to the temp's personal inbox.  Copy of the full text of the message below:
From:       System Administrator  
Sent:      06 November 2008 11:04
To:      Temp
Subject:      Undeliverable: RE: Permissions

Your message did not reach some or all of the intended recipients.

      Subject:      RE: Permissions
      Sent:      06/11/2008 11:04

The following recipient(s) could not be reached:

      IT Support on 06/11/2008 11:04
            You do not have permission to send to this recipient.  For assistance, contact your system administrator.

There are no error codes in the message.  We use this setup elsewhere in the organisation quite sucessfully and so far as I can see by making comparisons - permissions are correct.  If anyone can shed any light or suggest where else to look it would be much appreciated.

Question by:dchoxford
    LVL 4

    Expert Comment

    Here's the solution:

    Contact your ISP and let them have it.  I just built my Exchange server a week or two ago, and just got 3 mails kicked back as "not having permission to send" etc.  I contacted my outgoing SMTP ISP, and they (like most) have a 1000 mail limit.  Now, I know what you're gonna say "37 people sending 1000 mails in 24 hours? that's impossible!"  It is, but I find out spam can actually generate from your server to recipents on your server or outside.

    Just as a test, go to Message Tracking and search all mails from midnight one day to 11:59:59pm the next day and see if you have a lot of outgoing spam.

    Make sure your SPF record is correct (mine is now)
    Make sure you have reverse DNS in place (i always did)
    Make sure you have good anti-spam software (GFI is awesome but it didn't help me here)
    And it never hurts to contact the hosts that kicked your mail back (mine was yahoo).  They like to blacklist us small, newborn Exchange orgs.  You can have them un-do it with a simple phone call.
    and it's always good to find an SMTP provider that doesn't have this 24hour flagging limit garbage.  let me know if you have one i can switch to ;)  Might I not suggest

    Author Comment

    Thanks for the fast response, but surely this wouldn't affect internal emails? - which are also a problem.  they won't be sent externally, they surely should be delivered direct.
    LVL 16

    Accepted Solution

    Hi dchoxford,

    One of 2 possibilities I can think of:

    Does the user have Sent on Behalf of permission for the temp mailbox?


    Did someone add the temp mailbox to a Security Group?

    LVL 4

    Expert Comment

    ESM->Administrative Groups->First Administrative Group->Servers->[MyServer]->Protocols->SMTP->Default SMTP Virtual Server->Proporties->Access->Authentication->Users and grant Authenticated Users the Relay Permission.

    Ok sorry try that

    Author Closing Comment

    Always the little tucked away thing!  It was the 'send on behalf of' that solved it.  Thanks!

    Featured Post

    Don't lose your head updating email signatures!

    Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users should you!

    Join & Write a Comment

    Create high volume marketing opportunities using email signatures with these top 10 DOs and DON'Ts of email signature marketing.
    "Migrate" an SMTP relay receive connector to a new server using info from an old server.
    In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
    In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now