Another #550 5.1.1 RESOLVER.ADR.ExRecipNotFound problem
I am at my wits end with this problem and beg for your help. Let me break it down for you:
We have a domain (we'll call it company.com) hosted on 3 DC's. Mail is served up on a fresh new Exchange 2007 server. About 4 months ago we transitioned from Exchange 2003 to 2007. The 2003 server has since been completely decommissioned.
When we create a distribution list (post-transition) and someone internally sends an e-mail to it (e-mails from external addresses seem to work fine), they get the following NDR:
Delivery has failed to these recipients or distribution lists:
apr28
The recipient's e-mail address was not found in the recipient's e-mail system. Microsoft Exchange will not try to redeliver this message for you. Please check the e-mail address and try resending this message, or provide the following diagnostic text to your system administrator.
_____
Sent by Microsoft Exchange Server 2007
Diagnostic information for administrators:
Generating server: Mail.company.com
IMCEAEX-_O=NT5_ou=0294eba3
#550 5.1.1 RESOLVER.ADR.ExRecipNotFou
Original message headers:
Received: from Mail.company.com ([2002:8092:1a19::8092:1a1
Mail.company.com ([fe80::3453:3e8d:28a0:136
31 Mar 2010 23:03:16 -0400
Content-Type: application/ms-tnef; name="winmail.dat"
Content-Transfer-Encoding:
From: Sender <sender@company.com>
To: apr28
<IMCEAEX-_O=NT5_ou=0294eba
Date: Wed, 31 Mar 2010 23:03:16 -0400
Subject: test
Thread-Topic: test
Thread-Index: AcrRR9/6yMJ/whh6Td+7ET52mE
Message-ID: <E8A0ABE2899EEB4C8A225977D
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <E8A0ABE2899EEB4C8A225977D
MIME-Version: 1.0
I have checked the legacyExchangeDN value for the DL and it was <not set>, so I set it using one from another DL created prior to the transition that still works fine. That didn't fix the problem.
I've changed the purportedSearch values per the following links with no success:
https://www.experts-exchange.com/questions/24185173/Problems-with-Default-Global-Address-List-in-Exchange-2007.html?sfQueryTermInfo=1+5.1.1+550+resolver.adr.exrecipnotfound
http://social.technet.microsoft.com/Forums/en-US/exchangesvrdeploy/thread/813ec258-4de4-4f78-b249-b81a2c8363ce
I've added an X500 address with the ridiculous "IMCEAEX-_O=NT5_ou=0294eb.
I've done all the basics like nuking the nk2 file, manually typing the address, re-downloading the OAB.
If I go into OWA and try to send to the DL, I get a message saying "You must choose a recipient before this message can be sent." when I hit Send.
Since I can't tell if this is all GAL-related, I'll mention that I'm also having some trouble getting new users to show up in the address lists and if I run Update-GlobalAddressList -identity "Default Global Address List" -vb I get the following:
VERBOSE: Update-GlobalAddressList : Beginning processing.
VERBOSE: Update-GlobalAddressList : Searching objects "Default Global Address List" of type "AddressBookBase" under the root $null".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Processing object "\Default Global Address List".
VERBOSE: Updating all recipients matching the filter of global address list "Default Global Address List".
VERBOSE: Update-GlobalAddressList : The Address List Service on server "mail.company.com" will be used for the operation.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 2" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 3a" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - \ /o=<our org>\ /cn=addrlists\ /cn=" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - First Administrative Group" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Schedule+ Free Busy Information - First Administrative Group" is invalid and could not be updated.
VERBOSE: Update-GlobalAddressList : Saving object "\Default Global Address List" of type "AddressBookBase" and state "Unchanged".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Ending processing.
Please help!
We have a domain (we'll call it company.com) hosted on 3 DC's. Mail is served up on a fresh new Exchange 2007 server. About 4 months ago we transitioned from Exchange 2003 to 2007. The 2003 server has since been completely decommissioned.
When we create a distribution list (post-transition) and someone internally sends an e-mail to it (e-mails from external addresses seem to work fine), they get the following NDR:
Delivery has failed to these recipients or distribution lists:
apr28
The recipient's e-mail address was not found in the recipient's e-mail system. Microsoft Exchange will not try to redeliver this message for you. Please check the e-mail address and try resending this message, or provide the following diagnostic text to your system administrator.
_____
Sent by Microsoft Exchange Server 2007
Diagnostic information for administrators:
Generating server: Mail.company.com
IMCEAEX-_O=NT5_ou=0294eba3
#550 5.1.1 RESOLVER.ADR.ExRecipNotFou
Original message headers:
Received: from Mail.company.com ([2002:8092:1a19::8092:1a1
Mail.company.com ([fe80::3453:3e8d:28a0:136
31 Mar 2010 23:03:16 -0400
Content-Type: application/ms-tnef; name="winmail.dat"
Content-Transfer-Encoding:
From: Sender <sender@company.com>
To: apr28
<IMCEAEX-_O=NT5_ou=0294eba
Date: Wed, 31 Mar 2010 23:03:16 -0400
Subject: test
Thread-Topic: test
Thread-Index: AcrRR9/6yMJ/whh6Td+7ET52mE
Message-ID: <E8A0ABE2899EEB4C8A225977D
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <E8A0ABE2899EEB4C8A225977D
MIME-Version: 1.0
I have checked the legacyExchangeDN value for the DL and it was <not set>, so I set it using one from another DL created prior to the transition that still works fine. That didn't fix the problem.
I've changed the purportedSearch values per the following links with no success:
https://www.experts-exchange.com/questions/24185173/Problems-with-Default-Global-Address-List-in-Exchange-2007.html?sfQueryTermInfo=1+5.1.1+550+resolver.adr.exrecipnotfound
http://social.technet.microsoft.com/Forums/en-US/exchangesvrdeploy/thread/813ec258-4de4-4f78-b249-b81a2c8363ce
I've added an X500 address with the ridiculous "IMCEAEX-_O=NT5_ou=0294eb.
I've done all the basics like nuking the nk2 file, manually typing the address, re-downloading the OAB.
If I go into OWA and try to send to the DL, I get a message saying "You must choose a recipient before this message can be sent." when I hit Send.
Since I can't tell if this is all GAL-related, I'll mention that I'm also having some trouble getting new users to show up in the address lists and if I run Update-GlobalAddressList -identity "Default Global Address List" -vb I get the following:
VERBOSE: Update-GlobalAddressList : Beginning processing.
VERBOSE: Update-GlobalAddressList : Searching objects "Default Global Address List" of type "AddressBookBase" under the root $null".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Processing object "\Default Global Address List".
VERBOSE: Updating all recipients matching the filter of global address list "Default Global Address List".
VERBOSE: Update-GlobalAddressList : The Address List Service on server "mail.company.com" will be used for the operation.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 2" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 3a" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - \ /o=<our org>\ /cn=addrlists\ /cn=" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - First Administrative Group" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Schedule+ Free Busy Information - First Administrative Group" is invalid and could not be updated.
VERBOSE: Update-GlobalAddressList : Saving object "\Default Global Address List" of type "AddressBookBase" and state "Unchanged".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Ending processing.
Please help!
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can the apr28 DL/DG be seen under EMC\recipient Cofiguration\Distribution Group?
Can you run Get-DistributionGroup against it?
Can you run Get-DistributionGroup against it?
ASKER
Shreedhar:
I've previously read through both of those articles in my troubleshooting efforts and don't see anything that can help.
MegaNuk3:
It is a Mail-Enabled Universal Security Group.
I can see it in the GAL.
I manually set the legacyExchangeDN value to match a group created prior to the transition (/o=<our org>/ou=First Administrative Group/cn=Recipients/cn=apr
I can see the apr28 DL under EMC\Recipient Configuration\Distribution
When I run Get-DistributionGroup apr28 | fl I get the following:
GroupType : Universal, SecurityEnabled
SamAccountName : apr28
ExpansionServer :
ReportToManagerEnabled : False
ReportToOriginatorEnabled : True
SendOofMessageToOriginator
ManagedBy :
AcceptMessagesOnlyFrom : {}
AcceptMessagesOnlyFromDLMe
AddressListMembership : {Default Global Address List, All Groups}
Alias : apr28
OrganizationalUnit : company.com/our org/Groups
CustomAttribute1 :
CustomAttribute10 :
CustomAttribute11 :
CustomAttribute12 :
CustomAttribute13 :
CustomAttribute14 :
CustomAttribute15 :
CustomAttribute2 :
CustomAttribute3 :
CustomAttribute4 :
CustomAttribute5 :
CustomAttribute6 :
CustomAttribute7 :
CustomAttribute8 :
CustomAttribute9 :
DisplayName : apr28
EmailAddresses : {X500:IMCEAEX-_O=NT5_ou=02
@company.com, X400:C=US;A= ;P=our org;O=Exchange;S=apr28;}
GrantSendOnBehalfTo : {}
HiddenFromAddressListsEnab
LegacyExchangeDN : /o=our org/ou=First Administrative Group/cn=Recipients/cn=apr
MaxSendSize : unlimited
MaxReceiveSize : unlimited
PoliciesIncluded : {}
PoliciesExcluded : {{26491cfc-9e50-4857-861b-
EmailAddressPolicyEnabled : False
PrimarySmtpAddress : apr28@company.com
RecipientType : MailUniversalSecurityGroup
RecipientTypeDetails : MailUniversalSecurityGroup
RejectMessagesFrom : {}
RejectMessagesFromDLMember
RequireSenderAuthenticatio
SimpleDisplayName : apr28
UMDtmfMap : {}
WindowsEmailAddress : apr28@company.com
IsValid : True
OriginatingServer : dc1.company.com
ExchangeVersion : 0.1 (8.0.535.0)
Name : apr28
DistinguishedName : CN=apr28,OU=Groups,OU=our org,DC=company,DC=com
Identity : company.com/our org/Groups/apr28
Guid : a68e22d2-5823-4ed9-a7e6-aa
ObjectCategory : company.com/Configuration/
ObjectClass : {top, group}
WhenChanged : 4/1/2010 1:24:34 AM
WhenCreated : 3/31/2010 7:02:46 PM
I've previously read through both of those articles in my troubleshooting efforts and don't see anything that can help.
MegaNuk3:
It is a Mail-Enabled Universal Security Group.
I can see it in the GAL.
I manually set the legacyExchangeDN value to match a group created prior to the transition (/o=<our org>/ou=First Administrative Group/cn=Recipients/cn=apr
I can see the apr28 DL under EMC\Recipient Configuration\Distribution
When I run Get-DistributionGroup apr28 | fl I get the following:
GroupType : Universal, SecurityEnabled
SamAccountName : apr28
ExpansionServer :
ReportToManagerEnabled : False
ReportToOriginatorEnabled : True
SendOofMessageToOriginator
ManagedBy :
AcceptMessagesOnlyFrom : {}
AcceptMessagesOnlyFromDLMe
AddressListMembership : {Default Global Address List, All Groups}
Alias : apr28
OrganizationalUnit : company.com/our org/Groups
CustomAttribute1 :
CustomAttribute10 :
CustomAttribute11 :
CustomAttribute12 :
CustomAttribute13 :
CustomAttribute14 :
CustomAttribute15 :
CustomAttribute2 :
CustomAttribute3 :
CustomAttribute4 :
CustomAttribute5 :
CustomAttribute6 :
CustomAttribute7 :
CustomAttribute8 :
CustomAttribute9 :
DisplayName : apr28
EmailAddresses : {X500:IMCEAEX-_O=NT5_ou=02
@company.com, X400:C=US;A= ;P=our org;O=Exchange;S=apr28;}
GrantSendOnBehalfTo : {}
HiddenFromAddressListsEnab
LegacyExchangeDN : /o=our org/ou=First Administrative Group/cn=Recipients/cn=apr
MaxSendSize : unlimited
MaxReceiveSize : unlimited
PoliciesIncluded : {}
PoliciesExcluded : {{26491cfc-9e50-4857-861b-
EmailAddressPolicyEnabled : False
PrimarySmtpAddress : apr28@company.com
RecipientType : MailUniversalSecurityGroup
RecipientTypeDetails : MailUniversalSecurityGroup
RejectMessagesFrom : {}
RejectMessagesFromDLMember
RequireSenderAuthenticatio
SimpleDisplayName : apr28
UMDtmfMap : {}
WindowsEmailAddress : apr28@company.com
IsValid : True
OriginatingServer : dc1.company.com
ExchangeVersion : 0.1 (8.0.535.0)
Name : apr28
DistinguishedName : CN=apr28,OU=Groups,OU=our org,DC=company,DC=com
Identity : company.com/our org/Groups/apr28
Guid : a68e22d2-5823-4ed9-a7e6-aa
ObjectCategory : company.com/Configuration/
ObjectClass : {top, group}
WhenChanged : 4/1/2010 1:24:34 AM
WhenCreated : 3/31/2010 7:02:46 PM
ASKER
Also, I'm not sure which of the hundred changes I made yesterday might have made a difference, but now it allows me to send to the DL from OWA. Another DL that I'm having the same problem with that I haven't touched still doesn't work in OWA.
ASKER
Another update:
Within the last 20 minutes, something seems to have taken effect and the apr28 address now appears to work, but only after restarting Outlook and downloading the address book. I've made the same changes to the apr15 address but it is still not working.
My followup questions are these:
1) Why could it be that this is the first time I've done a manual address book download in months where it actually showed some sort of progress? In other words, instead of having the window open and close 4 seconds later, the progress bar moved and it appeared to actually be doing something. If I do it again now, I get no such progress. If I run the update-globaladdresslist cmdlet, I get the same results as in the original post.
2) If the problem is with the missing legacyExchangeDN value, why doesn't the apr15 address work after setting the value and forcing DC replication through ADS&S?
3) How can I make sure that the legacyExchangeDN populates in the future? I would hate to have to manually set this every time I set up a mailbox or DL.
Within the last 20 minutes, something seems to have taken effect and the apr28 address now appears to work, but only after restarting Outlook and downloading the address book. I've made the same changes to the apr15 address but it is still not working.
My followup questions are these:
1) Why could it be that this is the first time I've done a manual address book download in months where it actually showed some sort of progress? In other words, instead of having the window open and close 4 seconds later, the progress bar moved and it appeared to actually be doing something. If I do it again now, I get no such progress. If I run the update-globaladdresslist cmdlet, I get the same results as in the original post.
2) If the problem is with the missing legacyExchangeDN value, why doesn't the apr15 address work after setting the value and forcing DC replication through ADS&S?
3) How can I make sure that the legacyExchangeDN populates in the future? I would hate to have to manually set this every time I set up a mailbox or DL.
ASKER
Anyone?
How are you creating these DLs? Through EMC or EMS? If you create a new one through the console (EMC) does it become visible in the GAL and does it get a legacyExchangeDN or not?
ASKER
I've created all of the new DL's through EMC. The ones I've created recently seem to be showing up in the GAL, but for some reason they do not get a legacyExchangeDN value assigned to them.
Hmmm, remind me. are you on SBS 2008?
I have just tried creating a new DL on SBS 2008 SP1 and can veify that it gets a legacyExchangeDN value automatically.
I have just tried creating a new DL on SBS 2008 SP1 and can veify that it gets a legacyExchangeDN value automatically.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Sorry for the delay, just got back from a much-needed vacation.
We're running Server 2k8 Enterprise. I had already done the policy updates, but when I ran a Get-EmailAddressPolicy | Format-List Name,*RecipientFilter*,Exc
So that's one major problem down and I think I'm almost entirely out of the woods. I'm still getting the following when I run Update-GlobalAddressList -identity "Default Global Address List" -vb:
VERBOSE: Update-GlobalAddressList : Beginning processing.
VERBOSE: Update-GlobalAddressList : Searching objects "Default Global Address List" of type "AddressBookBase" under the root $null".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Processing object "\Default Global Address List".
VERBOSE: Updating all recipients matching the filter of global address list "Default Global Address List".
VERBOSE: Update-GlobalAddressList : The Address List Service on server "mail.company.com" will be used for the operation.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 2" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 3a" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - \ /o=<our org>\ /cn=addrlists\ /cn=" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - First Administrative Group" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Schedule+ Free Busy Information - First Administrative Group" is invalid and could not be updated.
VERBOSE: Update-GlobalAddressList : Saving object "\Default Global Address List" of type "AddressBookBase" and state "Unchanged".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Ending processing.
Are these warnings normal or did I miss something else in the transition?
We're running Server 2k8 Enterprise. I had already done the policy updates, but when I ran a Get-EmailAddressPolicy | Format-List Name,*RecipientFilter*,Exc
So that's one major problem down and I think I'm almost entirely out of the woods. I'm still getting the following when I run Update-GlobalAddressList -identity "Default Global Address List" -vb:
VERBOSE: Update-GlobalAddressList : Beginning processing.
VERBOSE: Update-GlobalAddressList : Searching objects "Default Global Address List" of type "AddressBookBase" under the root $null".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Processing object "\Default Global Address List".
VERBOSE: Updating all recipients matching the filter of global address list "Default Global Address List".
VERBOSE: Update-GlobalAddressList : The Address List Service on server "mail.company.com" will be used for the operation.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 2" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/OAB Version 3a" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - \ /o=<our org>\ /cn=addrlists\ /cn=" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Offline Address Book - First Administrative Group" is invalid and could not be updated.
WARNING: The recipient "company.com/Microsoft Exchange System Objects/Schedule+ Free Busy Information - First Administrative Group" is invalid and could not be updated.
VERBOSE: Update-GlobalAddressList : Saving object "\Default Global Address List" of type "AddressBookBase" and state "Unchanged".
VERBOSE: Update-GlobalAddressList : Previous operation run on domain controller 'dc1.company.com'.
VERBOSE: Update-GlobalAddressList : Ending processing.
Are these warnings normal or did I miss something else in the transition?
ASKER
I think I just answered my own question with some more digging. In case anyone in the future has the same problem, you need to go into adsiedit, look up the objects EMS is complaining about, check the mailnickname value, and replace all spaces with underscores. More info here: http://social.technet.microsoft.com/Forums/en/exchangesvradmin/thread/1a819714-3f35-4109-a1a4-665e788d98dd
I believe most, if not all of my problems are now resolved! Thanks to MegaNuk3 for pointing me toward the e-mail address policy.
I believe most, if not all of my problems are now resolved! Thanks to MegaNuk3 for pointing me toward the e-mail address policy.
Thanks for the update and that other information in your last post.
Glad we got there in the end.
Glad we got there in the end.
All mail enabled objects should have a legacyExchangeDN