Solved

Mail flows one way from one 2007 box, but not vice versa

Posted on 2011-03-09
4
1,887 Views
Last Modified: 2012-05-11
Hi,

I currently have two exchange servers in two sites. The plan is to move all mailboxes from Site A to Site B so we can decomission the server, but this is a project that will take a few months to complete so both servers need to send mail back and forth depending on where users mailboxes are.

Site A is old site, Site B is the new.

Site A has User A in its mailbox DB
Site B has User B in its mailbox DB

User A can send mail to User B, external can send to User B
BUT
User B cannot send to anyone at Site A, but can to others at Site B

The messages sit in the queue and report "4.4.0 Primary target IP address responded with: “454.4.7.0 Temporary authentication failure.”  Attempted failover to alternate host, but that did not succeed.  Either there are no alternate hosts or deliver failed to all alternate hosts. "

In the eventlogs the Transport Service throws Error 2017 "Outbound authentication failed with error TargetUnknown for Send connector Intra-Organization SMTP Send Connector. The authentication mechanism is ExchangeAuth. The target is SMTPSVC/externalFQDN.domain.com"

externalFQDN.domain.com is what users use for connecting to OWA etc so has been changed for security.

What I dont understand is why it appears to want to go the external route, and not through the internal route to server.domain.local at Site A.

Any help that anyone can suggest would be greatly appreciated as this is holding up a project.

CHeers,
RIch.
0
Comment
Question by:richardp19787
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:Sudhirchauhan3
ID: 35107763
In Site A  Please check the permission on default receive connectors on each Hub Servers.

Get-ReceiveConnector -Identity "SERVERNAME\Default SERVERNAME" | fl PermissionGroups

Make sure "Exchange servers" are listed in the permissionGroups.

PermissionGroups : AnonymousUsers, ExchangeUsers, ExchangeServers, ExchangeLegacyServers, Custom
0
 

Author Comment

by:richardp19787
ID: 35126829
Hi,

In site A on the Exchange server permission are Anonymous, Exchange users, Exchange Servers, Exchange Legacy Servers.

Site B is Exchange Users, Exchange Servers, Exchange Legacy Servers.

So both have Exchange servers set in permissions.

Rich.
0
 
LVL 11

Accepted Solution

by:
Sudhirchauhan3 earned 500 total points
ID: 35140321
0
 

Author Comment

by:richardp19787
ID: 35216644
I had to create a new recieve connector. The link certainly helped guide me in the right direction and now all is well.

Thanks for your help.
0

Featured Post

Wish Marketing would stop bothering you?

Is your marketing department constantly asking for new email signature updates? Are they requesting a different design for every department? Do they need yet another banner added? Don’t let it get you down! There is an easy way to manage all of these requests...

Join & Write a Comment

Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video discusses moving either the default database or any database to a new volume.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now