Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Exchange 2010 send on behalf of distribution group

Posted on 2011-09-26
7
Medium Priority
?
1,476 Views
Last Modified: 2012-05-12
I used to be able to send from a distribution group when we had Exchange 2003, these groups have worked since we have upgraded to Exchange 2010. However if we have needed to amend the group details then we have had to change the group from 'Mail Non-Universal' to 'Mail Universal Distribution'

There are to groups in particular which are not behaving the same since being converted to 'Mail Universal Distribution'.

accounts@domainname and support@domainname I can send from the support address but not from the accounts one this has only happened since changing the account group to the 'Mail Universal Distribution' last week. The support group was a long time before that and works fine.

When I try to send a massage as accounts I get this message…

Delivery has failed to these recipients or groups:

blahblah@blah.com
You can't send a message on behalf of this user unless you have permission to do so. Please make sure you're sending on behalf of the correct sender, or request the necessary permission. If the problem continues, please contact your helpdesk.

Diagnostic information for administrators:

Generating server:

blahblah@blah.com
#MSEXCH:MSExchangeIS:/DC=local/DC=DOMAIN:SERVER[578:0x000004DC:0x0000001D] #SMTP#
0
Comment
Question by:Fubschuk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
7 Comments
 
LVL 49

Accepted Solution

by:
Akhater earned 2000 total points
ID: 36708222
open ADUC -> View Advanced Features -> find the group -> RIght click properties -> security

ad the user and give it sendas permission
0
 

Author Comment

by:Fubschuk
ID: 36708437
Already tried that, but no sucsess. the support@domainname has sendas ticked for 'Authenticated Users' and I have tried the same with the accounts@domainname but this didn't work. I have also added myself to the group in ADUC and tried adding the sendas and even giving full permission but still no joy.

Any other ideas
0
 
LVL 29

Expert Comment

by:pwindell
ID: 36716920
I'm not convinced that it can be done really.  I probably would have just said "You can't".   A Distrib Group is not a User Account, and more importantly it does not have a mailbox, and I think that makes a difference.   When mail comes in to a Distrib Group the Distrib Group does not hold it because there is no where to hold it,...all it does is re-associate the message with the multiple mailboxes of the Group's Members.  Now you could set the "send on behalf of" toward one of the Group's Members individually, but not the group.

The whole thing is a waste of time anyway.  It is still going to show coming from the user that really sent it anyway.  If the user sending is JSmith then the message they send is going to say  From: JSmith on behalf of DistribGroup.  There are obvious legal reasons for this,...it prevents fraudulent emails be sent from one person but disguised as someone else.  For example an employee of the company gets "send on behalf" of rights against the company's CEO,...so the employee sends the message "on behalf of" the CEO to the Mayor and Chief of Police and flames them calling them every name in the book in an attempt to cause the CEO grief.  The behavior of Exchange prevents this from happening.
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
LVL 49

Expert Comment

by:Akhater
ID: 36716946
sorry I missed your reply, please try sending from OWA and not from outlook see if there is a difference in the behavior


to pwindell, it can be done 100%
0
 

Author Comment

by:Fubschuk
ID: 36717006
SEND AS is working now, must have be propagation delay from AD with the security settings.
0
 
LVL 49

Expert Comment

by:Akhater
ID: 36717047
it is not a propagation delay rather the time needed for your outlook to get the new OAB (offline address book) that's why I asked you to try from OWA

thanks for the updates and the points
0
 
LVL 29

Expert Comment

by:pwindell
ID: 36717115
Very good.
So it is possible after all.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A walk-through example of how to obtain and apply new DID phone numbers to your cloud PBX enabled users that are configured in Office 365. Whether you have 1, 10 or 100+ users in your tenant, it's quite easy to get them phone-enabled and making/rece…
Are you an Exchange administrator employed with an organization? And, have you encountered a corrupt Exchange database due to which you are not able to open its EDB file. This article will explain all the steps to repair corrupt Exchange database.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question