Mark Gould
asked on
Exchange Server 2010 Public Folders
I can email my Exchange Server 2010 public folders externally with no issue, but if I try and email the same email addresses internally, nothing happens, nothing is delivered and the following comes back.
Delivery is delayed to these recipients or groups:
New Funds (NewFunds@domain.com) <mailto:NewFunds@domain.co m>
Subject: Class F
This message hasn't been delivered yet. Delivery will continue to be attempted.
The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.
Any ideas
Delivery is delayed to these recipients or groups:
New Funds (NewFunds@domain.com) <mailto:NewFunds@domain.co
Subject: Class F
This message hasn't been delivered yet. Delivery will continue to be attempted.
The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.
Any ideas
You have problems with DNS. Ceck your DNS settings or if server uses local and external DNSs.
Very unlikely DNS. Have you had 2003 exchange in your org before and migrated to 2010?
Can you confirm that NewFunds@domain.com is the email address assigned to your public folder and that domain.com is your exchange accepted domain (Or one of them).
What happens if you use OWA from a local PC, does it send?
What happens if you use OWA from a local PC, does it send?
ASKER
Yes used to have Exchange Server 2003
DNS is fine, can send internally to anothergroup@domain.com
newfunds@domain.com is email addresses assigned to the public folder
domain.com is an Exchange accepted domain and works find for external email
Fails when sending from OWA as well
DNS is fine, can send internally to anothergroup@domain.com
newfunds@domain.com is email addresses assigned to the public folder
domain.com is an Exchange accepted domain and works find for external email
Fails when sending from OWA as well
And when you say sending from outside works fine, do you mean from a NON domain user? Not from any authenticated AD user?
ASKER
Exactly, from a non domain user all works and from an authenticated AD user it does not.
Security on the folder is
default - editor
Anonymous - Create Items
Security on the folder is
default - editor
Anonymous - Create Items
If you change defaul to NONE and give a user explicit rights of Editor does it make a difference?
ASKER
I have tried it with myself as Owner and made no difference, did not change default though but thought a user over rides a generic setting
Some mailflow issues can arise from the LegacyAdmin grou of the old exchange 2003 server still existing in AD.
I can not verify that this IS the exact cause but am unaware of any knock on effects that the following procedure could have. Have done it many many times with no issues.
Anyhow it is as follows....
Open ADSI edit and connect to a DC. Now navigate to to the following under configuration...
CN=Configuration , CN=Services, CN=Microsoft Exchange, CN=[ExchangeOrganisationNa me], CN=Administrative Groups, CN=[LegacyAdministrativeGr oupName], CN=Servers.
Right click on Servers and delete. Close and test again
Please ensure you and in the right place inside ADSIEdit before deleteing. IF in doubt, paste a screen shot before you delete.
I can not verify that this IS the exact cause but am unaware of any knock on effects that the following procedure could have. Have done it many many times with no issues.
Anyhow it is as follows....
Open ADSI edit and connect to a DC. Now navigate to to the following under configuration...
CN=Configuration , CN=Services, CN=Microsoft Exchange, CN=[ExchangeOrganisationNa
Right click on Servers and delete. Close and test again
Please ensure you and in the right place inside ADSIEdit before deleteing. IF in doubt, paste a screen shot before you delete.
ASKER
Unless I am mistaken, the legacy admin group has gone, I am wondering if this is linked to some issues we had with the removal of Exchange Server 2003 which Microsoft had to get involved in, but that is a whole another story
Capture.JPG
Capture.JPG
Is Exchange 2003 running or decommissioned?
Run the following commands and post here:
Get-AcceptedDomain | fl > ad.txt
Get-SendConnector | fl > sc.txt
Get-RoutingGroupConnector |fl > RGC.txt
Run the following commands and post here:
Get-AcceptedDomain | fl > ad.txt
Get-SendConnector | fl > sc.txt
Get-RoutingGroupConnector |fl > RGC.txt
ASKER
From that capture.jpg I have noticed that you have two Exchange servers: zmail1 and zmail3.
Was zmail3 your decommissioned Exchange 2003? In that case like Neilsr suggested remove zmail3. Here is an article about that issue: http://social.technet.microsoft.com/Forums/en-US/exchangesvrgeneral/thread/e8e78736-be67-4e4a-b929-2c3ce61e0eb6
You can also check the permissions on that folder by following this: http://exchangeserverpro.com/causes-of-mapiexceptionnotauthorized-error-sending-to-public-folders
I hope this help.
Was zmail3 your decommissioned Exchange 2003? In that case like Neilsr suggested remove zmail3. Here is an article about that issue: http://social.technet.microsoft.com/Forums/en-US/exchangesvrgeneral/thread/e8e78736-be67-4e4a-b929-2c3ce61e0eb6
You can also check the permissions on that folder by following this: http://exchangeserverpro.com/causes-of-mapiexceptionnotauthorized-error-sending-to-public-folders
I hope this help.
ASKER
Zmail3 is out LIVE DR Exchange Server 2010 box
ZMAIL2 WAS out Exchange Server 2003 box
[PS] C:\Windows\system32>Get-Pu blicFolder ClientPerm ission "\research\new funds"
Users have no issues with draging emails into the folder
RunspaceId : 57638841-2a6a-4ada-853d-29 7339fbe7d7
Identity : \research\new funds
User : Default
AccessRights : {Editor}
RunspaceId : 57638841-2a6a-4ada-853d-29 7339fbe7d7
Identity : \research\new funds
User : KISLNET.LOCAL/Aurum/Curren t Staff/IT/Mark Gould
AccessRights : {Owner}
RunspaceId : 57638841-2a6a-4ada-853d-29 7339fbe7d7
Identity : \research\new funds
User : Anonymous
AccessRights : {CreateItems}
-------------------------- ---
The bounce messages are
Delivery is delayed to these recipients or groups:
New Funds (NewFunds@aurum.com)
Subject: Test
This message hasn't been delivered yet. Delivery will continue to be attempted.
The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.
and
-----------------
Delivery has failed to these recipients or groups:
New Funds (NewFunds@aurum.com)
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.
Diagnostic information for administrators:
Generating server: zmail3.KISLNET.LOCAL
NewFunds@aurum.com
#550 4.4.7 QUEUE.Expired; message expired ##
Original message headers:
Received: from ZMAIL1.KISLNET.LOCAL ([fe80::400c:6d04:af38:bb2 1]) by
zmail3.KISLNET.LOCAL ([fe80::8c60:4344:4bde:3cf 8%14]) with mapi id
14.01.0355.002; Fri, 17 Aug 2012 18:15:34 +0100
Content-Type: application/ms-tnef; name="winmail.dat"
Content-Transfer-Encoding: binary
From: Mark Gould <markg@aurum.com>
To: New Funds <NewFunds@aurum.com>
Subject: Test
Thread-Topic: Test
Thread-Index: Ac18m+kQJNWxFVMtRbOz/fBpNO vZTg==
Date: Fri, 17 Aug 2012 18:15:33 +0100
Message-ID: <2AFE49C2EF51824781BEAA128 2A6D1BE1EC B92@zmail1 .KISLNET.L OCAL>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <2AFE49C2EF51824781BEAA128 2A6D1BE1EC B92@zmail1 .KISLNET.L OCAL>
MIME-Version: 1.0
X-Originating-IP: [10.10.12.3]
ZMAIL2 WAS out Exchange Server 2003 box
[PS] C:\Windows\system32>Get-Pu
Users have no issues with draging emails into the folder
RunspaceId : 57638841-2a6a-4ada-853d-29
Identity : \research\new funds
User : Default
AccessRights : {Editor}
RunspaceId : 57638841-2a6a-4ada-853d-29
Identity : \research\new funds
User : KISLNET.LOCAL/Aurum/Curren
AccessRights : {Owner}
RunspaceId : 57638841-2a6a-4ada-853d-29
Identity : \research\new funds
User : Anonymous
AccessRights : {CreateItems}
--------------------------
The bounce messages are
Delivery is delayed to these recipients or groups:
New Funds (NewFunds@aurum.com)
Subject: Test
This message hasn't been delivered yet. Delivery will continue to be attempted.
The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.
and
-----------------
Delivery has failed to these recipients or groups:
New Funds (NewFunds@aurum.com)
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.
Diagnostic information for administrators:
Generating server: zmail3.KISLNET.LOCAL
NewFunds@aurum.com
#550 4.4.7 QUEUE.Expired; message expired ##
Original message headers:
Received: from ZMAIL1.KISLNET.LOCAL ([fe80::400c:6d04:af38:bb2
zmail3.KISLNET.LOCAL ([fe80::8c60:4344:4bde:3cf
14.01.0355.002; Fri, 17 Aug 2012 18:15:34 +0100
Content-Type: application/ms-tnef; name="winmail.dat"
Content-Transfer-Encoding:
From: Mark Gould <markg@aurum.com>
To: New Funds <NewFunds@aurum.com>
Subject: Test
Thread-Topic: Test
Thread-Index: Ac18m+kQJNWxFVMtRbOz/fBpNO
Date: Fri, 17 Aug 2012 18:15:33 +0100
Message-ID: <2AFE49C2EF51824781BEAA128
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <2AFE49C2EF51824781BEAA128
MIME-Version: 1.0
X-Originating-IP: [10.10.12.3]
From Paul Cunningham article
Run this command on "new funds" PF:
If none of this work maybe is time for a reboot of the server. Some times that's the fix.
Internal senders are able to be authenticated by the Exchange server, and so are not treated as Anonymous. For internal senders the user must have at least Create Items permissions on the Public Folder. For general use Public Folders this can be granted as the “Default” permission.
Run this command on "new funds" PF:
Add-PublicFolderClientPermission "\research\new funds" -user Default -AccessRights CreateItems
If none of this work maybe is time for a reboot of the server. Some times that's the fix.
ASKER
Hi, whislt I thought this was the case, Exchange confirmed it is the case. I suspect if they did not have create item they would not be able to drag items in.
I created a new mail enabled public folder under research and had exactly the same issue. Could it be a ADSIedit issue like a currupt homemdb entry or similar (clutching at straws here)
As a side note, you do know your stuff!
[PS] C:\Windows\system32>Add-Pu blicFolder ClientPerm ission "\research\new funds" -user Default -AccessRights CreateItems
User Default, already has some of the permissions (CreateItems) specified to be added on the public folder \research\ne
w funds. You can't add a right that the user already has. The current permission for Default is "ReadItems, CreateIte
ms, EditOwnedItems, DeleteOwnedItems, EditAllItems, DeleteAllItems, FolderVisible".
+ CategoryInfo : InvalidArgument: (Microsoft.Excha...blicFol derEntry:P ublicFolde rEntry) [Add-PublicFolder
ClientPermission], InvalidOperationException
+ FullyQualifiedErrorId : 7800D1AB,Microsoft.Exchang e.Manageme nt.MapiTas ks.AddPubl icFolderCl ientPermis sion
I created a new mail enabled public folder under research and had exactly the same issue. Could it be a ADSIedit issue like a currupt homemdb entry or similar (clutching at straws here)
As a side note, you do know your stuff!
[PS] C:\Windows\system32>Add-Pu
User Default, already has some of the permissions (CreateItems) specified to be added on the public folder \research\ne
w funds. You can't add a right that the user already has. The current permission for Default is "ReadItems, CreateIte
ms, EditOwnedItems, DeleteOwnedItems, EditAllItems, DeleteAllItems, FolderVisible".
+ CategoryInfo : InvalidArgument: (Microsoft.Excha...blicFol
ClientPermission], InvalidOperationException
+ FullyQualifiedErrorId : 7800D1AB,Microsoft.Exchang
Is that the only PF that you have problems?
What happens if you create a new PF on the root not as a child of "research".
I'm trying my best here and in the end I hope to have this problem solved.
What happens if you create a new PF on the root not as a child of "research".
I'm trying my best here and in the end I hope to have this problem solved.
ASKER
And you are doing excellent, will try and let you know as I am on UK time
ASKER
Alas not, if I create a new PF off the root and mail enable it, internal email is not received.
In your Outlook, can you navigate to the new PF you just created and create a "new post". Let me know if you can do that.
ASKER
Sure can
Now navigate to the same PF and click on New Items > Email Message and send a test email to you. If you receive that message I'm lost because I don't understand where is the problem.
Can you post the output of the following powershell command please.
Get-PublicFolder -Identity "\research\new funds" | Format-List
Get-PublicFolder -Identity "\research\new funds" | Format-List
It might be that exchange still thinks there are replicas of the PF on the server that no longer exists.
ASKER
clonyxlro - email received but that appears to be sending an email from myself to myself unless I misunderstood what you were asking as there was no new items etc
ASKER
[PS] C:\Windows\system32>Get-Pu blicFolder -Identity "\research\new funds" | Format-List
RunspaceId : b7c0b40e-a21d-4b50-8fd4-77 db897c6319
AgeLimit :
EformsLocaleId :
EntryId : 000000001A447390AA6611CD9B C800AA002F C45A0300F9 1409C9A3DE 42489FD36F F69DD92DA2 0000001827
100000
HasSubFolders : True
HiddenFromAddressListsEnab led : False
IssueWarningQuota :
LocalReplicaAgeLimit :
MailEnabled : True
MaxItemSize :
Name : New Funds
ParentPath : \research
PerUserReadStateEnabled : True
ProhibitPostQuota :
Replicas : {Public Folder Database}
ReplicationSchedule : {Sun.00:00-Sat.23:45, Sat.23:45-Sun.00:00}
RetainDeletedItemsFor :
UseDatabaseAgeDefaults : True
UseDatabaseQuotaDefaults : True
UseDatabaseReplicationSche dule : False
UseDatabaseRetentionDefaul ts : True
FolderType : IPF.Note
HasRules : False
HasModerator : False
Identity : \research\new funds
MapiIdentity : \research\new funds
OriginatingServer : zmail1.kislnet.local
IsValid : True
RunspaceId : b7c0b40e-a21d-4b50-8fd4-77
AgeLimit :
EformsLocaleId :
EntryId : 000000001A447390AA6611CD9B
100000
HasSubFolders : True
HiddenFromAddressListsEnab
IssueWarningQuota :
LocalReplicaAgeLimit :
MailEnabled : True
MaxItemSize :
Name : New Funds
ParentPath : \research
PerUserReadStateEnabled : True
ProhibitPostQuota :
Replicas : {Public Folder Database}
ReplicationSchedule : {Sun.00:00-Sat.23:45, Sat.23:45-Sun.00:00}
RetainDeletedItemsFor :
UseDatabaseAgeDefaults : True
UseDatabaseQuotaDefaults : True
UseDatabaseReplicationSche
UseDatabaseRetentionDefaul
FolderType : IPF.Note
HasRules : False
HasModerator : False
Identity : \research\new funds
MapiIdentity : \research\new funds
OriginatingServer : zmail1.kislnet.local
IsValid : True
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I think I may have to escalate this one to Microsoft Product support as it apepars I have some deep issues
If you do that can you post the solution here because I'm very curios to see what was the fix for this.
ASKER
Sure!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Everything make sense now. Glad to here that's finally working.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Issue lies with Arcserve HA but experts very very helpful