Exchange Server 2010 Public Folders

You have problems with DNS. Ceck your DNS settings or if server uses local and external DNSs.

Very unlikely DNS. Have you had 2003 exchange in your org before and migrated to 2010?

Can you confirm that  NewFunds@domain.com is the email address assigned to your public folder and that domain.com is your exchange accepted domain (Or one of them).

What happens if you use OWA from a local PC, does it send?

Yes used to have Exchange Server 2003
DNS is fine, can send internally to anothergroup@domain.com
newfunds@domain.com is email addresses assigned to the public folder
domain.com is an Exchange accepted domain and works find for external email
Fails when sending from OWA as well

And when you say sending from outside works fine, do you mean from a NON domain user? Not from any authenticated AD user?

Exactly, from a non domain user all works and from an authenticated AD user it does not.

Security on the folder is

default - editor
Anonymous - Create Items

If you change defaul to NONE and give a user explicit rights of Editor does it make a difference?

I have tried it with myself as Owner and made no difference, did not change default though but thought a user over rides a generic setting

Some mailflow issues can arise from the LegacyAdmin grou of the old exchange 2003 server still existing in AD.

I can not verify that this IS the exact cause but am unaware of any knock on effects that the following procedure could have. Have done it many many times with no issues.

Anyhow it is as follows....

Open ADSI edit and connect to a DC. Now navigate to to the following under configuration...

CN=Configuration , CN=Services, CN=Microsoft Exchange, CN=[ExchangeOrganisationName], CN=Administrative Groups, CN=[LegacyAdministrativeGroupName], CN=Servers.

Right click on Servers and delete. Close and test again

Please ensure you and in the right place inside ADSIEdit before deleteing. IF in doubt, paste a screen shot before you delete.

Unless I am mistaken, the legacy admin group has gone, I am wondering if this is linked to some issues we had with the removal of Exchange Server 2003 which Microsoft had to get involved in, but that is a whole another story
Capture.JPG

Is Exchange 2003 running or decommissioned?

Run the following commands and post here:
Get-AcceptedDomain | fl > ad.txt
Get-SendConnector | fl > sc.txt
Get-RoutingGroupConnector  |fl > RGC.txt

Decommissioned

No Routing group connectors and I have left the real domain names in the accepted domains to make life easier and it doesn't tell anyone anything really interesting that is not public
ad.txt
sc.txt
RGC.txt

From that capture.jpg I have noticed that you have two Exchange servers: zmail1 and zmail3.

Was zmail3 your decommissioned Exchange 2003? In that case like Neilsr suggested remove zmail3. Here is an article about that issue: http://social.technet.microsoft.com/Forums/en-US/exchangesvrgeneral/thread/e8e78736-be67-4e4a-b929-2c3ce61e0eb6

You can also check the permissions on that folder by following this: http://exchangeserverpro.com/causes-of-mapiexceptionnotauthorized-error-sending-to-public-folders

I hope this help.

Zmail3 is out LIVE DR Exchange Server 2010 box

ZMAIL2 WAS out Exchange Server 2003 box

[PS] C:\Windows\system32>Get-PublicFolderClientPermission "\research\new funds"

Users have no issues with draging emails into the folder

RunspaceId   : 57638841-2a6a-4ada-853d-297339fbe7d7
Identity     : \research\new funds
User         : Default
AccessRights : {Editor}

RunspaceId   : 57638841-2a6a-4ada-853d-297339fbe7d7
Identity     : \research\new funds
User         : KISLNET.LOCAL/Aurum/Current Staff/IT/Mark Gould
AccessRights : {Owner}

RunspaceId   : 57638841-2a6a-4ada-853d-297339fbe7d7
Identity     : \research\new funds
User         : Anonymous
AccessRights : {CreateItems}

-----------------------------

The bounce messages are

Delivery is delayed to these recipients or groups:

New Funds (NewFunds@aurum.com)

Subject: Test

This message hasn't been delivered yet. Delivery will continue to be attempted.

The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.

and
-----------------

Delivery has failed to these recipients or groups:

New Funds (NewFunds@aurum.com)
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.

Diagnostic information for administrators:

Generating server: zmail3.KISLNET.LOCAL

NewFunds@aurum.com
#550 4.4.7 QUEUE.Expired; message expired ##

Original message headers:

Received: from ZMAIL1.KISLNET.LOCAL ([fe80::400c:6d04:af38:bb21]) by
 zmail3.KISLNET.LOCAL ([fe80::8c60:4344:4bde:3cf8%14]) with mapi id
 14.01.0355.002; Fri, 17 Aug 2012 18:15:34 +0100
Content-Type: application/ms-tnef; name="winmail.dat"
Content-Transfer-Encoding: binary
From: Mark Gould <markg@aurum.com>
To: New Funds <NewFunds@aurum.com>
Subject: Test
Thread-Topic: Test
Thread-Index: Ac18m+kQJNWxFVMtRbOz/fBpNOvZTg==
Date: Fri, 17 Aug 2012 18:15:33 +0100
Message-ID: <2AFE49C2EF51824781BEAA1282A6D1BE1ECB92@zmail1.KISLNET.LOCAL>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <2AFE49C2EF51824781BEAA1282A6D1BE1ECB92@zmail1.KISLNET.LOCAL>
MIME-Version: 1.0
X-Originating-IP: [10.10.12.3]

From Paul Cunningham article

Internal senders are able to be authenticated by the Exchange server, and so are not treated as Anonymous. For internal senders the user must have at least Create Items permissions on the Public Folder. For general use Public Folders this can be granted as the “Default” permission.

Run this command on "new funds" PF:

Add-PublicFolderClientPermission "\research\new funds" -user Default -AccessRights CreateItems

Select allOpen in new window

If none of this work maybe is time for a reboot of the server. Some times that's the fix.

Hi, whislt I thought this was the case, Exchange confirmed it is the case. I suspect if they did not have create item they would not be able to drag items in.

I created a new mail enabled public folder under research and had exactly the same issue. Could it be a ADSIedit issue like a currupt homemdb entry or similar (clutching at straws here)

As a side note, you do know your stuff!

[PS] C:\Windows\system32>Add-PublicFolderClientPermission "\research\new funds" -user Default -AccessRights CreateItems
User Default, already has some of the permissions (CreateItems) specified to be added on the public folder \research\ne
w funds.  You can't add a right that the user already has.  The current permission for Default is "ReadItems, CreateIte
ms, EditOwnedItems, DeleteOwnedItems, EditAllItems, DeleteAllItems, FolderVisible".
    + CategoryInfo          : InvalidArgument: (Microsoft.Excha...blicFolderEntry:PublicFolderEntry) [Add-PublicFolder
   ClientPermission], InvalidOperationException
    + FullyQualifiedErrorId : 7800D1AB,Microsoft.Exchange.Management.MapiTasks.AddPublicFolderClientPermission

Is that the only PF that you have problems?

What happens if you create a new PF on the root not as a child of "research".

I'm trying my best here and in the end I hope to have this problem solved.

And you are doing excellent, will try and let you know as I am on UK time

Alas not, if I create a new PF off the root and mail enable it, internal email is not received.

In your Outlook, can you navigate to the new PF you just created and create a "new post". Let me know if you can do that.

Sure can

Now navigate to the same PF and click on New Items > Email Message and send a test email to you. If you receive that message I'm lost because I don't understand where is the problem.

Can you post the output of the following powershell command please.

Get-PublicFolder -Identity "\research\new funds" | Format-List

It might be that exchange still thinks there are replicas of the PF on the server that no longer exists.

clonyxlro - email received but that appears to be sending an email from myself to myself unless I misunderstood what you were asking as there was no new items etc

[PS] C:\Windows\system32>Get-PublicFolder -Identity "\research\new funds" | Format-List


RunspaceId                     : b7c0b40e-a21d-4b50-8fd4-77db897c6319
AgeLimit                       :
EformsLocaleId                 :
EntryId                        : 000000001A447390AA6611CD9BC800AA002FC45A0300F91409C9A3DE42489FD36FF69DD92DA20000001827
                                 100000
HasSubFolders                  : True
HiddenFromAddressListsEnabled  : False
IssueWarningQuota              :
LocalReplicaAgeLimit           :
MailEnabled                    : True
MaxItemSize                    :
Name                           : New Funds
ParentPath                     : \research
PerUserReadStateEnabled        : True
ProhibitPostQuota              :
Replicas                       : {Public Folder Database}
ReplicationSchedule            : {Sun.00:00-Sat.23:45, Sat.23:45-Sun.00:00}
RetainDeletedItemsFor          :
UseDatabaseAgeDefaults         : True
UseDatabaseQuotaDefaults       : True
UseDatabaseReplicationSchedule : False
UseDatabaseRetentionDefaults   : True
FolderType                     : IPF.Note
HasRules                       : False
HasModerator                   : False
Identity                       : \research\new funds
MapiIdentity                   : \research\new funds
OriginatingServer              : zmail1.kislnet.local
IsValid                        : True

I think I may have to escalate this one to Microsoft Product support as it apepars I have some deep issues

If you do that can you post the solution here because I'm very curios to see what was the fix for this.

Sure!

Everything make sense now. Glad to here that's finally working.

Issue lies with Arcserve HA but experts very very helpful