Solved

exchange 2003 email enabled contact

Posted on 2013-06-14
15
388 Views
Last Modified: 2013-06-14
I have MS Exchange 2003 & have set up a mail-enabled contact in Active Directory for a user who wishes to forward email to an outside email address.  When email is sent to that user from inside the organization, it is delivered to the outside email address.  When email is sent to that user from outside of the organization, it is never delivered & the sender gets an undeliverable notification (with a status of 5.7.1).  I have created additional email-enabled contacts & tested with those & they all behave the same way.
0
Comment
Question by:BHR
  • 8
  • 5
  • 2
15 Comments
 
LVL 19

Expert Comment

by:strivoli
ID: 39247579
Check Contact's properties in AD and allow "Receive messages from anyone".
0
 

Author Comment

by:BHR
ID: 39247589
It was already checked (by default).
0
 
LVL 19

Expert Comment

by:strivoli
ID: 39247663
Is the Contact's domain different from other (working) Contacts?
0
 
LVL 19

Expert Comment

by:strivoli
ID: 39247668
Furthermore, in AD check the option "Only Authenticated Users" isn't checked.
0
 

Author Comment

by:BHR
ID: 39247674
I haven't been able to get any email-enabled contact to work correctly (regardless of their domain).
0
 

Author Comment

by:BHR
ID: 39247680
Nope, that isn't checked (again by default).
0
 
LVL 19

Expert Comment

by:strivoli
ID: 39247705
OK. Sorry. I understood that others contact are working. I misunderstood.

Which is the domain of the normal users (not contacts)? Is it the same domain of the contact? If it isn't did you set MX record for Contact's domain in order to get the mail from outside?
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 

Author Comment

by:BHR
ID: 39247762
The domain of the normal users is the domain of our organization.  This is not the same as the domain of the contact (which is the user's personal email).

I don't understand why I'd need to set up an MX record for an outside domain.  

Let me just give an example of what I'm trying to do.  A contracted employee John Smith has a personal email (say johnsmith@gmail.com) account that he wants to use exclusively for all of his correspondence.  Instead of creating a user account in active directory for him (since he would never actually be in the office to log into a company computer or use a company email address, say johnsmith@company.com), I just want to set up an email-enabled contact with his personal email address.  That way I can include this address in a couple of company (active directory) distribution groups.
0
 
LVL 19

Expert Comment

by:strivoli
ID: 39247807
You wrote "When email is sent to that user from outside of the organization, it is never delivered" and that makes me think of this example: I send a mail (I'm outside of the organization) to johnsmith@gmail.com using your server and that mail fails.
If my example (above) is not your scenario, please make an example in order to understand what's your scenario.
0
 

Author Comment

by:BHR
ID: 39247832
If you sent an email from an outside email domain to a email-enabled company distribution group with an email address of group1@mycompany.com (which the email-enabled contact of johnsmith@gmail.com is part of) it would go to the other members of the group who have a "@mycompany.com" address but would not go to John Smith at his outside email address.  

If I sent an email from within the organization, it would go to all members of the group including johnsmith@gmail.com.
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39248149
What is the exact text on the NDR? The code on its own is not enough.

The way that Exchange forwards email makes it look like your server is spoofing the ORIGINAL sender of the message. If the recipient is using spoof filtering then the message could get rejected.

Simon.
0
 

Author Comment

by:BHR
ID: 39248246
The message that the end user recieves is:

     This is an automatically generated Delivery Status Notification.

     Delivery to the following recipients failed.

     johnsmith@gmail.com


and the error attached to the email is:

     Reporting-MTA: dns;mail.mycompany.com
     Received-From-MTA: dns;barracuda.mycompany.com
     Arrival-Date: Fri, 14 Jun 2013 11:06:02 -0500

     Final-Recipient: rfc822;johnsmith@gmail.com
     Action: failed
     Status: 5.7.1
     X-Display-Name: John's Account


(the address & domain have been changed to fit the example)
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 39248381
Gmail uses antispoofing technology (Google are one of the major players in this field). Therefore if it is a Gmail account that is the target, then what you want to do is not going to work 100% of the time.

Are you using a Barracuda? If so that is probably blocking the message as well, for the very same reason.

Bottom line is that having external contacts as a forward on a mailbox will usually have failures, the rate of failure depending on the target and the source. I actaully don't allow external contacts for forwarding on the environments that I support for that very reason.

With smart phones and OWA, forwarding email to an external address can be avoided with the user accessing their email another way.

Simon.
0
 

Author Comment

by:BHR
ID: 39248654
I don't think it is the Barracuda, as that would only block incoming emails & the incoming emails to the group is coming in fine.  It is only the forwarding/outgoing to the gmail account that isn't working.

OWA & mobile access to company.com emails aren't an option, as this user will only use his personal email account.  

Looks like I will have to create an active directory user/email account for him & setup the forwarding using Outlook rules.  Not really the way I wanted to do it as it uses up a CAL, but if that is the only way it'll work I have no choice.
0
 

Author Closing Comment

by:BHR
ID: 39248701
Your comment about Gmail using antispoofing tech helped me decide not to spend too much more time on this, but to just set up the forwarding using Outlook.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
how to add IIS SMTP to handle application/Scanner relays into office 365.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now