Go Premium for a chance to win a PS4. Enter to Win


SBS 2011 Internal Application Sending E-Mail To Internal Exchange Server

Posted on 2013-12-29
Medium Priority
Last Modified: 2013-12-30
I have looked and this has been discussed in a different light but not specifically this way and the answers have not worked for me. I have several internal applications that I would like to have to send email updates/failures on processes that occur in the background. Some of the applications have not issues and others repeatedly fail with "authentication" issues or unspecified reasons. I see not reason why this should occur and was wondering if anyone had experience in general with applications like this and what the problem is and is it something I can set or is it not designed to work this way from the vendor. For the most part I can use my smart host and send that way but it should work and doesn't and I would like to know why.
Question by:mohrk
  • 4
  • 2
LVL 10

Expert Comment

ID: 39745003
Are these various applications configured seperately?  If so, it could be simply an error in the configuration (un/pw) of those apps with problems.

Are the email apps that fail AND succeed all running on the same machine?

Are they all tring to connect to the same email account?

To know weather or not your apps SHOULD be able to do what you want, we would need more details about them.

Author Comment

ID: 39745047
Generally speaking they run on client, server and can also be devices. Both SBS connectors are listening on port 25 but that is the default I think.

Specifically. Symantec endpoint manager runs on same machine as exchange. No credentials, userid and password, domain/userid password. All on port 25. All unspecified error.

Next Acronis True Image 2014 premium. Is run from client, might as well repeat all of the above. Oh and add in TLS for this one SEPM only supports SSL for encryption.

Next Cradlepoint MBR1200B router. Encryption capable unclear as to what protocol it would use. Can use user id password. Various ports. All above tried with failures.

I am trying to think of successes bu the only thing that comes to mind is the internal reports that SBS sends out and internal email.


Author Comment

ID: 39745053
You had more questions about the account. Yes they are generally connecting to my non-admin account. And they are configured separately as you might be able to tell already.
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

LVL 10

Accepted Solution

Korbus earned 1000 total points
ID: 39745056
Despite the fact that it DOEs work on some systems, I'm going to recommend that you check firewall and AV rules.   I can't tell you how many times I've found those blocking port 25.  

On each problem machine possible, I would try a telnet session to simulate email traffic and see exactly where during connection/authentication the problem occurs.  https://workaround.org/ispmail/lenny/test-mail-through-telnet

Author Comment

ID: 39745197
OK, SEPM problem resolved. servername - no, FQDN no, localhost yes. No auth not even "real" from address. Hmmm. This is on the exchange server itself.

From a client, from bogus address or real address - 503 5.7.1 client was not authenticated. The overwhelming response from google is enable anonymous on the default receive connector. Do I really want to do that? If so why then why do these apps have the ability to have userid and password? If it is merely to allow access to an offsite server then why can't mine be configured this way? i.e. why can't I set up a client on my network to securely connect to my exchange server?
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 1000 total points
ID: 39745896
SBS 2011 by default will block connections to the Receive Connectors from your internal network. You need to create a new Receive Connector.

Don't adjust the default or SBS connectors, as that will cause you problems and if you ever use any of the tools to correct SBS the change will be undone. Instead create a new connector specifically for the task.


Author Closing Comment

ID: 39746500
Thanks guys! Both problems resolved and expeditiously. Everything requires a from address despite some apps suggesting it was "optional" or advanced but a bogus address worked so??

I have port 25 mapped and filtered to certain sub-nets and port is 53 locked down to specific public DNS addresses so the router required the IP address of the server and an allow rule on port 25. This combination worked anyway.

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this post, I will showcase the steps for how to create groups in Office 365. Office 365 groups allow for ease of flexibility and collaboration between staff members.
Eseutil Hard Recovery is part of exchange tool and ensures Exchange mailbox data recovery when mailbox gets corrupt due to some problem on Exchange server.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
Suggested Courses

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question