distribution list

is there any reason why an external user cannot email an internal distribution list? this is exchange 2010 we have the distribution list open so that there is no authorization required and you can receive mail from anyone. we also have the external users contact information in exchange mail contacts. so I was wondering is there any reason why the user on the outside continuously get an error that says she doesn't have permissions to email that group.
LVL 20
timgreen7077Exchange EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Adam FarageEnterprise ArchCommented:
so I was wondering is there any reason why the user on the outside continuously get an error that says she doesn't have permissions to email that group

Run
Get-DistributionGroup -Identity distributiongroup@contoso.com | FL

Open in new window

and post the output here. I have seen instances where this actually had to be turned off at the schema level for distribution groups (on the AD Mail Enabled Group object via ADSIEdit) but I am curious what is shown here.

Do you also have a smarthost? Sometimes you need to add the distribution group to the smarthost (e.g: firewall, spam filter, ect) for it to authenticate internally. I know this was the case with FOPE / EOP and some Symantec products.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
timgreen7077Exchange EngineerAuthor Commented:
Here are the results. I also just noticed that the distribution group is actually a Global (non-universal) Security Group. The group does recieve emails but I think that since its a Global group scope, that is what may be causing this issue. What do you think?

RunspaceId                             : 76c0243c-bbec-4dc8-99eb-4a0f5ad72f51
GroupType                              : Global, SecurityEnabled
SamAccountName                         : HoustonDesktopSupport
BypassNestedModerationEnabled          : False
ManagedBy                              : {}
MemberJoinRestriction                  : Closed
MemberDepartRestriction                : Closed
ExpansionServer                        :
ReportToManagerEnabled                 : False
ReportToOriginatorEnabled              : True
SendOofMessageToOriginatorEnabled      : False
AcceptMessagesOnlyFrom                 : {}
AcceptMessagesOnlyFromDLMembers        : {}
AcceptMessagesOnlyFromSendersOrMembers : {}
AddressListMembership                  : {\ Domain, \Default Global Address List, \All Groups}
Alias                                  : HoustonDesktopSupport
ArbitrationMailbox                     : domainname.com/Testing/Users/SystemMailbox{1f05a927-a7cf-42e5-b7e1-be7948bb113d}
BypassModerationFromSendersOrMembers   : {}
OrganizationalUnit                     : domainname.com/ADM/Groups
CustomAttribute1                       :
CustomAttribute10                      :
CustomAttribute11                      :
CustomAttribute12                      :
CustomAttribute13                      :
CustomAttribute14                      :
CustomAttribute15                      :
CustomAttribute2                       :
CustomAttribute3                       :
CustomAttribute4                       :
CustomAttribute5                       :
CustomAttribute6                       :
CustomAttribute7                       :
CustomAttribute8                       :
CustomAttribute9                       :
ExtensionCustomAttribute1              : {}
ExtensionCustomAttribute2              : {}
ExtensionCustomAttribute3              : {}
ExtensionCustomAttribute4              : {}
ExtensionCustomAttribute5              : {}
DisplayName                            : HoustonDesktopSupport
EmailAddresses                         : {smtp:HoustonDesktopSupport@domain.com, X400:C=US;A= ;P=MEI;O=Houston;S=HoustonDesktopSupport;,
                                         RFAX:HoustonDesktopSupport@, SMTP:HoustonDesktopSupport@domainname.com}
GrantSendOnBehalfTo                    : {}
ExternalDirectoryObjectId              :
HiddenFromAddressListsEnabled          : False
LastExchangeChangedTime                :
LegacyExchangeDN                       : /O=MEI/OU=Houston/cn=Recipients/cn=HoustonDesktopSupport
MaxSendSize                            : unlimited
MaxReceiveSize                         : unlimited
ModeratedBy                            : {}
ModerationEnabled                      : False
PoliciesIncluded                       : {974242bb-9102-4e43-8e7b-8a17fdaa4b90, {26491cfc-9e50-4857-861b-0cb8df22b5d7}}
PoliciesExcluded                       : {}
EmailAddressPolicyEnabled              : True
PrimarySmtpAddress                     : HoustonDesktopSupport@domainname.com
RecipientType                          : MailNonUniversalGroup
RecipientTypeDetails                   : MailNonUniversalGroup
RejectMessagesFrom                     : {}
RejectMessagesFromDLMembers            : {}
RejectMessagesFromSendersOrMembers     : {}
RequireSenderAuthenticationEnabled     : False
SimpleDisplayName                      :
SendModerationNotifications            : Always
UMDtmfMap                              : {}
WindowsEmailAddress                    : HoustonDesktopSupport@domainname.com
MailTip                                :
MailTipTranslations                    : {}
PartnerObjectId                        : 00000000-0000-0000-0000-000000000000
IsValid                                : True
ExchangeVersion                        : 0.10 (14.0.100.0)
Name                                   : HoustonDesktopSupport
DistinguishedName                      : CN=HoustonDesktopSupport,OU=Groups,OU=ADM,DC=domainname,DC=com
Identity                               : domainname.com/ADM/Groups/HoustonDesktopSupport
Guid                                   : 1e432a4e-285d-41ca-9638-a5967f66637d
ObjectCategory                         : domainname.com/Configuration/Schema/Group
ObjectClass                            : {top, group}
WhenChanged                            : 10/1/2014 11:08:17 AM
WhenCreated                            : 11/14/2006 1:04:45 PM
WhenChangedUTC                         : 10/1/2014 4:08:17 PM
WhenCreatedUTC                         : 11/14/2006 7:04:45 PM
OrganizationId                         :
OriginatingServer                      : HOUVDC2.domainname.com
ObjectState                            : Changed
0
timgreen7077Exchange EngineerAuthor Commented:
When the expert mentioned "AD Mail enabled group object" it made me think about looking at the type of group this issue was happening to, and that's when I noticed it was a security group with global scope.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.