Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Google Apps and on premise email

Posted on 2014-10-20
10
Medium Priority
?
534 Views
Last Modified: 2014-11-16
Here is the scenario:
Client has a hosted Lotus Domino (makes no difference what email system it is at the back end) system that uses Google Apps as its email gateway (both ways)
Client has a number of 'team' groups setup with SMTP Addresses in Domino
When an external email account (say a customer) sends an email to one of these team groups, the members of the group receive the email.

Except, only the internal members are getting these emails. If, contained in one of these groups, is an external email address - say a consultant etc. the customer receives an NDR that states:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error 550 5.7.1 Invalid cr edentials for relay [client.server.ip.addr]. md8sm67683wjb.3 - gsmtp>'

Any one seen this before?

Thanks
Mark/
0
Comment
Question by:Mark Galvin
  • 5
  • 5
10 Comments
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40393365
Are  you sure that Domino isn't involved? Just to make that 100% sure, can you verify that the server's log database does not contain references to mails received and rejected around thetimes that they were sent?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40393767
Our Domino consultant has checked. The Domino server is passing the email over the to the Google stack for processing.

What we  believing is taking place here is that the Google Stack believes that it is being used by the external sender as some kind of relay and thus blocking the email.

If an internal user then forwards the email that was received from user@recipient.com to the external consultant it is processed and received without issue.
0
 
LVL 46

Accepted Solution

by:
Sjef Bosman earned 2000 total points
ID: 40395306
As suggested on this page: https://productforums.google.com/forum/#!msg/apps/U1ibc6cJQZI/ul3MRx1bLcwJ : contact Google's Support Department and let them fix the issue.

Does the Domino server do a login into Gmail? That setting can be found in Domino's Configuration Settings document for the server, under Router/SMTP, Basic, Use authentication when sending messages to the relay host.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 13

Author Comment

by:Mark Galvin
ID: 40396310
Hi Sjef

Thats a good suggestion and we will try it. The Domino server currently doesnt log onto the Google App when relaying email and the NDR does state 'Invalid cr edentials for relay'.

If we turn this on, can we use any Google App account that is an admin?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40396329
Probably, not sure... But try, by all means. :-)
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40406048
trying today.
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432153
Tried to use my Google Apps account (which is full admin) and then tested:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error>'

Just to recap here:
webmail.clientdomain.com = my clients mail server
user@recipient.com = the external consultants email address that is a member of an distribution group on the clients internal mail system

The error here is not as specific as the original error, where it stated the credentials were wrong. Now it doesn’t really give a 'real' error.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432191
Where are the groups defined, in Google or in Domino?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432244
The groups and their members are configured on the Domino server. All the distribution occurs there.

The SMTP address of the group is configured on the Google App side as all that occurs there is the mail filtering and then routing through to Domini.

Thanks
Mark
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432772
I hope you use the correct port to send mails to Google, see http://email.about.com/od/accessinggmail/f/Gmail_SMTP_Settings.htm

For outbound SMTP to a different provider, we use port 587 with Negotiated SSL, where the credentials are in the Configuration document.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Check out the latest tech news, community articles, and expert highlights in August's newsletter.
Among the most obnoxious of Exchange errors is error 1216 – Attached Database Mismatch error of the Jet Database Engine. When faced with this error, users may have to suffer from mailbox inaccessibility and in worst situations, permanent data loss.
This Micro Tutorial will demonstrate Google Calendar to monitor updates with top sites, such as Facebook, Google, Twitter, etc. with Marketing News. Each update of Google Calendar can be monitored, correlate dips and spikes in your website traffic, …
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Suggested Courses
Course of the Month11 days, 16 hours left to enroll

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question