Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Google Apps and on premise email

Posted on 2014-10-20
10
461 Views
Last Modified: 2014-11-16
Here is the scenario:
Client has a hosted Lotus Domino (makes no difference what email system it is at the back end) system that uses Google Apps as its email gateway (both ways)
Client has a number of 'team' groups setup with SMTP Addresses in Domino
When an external email account (say a customer) sends an email to one of these team groups, the members of the group receive the email.

Except, only the internal members are getting these emails. If, contained in one of these groups, is an external email address - say a consultant etc. the customer receives an NDR that states:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error 550 5.7.1 Invalid cr edentials for relay [client.server.ip.addr]. md8sm67683wjb.3 - gsmtp>'

Any one seen this before?

Thanks
Mark/
0
Comment
Question by:Mark Galvin
  • 5
  • 5
10 Comments
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40393365
Are  you sure that Domino isn't involved? Just to make that 100% sure, can you verify that the server's log database does not contain references to mails received and rejected around thetimes that they were sent?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40393767
Our Domino consultant has checked. The Domino server is passing the email over the to the Google stack for processing.

What we  believing is taking place here is that the Google Stack believes that it is being used by the external sender as some kind of relay and thus blocking the email.

If an internal user then forwards the email that was received from user@recipient.com to the external consultant it is processed and received without issue.
0
 
LVL 46

Accepted Solution

by:
Sjef Bosman earned 500 total points
ID: 40395306
As suggested on this page: https://productforums.google.com/forum/#!msg/apps/U1ibc6cJQZI/ul3MRx1bLcwJ : contact Google's Support Department and let them fix the issue.

Does the Domino server do a login into Gmail? That setting can be found in Domino's Configuration Settings document for the server, under Router/SMTP, Basic, Use authentication when sending messages to the relay host.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 13

Author Comment

by:Mark Galvin
ID: 40396310
Hi Sjef

Thats a good suggestion and we will try it. The Domino server currently doesnt log onto the Google App when relaying email and the NDR does state 'Invalid cr edentials for relay'.

If we turn this on, can we use any Google App account that is an admin?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40396329
Probably, not sure... But try, by all means. :-)
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40406048
trying today.
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432153
Tried to use my Google Apps account (which is full admin) and then tested:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error>'

Just to recap here:
webmail.clientdomain.com = my clients mail server
user@recipient.com = the external consultants email address that is a member of an distribution group on the clients internal mail system

The error here is not as specific as the original error, where it stated the credentials were wrong. Now it doesn’t really give a 'real' error.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432191
Where are the groups defined, in Google or in Domino?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432244
The groups and their members are configured on the Domino server. All the distribution occurs there.

The SMTP address of the group is configured on the Google App side as all that occurs there is the mail filtering and then routing through to Domini.

Thanks
Mark
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432772
I hope you use the correct port to send mails to Google, see http://email.about.com/od/accessinggmail/f/Gmail_SMTP_Settings.htm

For outbound SMTP to a different provider, we use port 587 with Negotiated SSL, where the credentials are in the Configuration document.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Granting full access permission allows users to access mailboxes present in their database. By giving full access permission one can open and read the content of any mailbox but cannot send emails from that mailbox.
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question