Solved

Anonymous relay issue

Posted on 2015-02-04
4
54 Views
Last Modified: 2015-02-05
I accidentally ran the exchange shell command to allow anonymous relay to the outside with the default frontend receive connector instead of one we created.  How do I go about removing those permissions?
0
Comment
Question by:Chris Rice
  • 2
4 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
Comment Utility
Exactly what command did you run?

It is usually a matter of reversing it with something like remove-adpermissions or something like that, but without knowing what command you used, impossible to say further.

Simon.
0
 

Author Comment

by:Chris Rice
Comment Utility
I ran this command Get-ReceiveConnector "Relay Connector" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"
0
 
LVL 24

Accepted Solution

by:
VB ITS earned 500 total points
Comment Utility
In that case use the command Get-ReceiveConnector "Relay Connector" | Remove-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

I'm not sure how the above command you ran would have modified the default frontend connector though, as you've specified the receive connector named "Relay Connector" with that command.
0
 

Author Comment

by:Chris Rice
Comment Utility
That was just an example that I found on google.  I couldn't remember the command that I ran off the top of my head.  Thanks.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Easy CSR creation in Exchange 2007,2010 and 2013
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
how to add IIS SMTP to handle application/Scanner relays into office 365.

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now