#4.7.0 SMTP; 403 4.7.0 authentication failed>'"

I have a  vendor email rejected from coming into my  exchange  server. it gives me this error. my certificate on my exchange server expires in 2020. so my certificate is fine. i attached the error the vendors sees as it bounces back. and i attached a screen shot of my receive connector.  this error stood out.
 "Remote Server returned '<[X.X.X.X] #4.7.0 SMTP; 403 4.7.0 authentication failed>'"
bounce-back.txt
Eromonsele EboiyehiNetwork Support AnalystAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

masnrockCommented:
Is your certificate self signed or from a trusted authority?
1
timgreen7077Exchange EngineerCommented:
Make sure that the clocks on your exchange servers are in sync with AD and also i agree with @masnrock, is your cert self-signed or 3rd party CA?
0
Michael B. SmithExchange & Active Directory ExpertCommented:
Absolutely none of those headers are from Exchange (except two of the X-* headers).

That being written, "authentication failed" means that the submitter attempted to authenticate to the receiving server and the authentication failed.
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Eromonsele EboiyehiNetwork Support AnalystAuthor Commented:
my certificate is from Godaddy and it expires 2020.  please look at my receive connector setting
smtp-email-2010.PNG
0
Eromonsele EboiyehiNetwork Support AnalystAuthor Commented:
I receive emails from other domains.  this happens for some specific domains
0
timgreen7077Exchange EngineerCommented:
if you changed any of the default receive connectors, then you need to set them back to their default settings. the only connectors you modify should be custom connectors you created.
0
Eromonsele EboiyehiNetwork Support AnalystAuthor Commented:
That is my question, i have tried tweaking it. i heard this has to do with TLS. could you point ,me back to the default connector?
0
masnrockCommented:
When did it stop working?
0
nociSoftware EngineerCommented:
In SMTP certificate validity is in general not significant. The TLS upgrade can only be done with a certificate, the encryption is needed, not the authentication of the server.  (unlike with HTTP etc.).
So self signed or old or even with the wrong domain should not be an issue, a private key with matching public key (aka certificate) is what is needed.

Authenticating is done using a username/password  pair or other mays that may be configured. (within a TLS session).
Mostly willingness to accept authentication of senders is dependant on TLS being used. No TLS -- No authentication possible.
If TLS is activated, then authentication can be an option. If not used then the connection is taken at face value like without TLS.
If  Authenticated, the submission mode is used... (like you can setup for local users).
0
timgreen7077Exchange EngineerCommented:
0
Eromonsele EboiyehiNetwork Support AnalystAuthor Commented:
I noticed users complain some 5-6  hours ago. i tried ticking off tls. i jist left basic authentication ticked. will this help? i attached a screen shot. will this make any difference ?  @ noci what is your opinion. i  dont get your point
0
timgreen7077Exchange EngineerCommented:
review the receive connectors also.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.