Hello, I used the following command when I was trying to enable my anti-spam filter in Exchange 2010
Set-TransportConfig -InternalSMTPServers @{Add="10.0.1.10","10.80.1.34"} - I only wanted to add the internal address of 10.80.1.34 but I also added the 10.0.1.10 address -
What cmdlet can I use to remove the 10.0.1.10 ip address - please help me with the exact script I need to run to remove that ip address?
Thanks
Hello everyone!! I am using a small business 2003 server with Microsoft exchange 2003!! Both of them are fully updated to their newest versions!! However I am having a problem!! When I am trying to send an email from a PC in our domain to a specific external server it doesn't reach and I am getting this error message:
Your message did not reach some or all of the intended recipients.
Subject: test
Sent: 2/6/2015 10:17
The following recipients cannot be reached:
*** Email address is removed for privacy *** on 2/6/2015 10:16
The recipient could not be processed because it would violate the security policy in force <ipa237.225.tellas.gr #5.7.0smtp;550 5.7.0 550 Your server IP address [my address] does not have a valid reverse
DNS entry [ipa237.225.tellas.gr].
I called my provider and asked them to make the reverse DNS of my server's IP point to the Fully qualified domain name of the Host (A) mail file of my DNS. Still I get the same message.
I tried to send an email to that address using Hotmail and it reached the destination!!! any ideas?
Hi all,
Historically I think, we have issue about sending emails from our Exchange 2010 SP3 to several domains .
In fact, when Exchange try to send emails to some domains, this error is reported :
451 4.4.0 Primary target IP address responded with: "421 4.2.1 Unable to connect." Attempted failover alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.
I tried this : http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_24988355.html, but the issue persists.
Would you have an idea about this problem ?
Thank you.
FXE
Hello,
We have few users in our organization who want to use our partner organization SMTP domain as their email address. So, we want to relay these users' outbound emails to partner organization to send to external world. How can we relay specific users' emails to partner servers? Please advise.
User unable to received emails.He did received it before and was working fine.
Checking the user mail box size on the exchange server it was set on Quota Management. Comparing the size with the user mail box on his pc, on the "server Data" tab, he got 2036279KB used and on the "local data" tab he got 59597KB
However the quota management on the exchange server has the information below.
Issue warning - 3000MB
Prohibit send - 3300 MB
Prohibit send and receive - 3500 MB
Note, the user can sent but cannot receive mails. Mails are on the server but unable to deliver to clients,
Also note that i can read the emails ok on the user webmail, sent and received on the web mail.
I am new to all these. i am using exchange 2010 and Outlook 2010,
Appreciate.
----- bsl
Setup: Two companies are merging. Currently both companies have separate existing 2010 Exchange environments. There is a dedicated connection between the two companies and their has been a trust created between the two ADs. The Exchange servers have been setup to share free/busy time for users.
Scenario: The is a need to create a new Domain for both companies for email (NewDomain.com) that will represent both companies and allow the old domains (BrandA.com and BrandB.com) to still receive email while people agjust to the new corporate branding.
Proposal: Change BrandA.com from an authoritative Domain to an Internal relay domain, Point both companies MX records to the BrandA Edge Internal relay server, create anew Accepted Domain on BrandA for NewDomain.com with a send connector to BrandB exchange server, create a new Email Address Policy so that all users will have NewDomain.com as their send/receive domain by default.
Questions:
Does this appear to be the correct method for accomplishing the proposed scenario?
Does BrandB domain stay as an Authoritative domain to prevent email loops?
Does BrandB domain need to be setup with an Accepted Domain for NewDomain.com as well as BrandA?
Does BrandB domain have to be setup with a New Email Adress Policy so users in that domain have NewDomain.com as their default send/receive domain?
I greatly appreciate any input/advice that you may have
I noticed a number of emails to certain domains were getting stuck in the Exchange 2007 queue on our SBS 2008 server.
I'm seeing errors such as the following:
451 4.4.0 Primary target IP address responded with “421 kundenserver.de Service closing transmission channel – command timeout.” Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.
451 4.4.0 DNS query failed
451 4.4.4 Primary target IP address responded with “421 4.4.2 Connection dropped.” Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.
421 4.4.2 mtaig-aam01.mx.aol.com Error: timeout exceeded
The emails sit in the queue until they expire.
We can send emails to other domains ok.
I am able to use NSLookup (via set type = MX) to view the MX-Records for the problem domains. I can also telnet in to the remote email servers on port 25.
Can anyone suggest what might be causing this?
Thanks
I don&#39;t work for Microsoft - I just use their products.
Need clarification for mail server connectivity for the following two points,
· Is ZIMBRA mail server is compatible with exchange or not ?
· Creating a send/receive connector with exchange 2010 can be configured or not at ZIMBRA mail server ?
Great Thanks in Advance.
Ram.M
Our Public Certificate has expired and one I renewed it I am running into two issues. The first is that I am receiving Evenit ID 12016. It is stating that there is no valid SMTP transport layer Security (TLS) certificate for the FQDN of LocalServer.Domain.local.
Log Name: Application
Source: MSExchangeTransport
Date: 6/27/2015 1:12:55 AM
Event ID: 12016
Task Category: TransportService
Level: Error
Keywords: Classic
User: N/A
Computer: LocalServer.domain.local
Description:
There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of LocalServer.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the
FQDN of LocalServer.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="MSExchangeTransport" />
<EventID Qualifiers="49156">12016</EventID>
<Level>2</Level>
<Task>12</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2015-06-27T05:12:55.000000000Z" />
<EventRecordID>1641012</EventRecordID>
<Channel>Application</Channel>
<Computer>LocalServer.domain.local</Computer>
<Security />
</System>
<EventData>
<Data>LocalServer.domain.local</Data>
<Data>40FD87F0DA2951A3AE6A4DE72E04C60868F865EC</Data>
</EventData>
</Event>
I Run Get-exchangecertificate for the thumb print of the certificate for CN=localserver and for services it says SMTP and status it says Valid. The expire date is 4/11/2017, start date is 4/11/2012.
PSComputerName : Localserver.domain.local
RunspaceId : 6ebf1f04-335c-4514-9f64-6249e61e93df
AccessRules :
CertificateDomains : {LocalServer.domain.local}
CertificateRequest :
IisServices : {}
IsSelfSigned : True
KeyIdentifier : 0E15041A4E8309E48E4EF898FA6625F9XXXXXXXX
RootCAType : None
Services : SMTP
Status : Valid
SubjectKeyIdentifier :
PrivateKeyExportable : False
PublicKeySize : 2048
ServicesStringForm : ....S.
Archived : False
Extensions : {System.Security.Cryptography.Oid, System.Security.Cryptography.Oid, System.Security.Cryptograph
y.Oid, System.Security.Cryptography.Oid}
FriendlyName : Microsoft Exchange
IssuerName : System.Security.Cryptography.X509Certificates.X500DistinguishedName
NotAfter : 4/11/2017 11:38:52 AM
NotBefore : 4/11/2012 11:38:52 AM
HasPrivateKey : True
PrivateKey :
PublicKey : System.Security.Cryptography.X509Certificates.PublicKey
RawData : {48, 130, 3, 44, 48, 130, 2, 20, 160, 3, 2, 1, 2, 2, 16, 55...}
SerialNumber : 3703620D704C32834D6C00F6XXXXXXXX
SubjectName : System.Security.Cryptography.X509Certificates.X500DistinguishedName
SignatureAlgorithm : System.Security.Cryptography.Oid
Thumbprint : XXXXXXXC1D8C964071C031B48466C2F8XXXXXXXXX
Version : 3
Handle : 540172704
Issuer : CN=LocalServer
Subject : CN=LocalServer
Why am I still getting EventID 12016?
The second issue that I having and thinking is related. The only thing that I did was replace the public certificate, same domain, just a new cert. Now when users open outlook they get a security alert for autodiscover.company.com. The name on the security certificate is invalid or does not match the name of the site.
I view the certificate and it is for webmail.company.com, but the alert is autodiscover.company.com. Before I replaced the certificate users did not get the error.
Any ideas on how to correct this security alert?
Thank you for your help
T.
Scenario:
Exchange 2010.
I have a mail-enabled Public Folder called ‘Requests' with SMTP address of requests@contoso.com
I need to change so that emails sent to Requests instead go to a Mailbox instead.
Moving the SMTP address from the PF to the Mailbox is easy. No problem there. When folks send messages torequests@contoso.com, they now arrive in the Mailbox.
But most users have the legacyExchangeDN of Requests in their Name Cache in Outlook, and when they send messages to Requests those messages still get routed to the cached legacyExchangeDN – i.e. to the Public Folder.
My problem is that I need to Public Folder to remain mail-enabled. It can have a different legacyExchangeDN, a different Display Name, and different SMTP address, but I need the folder to still be mail-enabled.
I have tried the following:
But, at Step3, the Public Folder is automatically re-assigned the exact same legacyExchangeDN that it originally had. So now both the Mailbox and the PF have the same legacyExchangeDN
QUESTIONS
Many thanks,
Drew-TX
I am trying to disable SSL2 on our IIS/SMTP server. We are using a Windows Server 2008 R2 Enterprise (64bit). We use the IIS6 Manager to manage the SMTP virtual servers. I have attempted numerous methods but have been unsuccessful in all. I have fully rebooted after every change too.
I am testing from another server with the following command, but still show as connected via SSL2:
$ openssl s_client -debug -connect servername:25 -ssl2
CONNECTED(00000003)
write to 0x600078840 [0x600181951] (45 bytes => 45 (0x2D))
0000 - 80 2b 01 00 02 00 12 00-00 00 10 03 00 80 01 00 .+..............
0010 - 80 07 00 c0 06 00 40 04-00 80 02 00 80 ba 66 21 ......@.......f!
0020 - fe 2d 4c 49 44 b9 23 e5-f9 10 a5 21 7f .-LID.#....!.
read from 0x600078840 [0x600070790] (2 bytes => 2 (0x2))
0000 - 32 32 22
read from 0x600078840 [0x600070792] (12851 bytes => 123 (0x7B))
0000 - 30 20 6d 61 69 6c 2e 65-67 32 2e 66 69 65 6c 64 0 mail.ourdomain
0010 - 67 6c 61 73 73 2e 6e 65-74 20 4d 69 63 72 6f 73 name.net Micros
0020 - 6f 66 74 20 45 53 4d 54-50 20 4d 41 49 4c 20 53 oft ESMTP MAIL S
0030 - 65 72 76 69 63 65 2c 20-56 65 72 73 69 6f 6e 3a ervice, Version:
0040 - 20 37 2e 35 2e 37 36 30-31 2e 31 37 35 31 34 20 7.5.7601.17514
0050 - 72 65 61 64 79 20 61 74-20 20 57 65 64 2c 20 38 ready at Wed, 8
0060 - 20 4a 75 6c 20 32 30 31-35 20 31 34 3a 32 36 3a Jul 2015 14:26:
0070 - 31 35 20 2b 30 30 30 30-20 0d 0a 15 +0000 ..
I started with Microsoft’s recommendation: https://support.microsoft.com/en-us/kb/187498
Instead of PCT 1.0, I used SSL 2.0:
To disable the PCT 1.0 protocol so that IIS does not try to negotiate using the PCT 1.0 protocol, follow these steps:
Click Start, click Run, type regedt32 or type regedit, and then click OK. In Registry Editor, locate the following registry key: HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders \SCHANNEL\Protocols\PCT 1.0\Server
On the Edit menu, click Add Value. In the Data Type list, click DWORD. In the Value Name box, type Enabled, and then click OK.
Note If this value is present, double-click the value to edit its current value. Type 00000000 in Binary Editor to set the value of the new key equal to "0". Click OK. Restart the computer.
I have also tried this method: http://forums.iis.net/t/1151822.aspx?Disable+SSL+v2+in+IIS7+
I even tried using IIS Crypto and still show as connecting via SSL2.
I am running in circles and turning to anyone for help. Thanks in advance.
Folks,
I encountered a requirement where i need to provide hyperlink for a disclaimer instead of whole text so basically it works as follows:
Disclaimer -Click Here
where click here will be a web page taking us to the actual disclaimer.I am using Exchnage server 2010 sp1
Is this possible to configure such requirement-Any idea how this can be configured?
thanks in advance.
Hello All,
We have an in-house Exchange 2010 Server. It runs WebsitePanel and we have multiple clients on it. This weekend, we used SkyKick to migrate our domains over to Office 365. Everything is flowing correctly for all external mail and inter company mail.
The issue arises when one of the other tenants on the server sends email to our domain. It delivers it to the old (in-house) Exchange server instead of sending it to the Office 365 server.
We don't want to shut down the old servers for a few days just in case things are delayed in routing changes due to DNS, etc.
How can I make the other tenants follow the path in the MX record and deliver to our migrated domain at Office 365 instead of sending it to the "internal" old domain that is still on the same Exchange server?
Any help or thoughts would be greatly appreciated,
Thanks
Jason
Our Exchange 2010 server was also a DC and a DNS server. Yesterday we ran DCPromo to remove this from the email server. Following this about 1/3 of our mailboxes kept coming back saying that they were unreachable. The system attendant was pointing to the wrong database so we changed this in ADSI edit (HomeMDB attribute.)
The current problem is that random emails are getting stuck in either the Submission queue or the unreachable queue. If I run the command to resubmit the queue most of these will eventually get through. The last error shown on messages in this queue are: The mailbox recipient does not have a mailbox database.
Also random users mailboxes seem to become inaccessible. If you go the the calendar settings tab in the mailbox properties you get: Cannot open mailbox .... CN=Microsoft System Attendant. It was running the command 'Get-calendarPrcessing -Identitiy .... -ReadFromDomainController'
I run a Set-ADServerSettings -PreferredServer ... however it keeps losing this setting?
My Windows 7.1 is updated and registered but is rejected for upgrade to Windows 10. Why?
Hi,
I'm trying to create a send connector within Exchange 2010 to have emails sent from my users to a HP ePrint Enterprise server with in my network. When I go to complete the task, I get the following error. In looking around the internet, I haven't found any information to help me. I'm hoping someone here can shed some insight on this error.
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:00
HPeprint
Failed
Error:
Can't create an object in a newer parent or container. HPeprint is version 0.1 (8.0.535.0), but its parent or container is
version 0.10 (14.0.100.0).
Click here for help...
http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.141).aspx?v=14.3.248.2&t=exchgf1&e=ms.exch.err.ExA41B19
Exchange Management Shell command attempted:
new-SendConnector -Name 'HPeprint' -Usage 'Custom' -AddressSpaces 'SMTP:*.eprint.nmlegis.gov;1' -IsScopedConnector $false
-DNSRoutingEnabled $false -SmartHosts '[10.1.60.64]' -SmartHostAuthMechanism 'None' -UseExternalDNSServersEnabled $false
-SourceTransportServers 'ALOES','ASTER1'
Elapsed Time: 00:00:0
thank you in advance,
Dominick