What is the meaning of softfail in authentication-result for spf in an email header and what issues it can cause and how to fix it? Does it get fixed on sender's exchange side or recipient's exchange side?
↧
What is the meaning of softfail and what issues it can cause and how to fix it?
↧
Remote Server returned '550 5.7.1 RESOLVER.RST.AuthRequired; authentication required
We are in a Hybrid environment, all of our mailboxes are hosted in O365 but we have an on premise Exchange server for mail relay. We just installed an Exchange 2013 server today (we have Lync 2010 so we could not jump to Exchange 2016), it replaced our Exchange 2010 server. Yesterday I could send to our Dynamic Distribution Group. Once our Exchange 2013 server was in place and everything routed through it I cannot send to it any longer - Remote Server returned '550 5.7.1 RESOLVER.RST.AuthRequired; authentication required. I can send to DL's just fine, just not this DDG. The permissions are correct and I have removed and re-added myself as someone who can send to it. It's as if it thinks I am not an internal user.
Your
message can't be delivered because delivery to this address is restricted.
For more information about this issue see
DSN code 5.7.1 in
Exchange Online
↧
↧
rejected messages
We running exchange 2013 on prem and in hybrid mode with office 365. We use barracuda essentials for spam and archiving. We have been seeing a lot of rejected messages in the logs of the Essentials stating the exchange server is rejecting the emails even though the users are valid. it is happening coming from multiple domains.
Rejected (smtp.berkshirefarm.org:25:550 5.1.1 User unknown)
Allowed Sender Policies (header:Lisa.GharteyOgundimu@ocfs.ny.gov)Rejected (smtp.berkshirefarm.org:25:550 5.1.1 User unknown)
both were going to valid working email accounts on our domain that have mailboxes still on premise.
I have checked and updated our spf records and all other records look fine. The users get emails from other outside companies
Thank You in advance
| Allowed | Sender Policies (header:Lisa.GharteyOgundimu@ocfs.ny.gov) | Rejected (smtp.berkshirefarm.org:25:550 5.1.1 User unknown) |
| Allowed | Sender Policies (header:Lisa.GharteyOgundimu@ocfs.ny.gov) | Rejected (smtp.berkshirefarm.org:25:550 5.1.1 User unknown) |
| Allowed | Sender Policies (header:Lisa.GharteyOgundimu@ocfs.ny.gov) | Rejected (smtp.berkshirefarm.org:25:550 5.1.1 User unknown) |
Stonecold31666
↧
Message trace details
What is the meaning of below custom_data in Message Trace
S:PCFA=OCAT|dkim=0
S:DeliveryPriority=Normal
S:AMA=EV|engine=A|v=0|sig=201902060009|name=|file=|hash=|phash=
S:AMA=EV|engine=S|v=0|sig=20190205.020|name=|file=|hash=|phash=
S:AMA=EV|engine=M|v=0|sig=1.285.949.0|name=|file=|hash=|phash=
S:TRA=ETRP|ruleId=a01820a0-fda1-412d-9d30-340e4b888344|st=2018-10-24T02:40:36.0000000Z|ExecW=0|ExecC=0|Conditions=ISUP,M.F,0
S:TRA=ETRP|ruleId=e664fc67-6337-488d-9337-d6c6324012b2|st=2018-11-08T10:13:36.0000000Z|ExecW=0|ExecC=0|Conditions=ISUP,M.F,0
S:TRA=ETRP|ruleId=a8a51256-6fb0-4ff1-a573-b354a68805b8|st=2018-11-26T04:37:50.0000000Z|ExecW=0|ExecC=0|Conditions=DIP,M.SD,0
'S:TRA=ETRP|ruleId=d959b20d-f646-47f2-a583-203d8a2281ef|st=2019-01-22T02:45:14.0000000Z|ExecW=0|ExecC=0|Conditions=DIP,F,0
ISUP,M.F,0'
S:TRA=ETRP|ruleId=3f421a0e-bdd4-48c5-82db-ef57acdcd908|st=2018-12-05T09:55:43.0000000Z|ExecW=0|ExecC=0|Conditions=DIP,F,0
S:TRA=ETRP|ruleId=6f7b105f-a8d7-4afb-ab0b-791b6b0a4fa1|st=2019-01-22T02:32:20.0000000Z|ExecW=0|ExecC=0
S:TRA=ETRI|MsgType=Normal|Ex=|IsKnown=|FipsStatus=NoFips|AttchUns=|ceErr=|Synth=False-Na-ON
↧
Emails not going thru to rogers & shaw.....DNS Connector ( outgoing smtp ) issue
Hello
Please help.....we have changed our external IP and now unable to email users. Emails not going thru and are stuck in Queue
Thanks
↧
↧
Microsoft Exchange Auth Certificate is going to expire
I was getting a warning says "Microsoft Exchange Auth Certificate is going to expire soon" like that.
This certificate was self generated and would like to renew before expire and i had clicked on renew button in Exchange Control panel for both CAS (1 server) and Mailbox Server (1 server).
I can see that the certificate got renewed for another 5 years and thumbprint has been changed.
My Question is, Exchange will take the renewed certificate automatically or do i need to publish it. If yes please provide guidance to publish the renewed certificate. Could anyone please help me.
Regards
Anu
↧
Delivery Status Notification - SPFDKIM.FailureNotification
Hi,
Recently we getting the below "delivery status notification" email from one of the Bank email domain.
Could someone help on this to get resolve. Please provide the detail step.
Below is the error Notification Email, which we received from other email domain.
Currently our Exchange 2013 server runs on
-TLS 1.1
-OS : Win 2012 R2 Standard
-Exchange 2013 Enterprise
-Version 15.0 (Build 1365.1)
-Mailbox, Client Access on same server.
Thanks
-----Original Message-----
From: SPFDKIM.FailureNotification@ccsbank.com [mailto:SPFDKIM.FailureNotification@ccsbank.com]
Sent: Wednesday, November 28, 2018 9:01 AM
To: Jacob
Subject: Delivery Status Notification
Delivery Status Notification
Your Email with Subject: FW: Fund transfer for In
Sender : Jacob@rrtest.com
Recipient: Bala@ccsbank.com
was delivered to CCS Bank recipients, however it has failed SPF and DKIM check. Going forward such emails will be discarded. Please inform your email admin to rectify it.
↧
exchange server delay the message
hi all ,
we have three exchange server 2013 , now emails from outside are being delayed and some of email not being received . we have fortimail on the environment. from the fortimail view the emails shows that are being received and querying on one of the exchange server when checking the exchange server queue no emails is there >
also the transaction logs size are getting increase after adding the third node to dag ?
any idea how to start troubleshooting ?
↧
SORBS SPAM " WILL BE DE-ACTIVATED VERIFY YOUR EMAIL WITHIN 48HOURS "
Hello Good People,
I need to undertsand why i received this email.
Do i have to do some policy etc.
Appreciate your feedback.
Regards,
Arif
↧
↧
Maximum attachment Size
Hello,
I configured TransportConfig MaxReceiveSize 50MB MaxSendSize 50MB. SendConnector also 50MB, ReceiveConnector same. But when I open OWA I can only add 25MB attachment.
Where is could be the problem?
Thanks
↧
smtp relay for certain domains
hi,
is it possible to make a relay connector for a certain domains ( gmail , hotmail, yahoo) because my mails always in spam and
companies like dnsexit count relay by mails .
and thanks
↧
Bounce back emails to external domains
Hello Good People,
My users receiving bounce back emails when they are sending email to few external domains.
We user smart hosts, How do i start troubleshooting the issue ?
Do i have to contact the smart host support team as my external emails are routed via them.
Regards,
Arif
↧
Temporarily block emails to a particular user
Hello,
I want to block emails to a particular user but the rest flow. I can't change this users email address during that time. I need their account active. So if I want to block new emails going to mary@acme.com but want emails to continue to flow to joe@acme.com - how do I do this?
Thanks.
↧
↧
Emails get stuck in queue with the following error: 400 4.4.7 Message delayed
Hello,
We have 2 users in the company that are not receiving emails generated by accounts that are set up On-Premise.
When I looked in the Queue Viewer, there were about 100 emails in that queue all addressed to them with Message Delayed error.
Everyone else in the company don't have any issues.
I compared the recipient lines for the successfully delivered messages with theirs.
Successfully delivered had the following:
Recipients: firstname.lastname@ourcompany.com;2;0;[{LRT=};{LED=};{FQDN=};{IP=}];0;;0
The error ones had the following:
Recipients: firstname.lastname@ourcompany.COM;2;2;[{LRT=};{LED=};{FQDN=};{IP=}];0;CN=Out to Office365,CN=Connections,CN=Exchange Routing Group (somestuffhere1),CN=Routing Groups,CN=Exchange Administrative Group (somestuffhere2),CN=Administrative Groups,CN=Ourcompanyname,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=Ourcomapnyname,DC=Com;0
They also had different Source IP addresses and Queue ID.
Also, I'm new at this, any help would be appreciated.
Tatyana
↧
403 4.7.0 encryption too weak 0 less than 128
When a customer from one company tries to email us, the email is not delivered and the customer eventually gets an NDR that shows the email failed with the following:
Status: 4.4.7
X-Supplementary-Info: < #4.4.7 SMTP; 403 4.7.0 encryption too weak 0 less than
128>
The customer is saying that our mail server is the problem. Our mail server is a Windows SBS 2011 server with Exchange 2010 w/SP3, rollup 22
What do I need to do to receive these emails?
Thanks,
Dale
Dale
↧
When is deployment of Exchange in the DMZ reccomended?
The thought would be that by moving Exchange from the internal network, it will make my internal network more secure, but removing a point of access and escalation from it.
TheDrape
↧
DKIM - support for, standalone on premise 2013
I need to deploy DKIM on a single stand-alone Exchange 2013 server we have on premises. is there a Microsoft tool for crating the DKIM key, a plug - in or a PowerShell script?
I have a Exchange server behind a ASA firewall and a smart host for secure messaging in between, for two .com domains.
can someone vouch for the plugin from emailarchitect.net? or offer another solution?
thanks in advance
↧
↧
Filter / Let attachments be approved if they don't have an extension
Hi,
we have rules to filter specific extensions to be approved by admins, before they are delivered.
That works as expected.
But how do I filter files, that do not have any extensions (or deny them).
Lately those appear to be delivered, but they are usually never good attachments, so I want to block them or have them approved.
I didn't find any solution, as I can say *.zip, but this is just like
"fileabcde" instead of "fileabcde.zip".
Probably you can help.
Thanks
Patrick
↧
S/MIME configuration for Microsoft Outlook on the web OWA
Hello
I have a platform based on Windows servers,
I have an Exchange 2013 mail server with an OWA web access application.
I need to enable electronic signature of emails by accessing through OWA.
the certification authority that will be used is on another server under windows as well
I have set the S/MIME settings as follows:
Set-SmimeConfig -OWAAllowUserChoiceOfSigningCertificate $true
Set-SmimeConfig -OWAAlwaysSign $true
Set-SmimeConfig -OWACheckCRLOnSend $true
Set-SmimeConfig -OWAClearSign $true
Set-SmimeConfig -OWACRLConnectionTimeout 60000
Set-SmimeConfig -OWACRLRetrievalTimeout 10000
Set-SmimeConfig -OWADisableCRLCheck $true
Set-SmimeConfig -OWAForceSMIMEClientUpgrade $true
Set-SmimeConfig -OWAIncludeCertificateChainAndRootCertificate $true
Set-SmimeConfig -OWASenderCertificateAttributesToDisplay *********
Set-SmimeConfig –OWASigningAlgorithms 800C
Set-SmimeConfig -SMIMECertificateIssuingCA $([byte[]](Get-Content -Encoding byte -Path "C:\certs\issuer&root.sst" -ReadCount 0)
the file issuer&root.sst was imported from the CA
I have installed owasmime.msi for Internet explorer
but unfortunatly it doesn't give me the ability to sign
both fields:
encrypt this message
and
digitally sign this message
are in grey
in parameters I have set to choice automatically the certificate
How could I find solution for the problem? please
Thank you
↧
Setting a "disclaimer" for a retired user in Exchange 2013?
We recently had a high profile user retire and we quickly hired a replacement.
I want to keep the mail flowing to the new employee and create a disclaimer stating the retired user is no longer with the company. Step 1 was simple but creating a new disclaimer has me a little confused.
After configuring a disclaimer in the ECP for that user (mail flow>rules>"+">Apply disclaimers) it doesn't work.
The user is disabled in Active Directory.
↧