Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all articles
Browse latest Browse all 3660

ms-Exch-SMTP-Accept-Any-Sender on ReceiveConnector does not work

July 10, 2013, 1:15 pm
$
0
0

Hi Everybody,

while deploying Exchange 2013 (first Exchange server in organization) I recognized that authorized users are only allowed to send as users configured recording their mailbox.

Now we have users/devices sending with SMTP (no Outlook!) that should be allowed to send as any sender (for who no mailbox might be configured)

We have some internal ReceiveConnector configured (SMTP-LAN-Relay) and I have set extended permissions with:

[PS] C:\Windows\system32>Add-AdPermission -Identity "SMTP-LAN-Relay" -User "NT-AUTORITÄT\Authentifizierte Benutzer" -ExtendedRights ms-Exch-SMTP-Accept-Any-Sender

I can see these permissions also when quering the permissions

[PS] C:\Windows\system32>Get-ReceiveConnector |Get-ADPermission|where {$_.User -like '*authentifi*'}|ft identity,user,extendedrights,accessrights

Identity                              User                                  ExtendedRights                       AccessRights
--------                              ----                                  --------------                       ------------
VM-EXCHANGE01\Default VM-EXCHANGE01   NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Submit}                {ExtendedRight}
VM-EXCHANGE01\Default VM-EXCHANGE01   NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Bypass-Anti-Spam}           {ExtendedRight}
VM-EXCHANGE01\Default VM-EXCHANGE01   NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Accept-Headers-Routing}     {ExtendedRight}
VM-EXCHANGE01\Default VM-EXCHANGE01   NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Recipient}  {ExtendedRight}
VM-EXCHANGE01\Default VM-EXCHANGE01   NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\Client Proxy VM-EXCH... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Submit}                {ExtendedRight}
VM-EXCHANGE01\Client Proxy VM-EXCH... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Bypass-Anti-Spam}           {ExtendedRight}
VM-EXCHANGE01\Client Proxy VM-EXCH... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Accept-Headers-Routing}     {ExtendedRight}
VM-EXCHANGE01\Client Proxy VM-EXCH... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Recipient}  {ExtendedRight}
VM-EXCHANGE01\Client Proxy VM-EXCH... NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Sender}     {ExtendedRight}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Recipient}  {ExtendedRight}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Accept-Headers-Routing}     {ExtendedRight}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Bypass-Anti-Spam}           {ExtendedRight}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Submit}                {ExtendedRight}
VM-EXCHANGE01\SMTP-Anywhere-Relay     NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\Outbound Proxy Front... NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\Client Frontend VM-E... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Recipient}  {ExtendedRight}
VM-EXCHANGE01\Client Frontend VM-E... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Accept-Headers-Routing}     {ExtendedRight}
VM-EXCHANGE01\Client Frontend VM-E... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Bypass-Anti-Spam}           {ExtendedRight}
VM-EXCHANGE01\Client Frontend VM-E... NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Submit}                {ExtendedRight}
VM-EXCHANGE01\Client Frontend VM-E... NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Accept-Headers-Routing}     {ExtendedRight}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-Bypass-Anti-Spam}           {ExtendedRight}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Recipient}  {ExtendedRight}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Submit}                {ExtendedRight}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu... {ms-Exch-SMTP-Accept-Any-Sender}     {ExtendedRight}
VM-EXCHANGE01\SMTP-DMZ-NoRelay        NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}
VM-EXCHANGE01\SMTP-MX-NoRelay         NT-AUTORITÄT\Authentifizierte Benu...                                      {ReadProperty}

Unfortunately this setting is not working at all, that means I still get errors

5.7.1 Client does not have permissions to send as this sender

when sending as nomailboxexists@domain.tld while authenticating as my.user@domain.local
I also tried ms-Exch-SMTP-Accept-Authoritative-Domain-Sender already instead of Accept-Any-Sender, no change.

Any ideas? Any help?

Thanks a lot in advance!

Matt



Search
Viewing all articles
Browse latest Browse all 3660

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Download: FK ft Shenky – Nakuyewa ”Prod by: Shenky”

February 16, 2017, 4:24 pm

How to win at Markstrat (Markstrat Tips and Tricks) – Vodites

January 5, 2014, 10:34 pm

Ominde Commission Report and Recommendations – Ominde Report of 1964

March 16, 2015, 5:14 am

Bureau of Internal Revenue: Regional Offices (Directory)

January 9, 2014, 11:06 pm

GO 53 on Enhancement of Ex-gratia upto 5 Lakhs Toddy Tappers in Telangana

March 26, 2017, 11:23 pm

Cakewalk CA-2A Leveling Amplifier v2.0.1.97 WiN, v2.0.1.96 OSX Incl Keygen

October 17, 2016, 7:20 am

Mp3 Download: Mdu - Kunjenjenjena

December 7, 2017, 8:16 am

How the kill the job , when DTP request running for long hours.

July 26, 2013, 2:41 am

Microsoft Intune から展開しているアプリのアップデートについて

October 17, 2016, 4:11 am

18-year-old girl was beaten for half an hour by two Northampton men in 'an...

September 1, 2017, 10:00 pm

Car crash in Dunton Bassett leaves driver in critical condition

October 7, 2014, 7:51 am

Macky 2, Two Others In Road Accident

March 29, 2015, 5:34 am

Application log 00000000000000089514: Could not convert queue DLVST90CLNT

May 14, 2015, 11:27 pm

Detroit mafia: D’Anna Brothers agree to plea deal

April 21, 2016, 6:56 am

Delivery block field greyed out using VA02

January 26, 2016, 2:52 pm

Muloraki Au

June 22, 2016, 1:44 am

【個人撮影】スマホのプライベート映像♪「中に出さないで///」カラオケ屋での生ハメ撮りが流出w【リベンジポルノ】@PornHub

October 12, 2017, 2:23 pm

BREAKING NEWS: Diamond Platnumz Is Reported Dead After Ghastly Car Accident

February 9, 2018, 4:56 am

FIAT 500 B0111 B0112

July 5, 2018, 10:31 am
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>