Exchange 2007 SP1, rollup 3, one server w/all roles. Outlook 2007 SP1 client
in cached mode w/mailboxes on the server (no psts).
My boss sent a message yesterday afternoon to a distribution group and two
explicit usernames, and copied it to another distribution group-all addresses
are internal to our domain. She got the (sanitized) NDR below back from our
system.
So, I thought, "oh, that group is restricted and she doesn't have permissions"
but that is not the case for either DL. They are restricted, but her name is
in both lists (with the require that all senders are authenticated box
checked), and we don't put delivery restrictions on individual user accounts.
So, I ran message tracking, and it reports RECEIVE with a recipientcount of 4,
which is what I would expect to see if the message was delivered. We then
spot-checked some of the recipient mailboxes, and they ALL have the message-in
other words, it appears that it was sent successfully.
So, why might she receive an NDR like this for a message that was successfully
delivered? Could there be an issue with a member of one of the DLs, and if so,
why would it report the DL name and not the individual recipient? Is there any
sort of powershell command I can run to see if one of the members of this list
has somehow been restricted?
Just an FYI, the main DL that generated the NDR is actually a USG as it's used
for permissions on folders as well. Some of the members are not mail-enabled
users, but we have sent to the list before (maybe as recently as a month ago,
pre rollup 3) w/out this type of NDR coming back. I did find that one computer
account had been accidentally added to this group (unknown when), which I've
removed.
Thanks for any ideas.
-Bonnie
Delivery has failed to these recipients or distribution lists:
DISTRIUBUTIONLIST
Your message wasn't delivered because of security policies. Microsoft Exchange
will not try to redeliver this message for you. Please provide the following
diagnostic text to your system administrator.
_____
Sent by Microsoft Exchange Server 2007
Diagnostic information for administrators:
Generating server: servername1.domain.name
[EMAIL PROTECTED]
#550 5.7.1 RESOLVER.RST.NotAuthorized; not authorized ##
Original message headers:
Received: from servername1.domain.name ([x.x.x.x]) by
servername1.domain.name ([x.x.x.x]) with mapi; Tue, 15 Jul 2008
14:12:38 -0700
Content-Type (this part removed as the list keeps rejecting thinking there is
an attachment)
Content-Transfer-Encoding: binary
From: sendername <[EMAIL PROTECTED]>
To: DISTRIBUTIONLIST <[EMAIL PROTECTED]>,
AnotherUser. <[EMAIL PROTECTED]>, Athirduser
<[EMAIL PROTECTED]>
CC: ANOTHERDISTRIBUTIONLIST <[EMAIL PROTECTED]>
Importance: high
Date: Tue, 15 Jul 2008 14:12:37 -0700
Subject: Upgrade
Thread-Topic: Upgrade
Thread-Index: Acjmv4Hm8d+l7QAjStK70tscbpmLYg==
Message-ID: <[EMAIL PROTECTED]>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator: <[EMAIL PROTECTED]>
MIME-Version: 1.0
~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~
~ http://www.sunbeltsoftware.com/Ninja ~
