Exchange Server 2007

Exchange 2007 550 5.7.1 Unable To Relay

Exchange 2007 550 5.7.1 ‘Unable To Relay’

In order to create an SMTP Receive Connector in Exchange 2007 which will allow anonymous SMTP servers within your network to connect and relay mail you will need to complete the following configuration steps.

First, create you Receive Connector as follows, ensuring the ‘Anonymous users’ option is selected inn the ‘Permissions groups’ tab.

The ‘Network’ configuration of this connector limits access to a partiicular server thus preventing unauthorised relay of email:

Finally, the most important stage of this configuration, execute the following shell command using the Exchange Management Sell (EMS), replacing ‘HT_Server_Name’ with the machine name of the Hub Transport Server you configured the new recieve connetcor on:

Normal 0 false false false EN-GB X-NONE X-NONE MicrosoftInternetExplorer4 /* Style Definitions */ table.MsoNormalTable {mso-style-name:”Table Normal”; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:””; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:11.0pt; font-family:”Calibri”,”sans-serif”; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-fareast-font-family:”Times New Roman”; mso-fareast-theme-font:minor-fareast; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:”Times New Roman”; mso-bidi-theme-font:minor-bidi;}

Get-ReceiveConnector “HT_Server_Name\Server Relay Receive Connector” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “ms-Exch-SMTP-Accept-Any-Recipient”


Exchange Server 2007

Exchange 2007 Recursive Public Folder Permissions

Setting Recursive Public Folder Permissions in Exchange Server 2007

As you may have noticed by now, public folder client permissions cannot be set using the Exchange Server 2007 Public Folder Management MMC snap-in. You are only able to achieve this by using the Exchange Management Shell.

Setting individual public folder permissions can be achieved using the following command:

Add-PublicFolderClientPermission “\UK” -User “User1” -AccessRights PublishingEditor

Setting recursive public folder permissions, i.e. permissions that propagate from a parent folder to its sub folders is not as obvious. Microsoft has included a script with the Exchange Server 2007 Management tools to make this possible. An example of how to use this script is detailed below:

foreach ( $mbx  in(“user1”,”user2″,”user3″)) { AddUsersToPFRecursive.ps1 –TopPublicFolder  “’\UK\Test Folder 1” –User $mbx –Permissions PublishingEditor }

This command will grant ‘Publishing Editor’ permissions on the ‘\UK\Test Folder1’  for user1, user2 and user3. The number of users is not limited. Just ensure you encapsulate the users in speech marks and separate them by commas.

It is import to encapsulate the public folder name using both ” and ‘ characters. For example ” ‘test folder’ “. If you do not use both characters you will recive errors when using this script. The error will read something like:

Get-PublicFolder : A parameter cannot be found that matches parameter name  ‘Folder1’

This is because a space follows ‘\UK\Test’