Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Receive Connector authentication and Permission

6 views
Skip to first unread message

Chris

unread,
Jul 13, 2009, 1:51:01 PM7/13/09
to
Exchange 2007 trying to communicate with a business partner's Exchange 2003
server over a trusted internal network. No firewalls in between, can telnet
to port 25 both ways. I believe I just have the Exchange 2007 receive
connector setup incorrectly, as the Exchange 2003 server recieves mail from
the 2007 server fine. I used Custom as the type when setting it up, but then
modified it with the following settings:

Authentication set to use Basic, Exchange Server Authentication and
Integrated Windows. (But I think originally when the connector was created
it was using TLS and I removed it)

Permissions are: Anonymous, Exchange users, Exchange servers and Legacy
Exchange.

I got an error, event ID: 12041 complaining about TLS cert?

Ed Crowley [MVP]

unread,
Jul 13, 2009, 2:23:09 PM7/13/09
to
You want -AuthMechanism to have None among the options unless you have some
way for the servers to authenticate. If both servers support it, i.e., have
certificates installed (on the Exchange 2003 virtual server and the Exchange
2007 send and receive connectors) you can try to make TLS work. That would
be a recommended configuration if you're at all concerned about security.
--
Ed Crowley MVP
"There are seldom good technological solutions to behavioral problems."
.

"Chris" <Ch...@discussions.microsoft.com> wrote in message
news:1B19176B-85D5-468E...@microsoft.com...

Rich Matheisen [MVP]

unread,
Jul 13, 2009, 3:44:51 PM7/13/09
to

What's the result (from the E2K3 server's SMTP protocol log) when it
tries to send an email to the E2K7 server?

What do you see in your server's receive logs?
---
Rich Matheisen
MCSE+I, Exchange MVP

Chris

unread,
Jul 13, 2009, 4:29:01 PM7/13/09
to
but this wouldn't inhibit mail from flowing, right? TLS is opportunistic I
thought. As long as I allow anonymous connections via the permissions tab,
shouldn't the connection be able to be established?

-authmechanism is set to: Tls, Integrated, BasicAuth, ExchangeServer

chris

"Ed Crowley [MVP]" wrote:

> You want -AuthMechanism to have None among the options unless you have some
> way for the servers to authenticate. If both servers support it, i.e., have
> certificates installed (on the Exchange 2003 virtual server and the Exchange
> 2007 send and receive connectors) you can try to make TLS work. That would
> be a recommended configuration if you're at all concerned about security.
> --
> Ed Crowley MVP
> "There are seldom good technological solutions to behavioral problems."

> ..

Ed Crowley [MVP]

unread,
Jul 13, 2009, 7:10:32 PM7/13/09
to
You don't have "None" enabled, so unless TLS is properly configured, mail
won't flow, as I understand it.

--
Ed Crowley MVP
"There are seldom good technological solutions to behavioral problems."
.

"Chris" <Ch...@discussions.microsoft.com> wrote in message
news:8F40D054-CA70-49DA...@microsoft.com...

0 new messages