Undeliverable 5.4.6 when trying to email across untrusted domains
In larger enterprise environments, you could run into situations where two domains share the same email namespace (ie bob@mydomain.com) however users could be contained within Domain 1 and Domain 2 in the same forest, but there is no trust relationship across the domains. If you encounter this issue, there is usually a secondary email address that will allow the email communication to be routed properly through the bridgehead servers. For example, Bob in Domain 1, his primary SMTP address will be bob@mydomain.com, but for users in Domain 2 to send to him, he would need to have a secondary email address of bob@corp.mydomain.com for the bridgeheads to route the mail properly.
There usually is a contact that is synchronized by either a script, or IIFP, which will synchronize identity information across domains, however, there always could be a hiccup.
If you receive the below email undeliverable when trying to send to Bob@mydomain.com from Domain 2 (the domain where Bob's primary Active Directory account does not exist), check his contact in Domain 2 using ADUC.
Your message did not reach some or all of the intended recipients.
Subject: RE: Test Email Sent: 1/8/2009 10:47 AM The following recipient(s) could not be reached: User, Bob on 1/8/2009 10:47 AM
A configuration error in the e-mail system caused the message to bounce between two servers or to be forwarded between two recipients. Contact your administrator.
The contact that resides in Domain 2 should have Bob's primary SMTP address of Bob@mydomain.com but there should be the secondary address listed of Bob@corp.mydomain.com (the routing address to cross the bridgehead servers). Also, go under the "Exchange General" tab, and verify that the email address listed there is Bob@corp.mydomain.com. If it is not, then follow the steps below to fix the issue:
Using a computer with ADSIEdit installed, of course, open ADSI Edit and locate the contact in Domain 1. Find the attribute called: targetAddress and hit Edit to modify the address. Change the address to: SMTP:Bob@corp.mydomain.com and hit OK. From there, give things a chance to replicate, and test sending across domains again. You should not get the undeliverables anymore.
Good Luck!
Comments