No mail is send from a exchange 2010 hub to a exchange 2007 hub

After installing a exchange 2010 Hub transport server in a exchange 2007 organisation, no mail is send from the exchange 2010 hub to the exchange 2007 hub. When you take a look in the queue viewer on the exchange hub transport server you see the emails stuck with the following error:

“451 4.4.0 Primary target IP address responded with: “451 5.7.3 Cannot achieve Exchange Server authentication.” Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts”

This error occurs when on the exchange 2007 hub transport server a additional receive connector is created, for instance a anonymous relay connector. The interal exchange connections use Transport Layer Security (TLS) authentication to communicate, this is not selected in the additional receive connector, so communication fails.

Solution: Create a new Internal receive connector, at remote ip addresse give in alle exchange hub transport servers. This creates a receive connector with TLS and Exchange server authentication enabled. On the permission groups tab the exchange servers and legacy exchange servers must be enabled.

Probably the same error can occur otherwise round or when you have more then 1 exchange 2007 of 2010 hub transport servers.

Posted in Blog, Exchange 2007, Exchange 2010 by ronnypot at July 30th, 2010.
Tags: ,

6 Responses to “No mail is send from a exchange 2010 hub to a exchange 2007 hub”

  1. Jeffrey says:

    THanks Ronny this solved my issue!!!!

  2. Thank you! Solved my issue… You are froody! (HHGTG)


  3. Paul T. Ireland says:

    Do you need to perform this task on the Exchange 2007 server too?

    • ronnypot says:

      Yes, you have to this on all exchange servers where additional receive connectors are created.

  4. Ercan ATLI says:

    Thanks Ronny, its started to work 🙂

  5. mikanke says:

    A lot of thanks.

    Now i can send mails to Exchange 2007 from 2010.

    I created a new receive connector in Exchange 2007 with the Exchange 2010 Server IP. The permissions neccessary were enabled automatically.

    Thanks again

Leave a Reply

Sharing Buttons by Linksku