Inbound Authentication Failed With Error Unexpectedexchangeauthblob
Contents |
(עברית)المملكة العربية السعودية (العربية)ไทย (ไทย)대한민국 (한국어)中华人民共和国 (中文)台灣 (中文)日本 (日本語) HomeOnline20132010Other VersionsLibraryForumsGalleryEHLO Blog Ask a question Quick access Forums home Browse forums users FAQ Search related threads Remove From My Forums Answered by: UnexpectedExchangeAuthBlob!?!? Previous Versions of Exchange > Exchange Previous Versions - Mail 454 4.7.0 temporary authentication failure exchange 2010 Flow and Secure Messaging Question 0 Sign in to vote So randomly 451 4.4.0 primary target ip address responded with: "235 one of my exchange servers in site B cant deliver mail to site A. Mail is queuing up exchange 2010 unexpectedexchangeauthblob on the server. In the queue i get a "(Retry : Temporary authentication failure) In the event viewer on the exchange servers in Site A i see this error message Inbound cannot achieve exchange server authentication authentication failed with error UnexpectedExchangeAuthBlob for Receive connector Default Severnamehere The authentication mechanism is ExchangeAuth. The source IP address of the client who tried to authenticate to Microsoft Exchange is [ip-address-here]. Any ideas on how to get mail flowing from this server again? All servers exchange 2010 sp1 r4 I verified the default receive connectors are setup properly Edited by
Setspn
Skalinator Saturday, September 10, 2011 4:03 AM Saturday, September 10, 2011 4:00 AM Reply | Quote Answers 3 Sign in to vote Issue was persistent, that server could not send mail to any server in site A. I fixed the issue, the clocks were skewed between the domain controller in that exchange servers site and on that exchange server. It was off about 10 min. So i corrected the clock, and rebooted and mail in the queue was delivered. Marked as answer by Alan.Gim Monday, September 12, 2011 6:49 AM Monday, September 12, 2011 1:09 AM Reply | Quote All replies 0 Sign in to vote On Sat, 10 Sep 2011 04:00:56 +0000, Skalinator wrote: > > >So randomly one of my exchange servers in site B cant deliver mail to site A. Mail is queuing up on the server. > >In the queue i get a "(Retry : Temporary authentication failure) > >In the event viewer on the exchange servers in Site A i see this error message > >Inbound authentication failed with error UnexpectedExchangeAuthBlob for Receive connector Def
2003. Except for one test mailbox, all mailboxes are still on Exchange 2007. Virtual directories are redirected to Exchange 2013, with legacy dns name directed to Exchange 2007, and OWA/ActiveSync are working fine. Mail flow from the internet is still directed to Exchange 2007 and is fine. But mail flow is not working on Exchange 2013. Using OWA with the test mailbox, emails are stuck in the drafts folder. Emails from a mailbox on Exchange 2007 are received by the frontend https://social.technet.microsoft.com/Forums/exchange/en-US/8c0c8f1c-6203-4ac6-aef5-bd0f173d6770/unexpectedexchangeauthblob?forum=exchangesvrsecuremessaginglegacy transport service, but fails on the transport service with this error (192.168.1.76 is the address of Exchange 2013 server, and HV-SRV-EXCH-02 is its name): MSExchangeTransport - 1035 - SmtpReceive Inbound authentication failed with error UnexpectedExchangeAuthBlob for Receive connector Default HV-SRV-EXCH-02. The authentication mechanism is ExchangeAuth. The source IP address of the client who tried to authenticate http://www.networksteve.com/exchange/topic.php/Inbound_authentication_failed_with_error_UnexpectedExchangeAuthB/?TopicId=48504&Posts=8 to Microsoft Exchange is [192.168.1.76]. Certificate is signed by an enterprise CA, and contains public domain names, with the NetBIOS and fqdn names : CN=owa.example.com, OU=xxx.......",Certificate subject "CN=vsg-HV-SRV-CA-02-CA, DC=vsg, DC=qc, DC=ca",Certificate issuer name owa.example.com;hv-srv-exch-02.vsg.qc.ca;AutoDiscover.vsg.qc.ca;AutoDiscover.example.net;AutoDiscover.example.com;HV-SRV-EXCH-02,Certificate alternate names Clocks are in sync (both Exchange servers, and domain controllers) SPNs seem ok : setspn -L hv-srv-exch-02 | find /I "smtp" SmtpSvc/HV-SRV-EXCH-02.vsg.qc.ca SmtpSvc/HV-SRV-EXCH-02 SMTP/HV-SRV-EXCH-02.vsg.qc.ca SMTP/HV-SRV-EXCH-02 DNS servers are set manually in ECP, and on the TransportService and FrontEndTransportService. I also added the IP and hostnames (NetBIOS and fqdn) of both Exchange servers in the hosts file I used Kerberos debug log to check for errors, and all I got is this, which seems fine : A Kerberos Error Message was received: on logon session VSG.QC.CA\hv-srv-exch-02$ Error Code: 0x19 KDC_ERR_PREAUTH_REQUIRED Example logs for the same session, sending an email from a mailbox in Exchange 2007, to the test mailbox in Exchange 2013 From the FrontEnd receive log (hv-srv-exch-01 is the Exchange 2007 server) : 2015-05-06T12:25:40.535Z,HV-SRV-EXCH-02\Default Frontend HV-SRV-EXCH-02,08D2555C60FC73C7,46,192.168.1.76:25,192.168.1.23:15456,<,X-EXPS EXCHANGEAUTH, 2015-05-06T12:25:40.53
Marketing Manager GROUP SPONSORED BY EXCLAIMER See more RELATED PROJECTS Appalachian Wireless ISP Engineered and maintained wireless ISP for last mile, under served rural customers in Western North Carolina https://community.spiceworks.com/topic/445992-exchange-server-unresponsive-kinda School System WAN and LAN LAN Engineer for a mid sized school system https://portal.adscon.com/blog/Lists/Posts/Post.aspx?ID=25 with 2400 work stations, 18 Novel and Windows Servers, 5000 students and over 700 employee Email Archiving Deploy Email Archiving Solution. TECHNOLOGY IN THIS DISCUSSION Microsoft Exchange Server 2010 Microsoft Exchange Server 2013 Join the Community! Creating your account only takes a few minutes. Join Now Hello,I setup a new Exchange exchange 2010 2013 server for a client running on a Server 2012 Hyper-V VM. The install went well, got an SSL cert and everything seemed to be running well. After a storm (and a possible power outage), the client reported that emails were sitting in their Drafts folder and wouldn't get sent. They kept getting the message that they didn't have permission to send "" (yes, just double quotes, inbound authentication failed no name). He also couldn't delete the messages out of the drafts folder.I did some research and couldn't really find much on the issue. I tried to check some things in Powershell and got the same repetitive message about access denied when trying to connect (locally, mind you). I opened the Exchange Toolbox and that snap-in actually crashed while loading. Something is seriously off and I don't know if they are all related or all completely separate issues. I updated to the latest rollup to no avail. Same issues continue to happen.I can log into OWA and ECP without a problem but if I send a message through OWA, it does the same as the clients - puts it in Drafts and never sends it.Any ideas out there?Thanks in advance,Brandon Tags: Microsoft Exchange Server 2013Review it: (16) Reply Subscribe View Best Answer RELATED TOPICS: New exchange server Exchange server build advice How do I setup my Exchange Server?   12 Replies Habanero OP AceOfSpades Feb 17, 2014 at 5:32 UTC Did you change/remove any of the connectors? See this similar issue http://community.spiceworks.com/topic/309145-exchange-2013-messages-stuck-in-drafts 2 Anaheim OP BeBoo Feb 17, 2014 at 5:41 UTC Ace,Not to my knowle
through the Ribbon, use standard browser navigation keys. To skip between groups, use Ctrl+LEFT or Ctrl+RIGHT. To jump to the first Ribbon tab use Ctrl+[. To jump to the last selected command use Ctrl+]. To activate a command, use Enter. Site Actions This page location is: ADS Consulting GroupADS Consulting Group BlogPostsExchange 2010 Service Authentication Fails with UnexceptedExchangeAuthBlob BrowseTab 1 of 1. Sign In ADS Consulting Group Blog ADS Consulting Group Blog ADS Consulting Group BlogCurrently selected Quick Launch Untitled List does not exist. The page you selected contains a list that does not exist. It may have been deleted by another user. CategoriesCategory 1Category 2Category 3Custom DevelopmentExchangeNetworkingSecuritySharePointSQL ServerVirtualizationVOIPView in Web Browser/blog/_layouts/VisioWebAccess/VisioWebAccess.aspx?listguid={ListId}&itemid={ItemId}&DefaultItemOpen=10x00x1FileTypevdw255Compliance Detailsjavascript:commonShowModalDialog('{SiteUrl}/_layouts/itemexpiration.aspx?ID={ItemId}&List={ListId}', 'center:1;dialogHeight:500px;dialogWidth:500px;resizable:yes;status:no;location:no;menubar:no;help:no', function GotoPageAfterClose(pageid){if(pageid == 'hold') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/hold.aspx?ID={ItemId}&List={ListId}'); return false;} if(pageid == 'audit') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/Reporting.aspx?Category=Auditing&backtype=item&ID={ItemId}&List={ListId}'); return false;} if(pageid == 'config') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/expirationconfig.aspx?ID={ItemId}&List={ListId}'); return false;}}, null);0x00x1ContentType0x01898Edit in Browser/_layouts/images/icxddoc.gif/blog/_layouts/formserver.aspx?XsnLocation={ItemUrl}&OpenIn=Browser&Source={Source}0x00x1FileTypexsn255Edit in Browser/_layouts/images/icxddoc.gif/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}0x00x1ProgIdInfoPath.Document255Edit in Browser/_layouts/images/icxddoc.gif/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}0x00x1ProgIdIn