External email to mailbox alias being rejected with 554 5.7.1 recipient address rejected.

Mike Morgan 41 Reputation points
2023-03-28T17:39:38.66+00:00

We have a single on premise Exchange 2016 server. We've added an extra email address to one of our user's mailboxes using the EAC. We are able to email that alias internally, but no one outside of our organization can email that address. The bounce message that the sender gets is "Message Blocked 554 5.7.1 <email address alias> Recipient address rejected: Access Denied." I've looked at the mailbox configuration and the message tracking log and can't find anything wrong. How do I find what is causing the the email to be rejected? Thanks.

Exchange Server
Exchange Server
A family of Microsoft client/server messaging and collaboration software.
1,258 questions
Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,600 questions
{count} votes

Accepted answer
  1. Jarvis Sun-MSFT 10,191 Reputation points Microsoft Vendor
    2023-04-04T06:33:16.4766667+00:00

    Hi Mike Morgan,

    _

    “We discovered the problem. We have recently performed an administrator password change in active directory. That caused a sync operation interruption with Sophos Central (our email protection solution). Once the password was changed on the agent, AD began syncing again and external email is now being received. Thank you for your help.”_  

    Glad to see that your issue had already been resolved and thanks for sharing the solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to "Accept" the answer.  

    [External email to mailbox alias being rejected with 554 5.7.1 recipient address rejected.]  

    Issue Symptom:

    We are able to email that alias internally, but no one outside of our organization can email that address.  

    Solution:

    Once the password was changed on the agent, AD began syncing again and external email is now being received.  

    Best Regards,

    Jarvis Sun

    1 person found this answer helpful.
    0 comments No comments

2 additional answers

Sort by: Most helpful
  1. Amit Singh 4,896 Reputation points
    2023-03-29T06:40:26.2433333+00:00

    Could you check what FQDN is defined on their SEND connector?

    Ideally, it should be such as mail.domain.com.

    Check your barracuda advanced filtering settings for something similar to - "Validate helo/ehlo" check box.


  2. Mike Morgan 41 Reputation points
    2023-03-29T14:30:14.6066667+00:00

    We discovered the problem. We have recently performed an administrator password change in active directory. That caused a sync operation interruption with Sophos Central (our email protection solution). Once the password was changed on the agent, AD began syncing again and external email is now being received. Thank you for your help.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.