Exchange 2016 blocking emails

JD 0 Reputation points

hi there,

I am running Exchange 2016 and went to the Microsoft site to fill out a contact form. Microsoft attempted to email be back saying thank you from but our Exchange server blocked the email. This is the message I am seeing. Why was the email blocked?

28/10/2023 20:18:34 FAIL SMTP {} Thanks for your request

RunspaceId : 8da772ca-1784-4b02-a831-55867685f81c

Timestamp : 28/10/2023 20:18:34

ClientIp :

ClientHostname : xxx

ServerIp : x.x.x.x

ServerHostname :

SourceContext : Sender Id Agent

ConnectorId : xxx\Default xxx

Source : SMTP

EventId : FAIL

InternalMessageId : 190838281863168

MessageId :

NetworkMessageId : 196b3170-6f7d-4763-484d-08dbd7eaadff

Recipients : {}

RecipientStatus : {[{LED=550 5.7.1 Sender ID (PRA) Not Permitted};{MSG=};{FQDN=};{IP=x.x.x.x};{LRT=}]}

TotalBytes : 0

RecipientCount : 1

RelatedRecipientAddress :

Reference :

MessageSubject : Thanks for your request

Sender :

ReturnPath :

Directionality : Incoming

TenantId :

OriginalClientIp :

MessageInfo :

MessageLatency :

MessageLatencyType : None

EventData : {[ToEntity, Unknown], [FromEntity, Internet], [DeliveryPriority, Normal], [OriginalFromAddress,], [AccountForest, xxxcom]}

TransportTrafficType : Email

SchemaVersion : 15.01.2507.034

Exchange Server
Exchange Server
A family of Microsoft client/server messaging and collaboration software.
817 questions
Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,011 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Jarvis Sun-MSFT 8,001 Reputation points Microsoft Vendor

    Hello @JD ,

    Welcome to our Q&A forum.

    Based on the error message you provided, it seems that your Exchange server blocked the email from Microsoft due to a Sender ID (PRA) Not Permitted error. This error occurs when the sender’s domain does not have a valid Sender Policy Framework (SPF) record or if the SPF record is not configured correctly.

    To resolve this issue, you can check if the SPF record for Microsoft’s domain is configured correctly. You can use the Microsoft Remote Connectivity Analyzer to check if the SPF record is valid. If the SPF record is not valid, you can add it to your list of allowed domains.

    Please feel free to let us know if you have any updates.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". 

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.