The Remote Simple Mail Transfer Protocol Service Rejected AUTH Negotiation
This article was previously published under Q329636
When users send e-mail to external, remote, or Internet domains, they may receive the following notification from the Postmaster or Administrator of the local Exchange server:
Delivery Status Notification
This is an automatically generated Delivery Status Notification. THIS IS A WARNING MESSAGE ONLY. YOU DO NOT NEED TO RESEND YOUR MESSAGE Delivery to the following recipients has been delayed email@example.com
The user may also receive the following message indicating the time expiration of delivery attempts for the message:
Your message did not reach some or all of the intended recipients.
Subject: Sender's subject Sent: Date and time that the message was sent The following recipient(s) could not be reached: someone@ example.com on date and time Could not deliver the message in the time limit specified. Please retry or contact your administrator. (server.contoso.com #4.4.7)
This behavior may occur if the outbound security of the Simple Mail Transfer Protocol (SMTP) virtual server or the outbound security of one or more SMTP Connectors are set incorrectly.
To verify whether this is the cause:
Open Exchange System Manager. Expand Servers, and then expand . ServerName Expand Protocols, and then expand SMTP. Expand Default SMTP Virtual Server, and then expand Queues.
Remote Delivery Queues will be displayed in retry mode (A Blue Arrow).
To view the description of the queues in retry status:
Right-click a queue in retry status, and then click Properties. The upper status box should read, "Retry, Remote delivery". The lower box should read, "The remote SMTP service rejected AUTH negotiation".
This resolution addresses two types of delivery methods.
Using DNS for Delivery
By default, Anonymous access is the default setting for sending SMTP mail by using DNS to all Internet domains. To resolve this behavior:
Follow these steps to change the SMTP virtual server: Open Exchange System Manager. Expand , expand ServerName Protocols, and then expand SMTP. Right-click Default SMTP Virtual Server, and then click Properties Click the Delivery tab. Click Outbound Security. Click to select the Anonymous access option, click OK, and then click OK again. Follow these steps to change the SMTP connector: Locate, and then expand Connectors. Right-click SMTP Connector, and then click Properties Click the Advanced tab. Click the Outbound Security button. Click to select the Anonymous access option, click OK, and then click OK again. Close Exchange System Manager. Forwarding Mail Through a Smart Host
Use an SMTP connector for this type of delivery, and set access control to the requirements of the smart host. For more information about when to use an SMTP Connector, see the "References" section.
Use the preceding steps for the SMTP connector. Set the outbound security according to the requirements of the Smart host.
This behavior is by design.
XCON: When to Create SMTP Connectors in Exchange 2000
HOW TO: Install and Configure SMTP Connectors in Exchange 2000 Server
XCON: Delivery Status Notifications in Exchange 2000 Server
Article ID: 329636 - Last Review: 10/30/2006 16:38:33 - Revision: 2.2
Microsoft Exchange Server 2000 Service Pack 1, Microsoft Exchange 2000 Server Service Pack 2, Microsoft Exchange Server 2000 Service Pack 3, Microsoft Small Business Server 2000 Standard Edition, Microsoft BackOffice Small Business Server 2000 Service Pack 1