cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

mailbox permissions

Rising Flight
Brass Contributor

‎Oct 06 2018 01:31 PM

‎Oct 06 2018 01:31 PM

mailbox permissions

I am using Exchange Hybrid Environment. i am using exchange server 2016(Version 15.1 (Build 1466.3).

For Onprem mailbox i have given Send on Behalf permission to Cloud user.
i have given Send on Behalf permisson using the below Shell command


Set-Mailbox onpremuser@mydomain.com -GrantSendOnBehalfTo clouduser@mydomain.com

In outlook i am logged in as cloud user and From Tab i have selected onprem user. When i try to send i am getting below error

Your message did not reach some or all of the intended recipients.

      Subject: TEST
      Sent: 05-Oct-18 2:00 PM

The following recipient(s) cannot be reached:

      someuser@mydomain.com on 05-Oct-18 2:00 PM
            This message could not be sent. Try sending the message again later, or contact your network administrator. You do not have the permission to send the message on behalf of the specified user. Error is [0x80070005-0x0004dc-0x000524].

 

1,237 Views
0 Likes
1 Reply
Reply
1 Reply
Adam Ochs

‎Oct 08 2018 07:41 AM

‎Oct 08 2018 07:41 AM

Re: mailbox permissions

Hello @Rising Flight,

 

I can tell you cross-premises permissions are one of the more difficult and challenging things to get working in an O365 hybrid deployment. So I wish you the best on your journey to find this one out.

 

Here are a list of things to check

 

1. First, check the remote mailbox object on-prem. Is it created correctly, is the target delivery address correct? This is the first step in ensuring everything moves on correctly.

 

2. Check the connectors. I assume you set them up using the Hybrid Configuration Wizard. Think of running through it again. They need to be setup and working properly, allowing communication to flow through, and for that communication to be seen as internal.

 

3. Send on behalf of I have ALWAYS had problems with. It works if setup before, but once migrated its a pain. Specifically delegates are a bear to deal with - https://support.microsoft.com/en-us/help/4039613/delegate-cannot-send-on-behalf-of-after-migration-t...

 

If you have a fully updated AADC this may no longer be a problem, but I have had this issue in the past.

 

With that said you have 2016, so it SHOULD work - https://docs.microsoft.com/en-us/exchange/hybrid-deployment/set-up-delegated-mailbox-permissions

 

3. Did the permission get written properly? You should be able to see the permission on-prem. If you are trying delegates did that propagate through.

 

4. Do other permissions work? If you temporarily grant full access, or send as, do either of those permissions work?

 

5. Are you sure you are sending mail properly with send on behalf? - https://kb.intermedia.net/Article/2165

 

Start there, I would think one of those steps will lead to the issue, which at first glance im guessing is the delegates not writing back. Trying to add that manually, or trying another permissions should give you an idea.

 

Adam 

0 Likes
Reply