Well here’s another one for the books. We use and recommend Reflexion for hosted email security. In the last two days we’ve migrated both ourselves and one particular client onto the new Reflexion platform (new version, etc). The migration was perfectly simple. The Reflexion guys migrated across all settings, etc, and all we had to do was update MX and Smarthost settings. So moving grassrootsit.com.au across went without hitch, but our client stopped receiving any inbound email. AGAGH.

So after some fantastic and very prompt support from Reflexion (you da man Scott), here’s what happened… This particular client was previously supported by another IT guy who had some creative ways of doing things. Once we moved their domain onto the new platform which, as we now know uses opportunistic TLS for SMTP (ie: if TLS is offered by the client’s server, it will use it), the ‘creatively configured’ TLS on the client’s exchange server didn’t quite behave as expected. TLS transmission failed, and therefore the emails queued up on the Reflexion server.

Immediate solution? Disable TLS on the Exchange box. How? Right-click on the SMTP Virtual Server in ESM then select Properties > Access > Certificate, then follow the wizard to REMOVE the certificate. I restarted the SMTP service for good measure, but not sure if that was necessary or not. Emails immediately started flowing again.

Here’s an interesting one that we’ll be watching closely. Apparently the OS4 software update for iPhones recently released by Apple is causing problems with some Exchange servers. I’m guessing that the more iPhones you have hooking into your Exchange server the more likely this problem is to occur. Apple has released a quick and easy patch for the problem, but the patch must be installed on each iPhone individually. See the link for more details.

http://support.apple.com/kb/TS3398

This is one that’s cropped up more than once, so for my own reference I’m sticking it up here as a post.

Situation is that an Exchange 2007 distribution group has the ‘Managed By’ field set to a certain user. That user however is unable to manage the group membership as the setting may imply. When attempting to do so they receive the message

Changes to the distribution list membership cannot be saved. You do not have sufficient permission to perform this operation on this object.

This behaviour is by design. For details on granting the appropriate permissions check out this post…

http://www.howexchangeworks.com/2009/09/giving-user-enough-rights-to-manage.html