SMTP
SMTP 451 4.3.5 means the receiving server is misconfigured and temporarily can't accept your email. Learn what RFC 3463 X.3.5 means and how to fix it.
Updated Jul 1, 2026
The short answer
SMTP 451 4.3.5 is a temporary (4xx) failure meaning the receiving mail server is "incorrectly configured" and cannot accept your message right now. Per RFC 3463, enhanced code X.3.5 points to a config problem on the destination system, not your content. It's retryable: queue and resend with backoff, and if it persists, the recipient's admin must fix their MTA.
SMTP 451 4.3.5 is a temporary delivery failure. The basic reply code 451 is defined in RFC 5321 §4.2.3 as "Requested action aborted: local error in processing" — a 4xx code, meaning the message itself is valid and the server expects to recover. The attached enhanced status code 4.3.5 is defined in RFC 3463 §3.4 as X.3.5 "System incorrectly configured": "The system is not configured in a manner that will permit it to accept this message."
The critical detail most explanations miss: the 3 in 4.3.5 is the Mail System Status subject, which RFC 3463 says covers conditions "under the general control of the destination system administrator." In other words, the "server configuration problem" is almost always on the receiving mail server, not yours — and because it's a 4.x.x class (persistent transient failure), it should be retried, not abandoned.
The receiving MTA accepted the connection but its own configuration prevents it from accepting the message at this moment. Common underlying causes:
Because 4.3.5 is intentionally generic, the bounce text rarely names a specific line — RFC 3463 only guarantees the category of fault, not the exact misconfiguration.
1. Treat it as transient first. A 4xx code means retry. A standards-compliant sender should queue the message and retry with exponential backoff (RFC 5321 recommends multi-day retry windows). Many 451 4.3.5 events are transient and clear within minutes to hours once the receiving server's dependency recovers.
2. Determine which side is misconfigured. Read the full bounce/DSN. The hostname in the response (or the Reporting-MTA/Remote-MTA fields of the DSN) tells you whether the rejecting server is the recipient's or one of yours. Test the path directly:
swaks --to user@recipient-domain.com --server mx.recipient-domain.com --from you@yourdomain.com
If the same 451 4.3.5 comes from the recipient's MX, the problem is on their end.
3. If it's the recipient's server: you cannot fix their configuration. Retry on schedule; if it persists beyond your retry window, contact the recipient's postmaster/IT with the exact DSN and timestamp so their admin can inspect their inbound transport, filters, and backend dependencies.
4. If it's a relay you operate: check that your MTA's transport map actually has a valid route for the destination, that any content filter/milter is running, and that backend lookups (DNS, directory, mailbox store) succeed. On Postfix, inspect postconf -n and the mail log for the deferred message; on Exchange, review the send/receive connector and transport rules.
5. If you send through an API/ESP (Courier, SendGrid, SES, Mailgun, etc.): the platform's retry queue handles transient 451s automatically. Check delivery logs to confirm whether retries eventually succeed; a persistent 451 4.3.5 against one recipient domain usually indicates that recipient's server, not the ESP. Note this is unrelated to your own SMTP auth setup — 451 4.3.5 is not an authentication or "less secure apps"/App Password issue.
References
FAQ
No. The leading 4 makes it a transient (4xx) failure per RFC 5321/3463 — the message is valid and delivery should be retried with backoff. It is not a permanent (5xx) rejection, so messages should not be bounced back to the sender immediately.
One API, every provider
Courier connects to your email, SMS, and push providers, handles retries and failover, and surfaces delivery errors in plain language.
Reply-code definitions per RFC 3463 §3.4 (X.3.5); RFC 5321 §4.2.3 (451). Last reviewed Jul 1, 2026. Courier is not affiliated with third-party providers; error behavior may vary by implementation.
© 2026 Courier. All rights reserved.