[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 282
  • Last Modified:

Wireless ActiveSync

I am running an SBS2003 server which automatically sets up SSL (with own certificate) and FBA. OWA and OMA work fine from my PPC 2003. I can also sync with Exchange Mailbox from the desktop using AS 4.1. However, when I try to sync wirelessly, it connects, looks for changes but then errors with an HTTP_403 error "Your account does not have permission to sync with your current settings...". I have double checked my logon/password. Any help much appreciated.

Thanks.
0
octopusdata
Asked:
octopusdata
  • 3
  • 3
1 Solution
 
SembeeCommented:
Ditch the self generated certificate to start with. It will make deployment a nightmare. Get a purchased certificate and if required install the root certificate on the clients.

Within Exchange 2003 ESM, is every setting enabled on the properties of Global Settings, Mobile Services?
Are you on Exchange 2003 SP2? If not, then you should as there are changes to the way that the mobile devices are handled.

Simon.
0
 
octopusdataAuthor Commented:
Many thanks for your comments.

I'll look into the certificates but there are only 3 of us so deployment isn't really and issue. I didn't think it was certificates as OWA and OMA work fine with our current certificate and I even tried disabling certificate checking (disablecertchk.exe) on the PPC, but that didn't mke any difference.

Isn't an HTTP_403 error more to do with permissions within IIS?

Thanks,
Haris
0
 
SembeeCommented:
http_403 is forbidden. However there can be loads of causes for this.
One that I have seen recently is where the certificate settings have been set wrongly. The two that immediately spring to mind is where the system has been set to use client certificates instead of a server certificate, and where the /exchange virtual directory has been set to REQUIRE an SSL connection. You have to remove that setting.

Simon.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
octopusdataAuthor Commented:
Thanks once again Simon,

I have disabled certificate checking on my PPC but still get the HTTP_403 error. When I enable certificate checking, I get a different error messsage so I still don't think it's a cert issue. The /exchange virtual directory does not require an SSL connection, niether does the Microsoft-Server-ActiveSync virtual server. Could it be IP address related as all but server and localhost are denied on Microsoft-Server-ActiveSync virtual server?

Haris
0
 
SembeeCommented:
Why have you put restrictions on the Microsoft-Server-ActiveSync virtual directory?
That isn't standard. Remove them, set it back to "Granted Access"

Simon.
0
 
octopusdataAuthor Commented:
I didn't - this is the standard restriction with SBS2003. I have set it to "Granted Access" and it now works fine.

Thanks,
Haris
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now