I am stuck between two problems, I don't know the in-between to resolve both at the same time.
I dont want my users to enter a domain name while authenticating into outlook web access via exchange 2003. Simple way to eliminate this is to only enabled basic authentication and disable integrated authentication on the /exchange IIS folder. Problem is, when integrated security is disabled on the /exchange folder wireless ActiveSync fails to work with an 85010014 error thrown on the PDA device and an event 3031 in the event log explaining that the mail server is not allowing "Negotiate" authentication to the exchange virtual directory.
So it seems that OWA/ActiveSync requires integrated security to talk with the /exchange virtual directory.
I need to get both to work, ActiveSync and not require a domain via OWA login (we are not using form authentication).