activesync 0x80072f06

Posted on 2006-05-17
Last Modified: 2011-08-18
im getting a 80072F06 on my wm5 device my friend and i have an exchange box up with self cert ssl is there any way to remove the old one and install a new one or is there a way i can change the common name on the cert and if so what should the common name be if not the name of the exchange box

or does any on know how to resolve this error period
Question by:galupo
    LVL 104

    Accepted Solution

    That is a certificate error message.

    You probably have two issues...

    1. You are using a self signed certificate.
    2. The name on the certificate probably doesn't match.

    To remove the certificate, go in to IIS Manager, Directory Security. Under the Secure Communications is the option to manage the certificates. Step through the wizard and remove the certificate.

    To replace the certificate, you have two choices.

    1. Put in another self signed certificate. When creating the certificate ensure that the common name matches the address that you will be using to access the server from outside. It doesn't have to match the name of the server.
    For example your servername could be server1.domain.local, but from outside you are using
    You would put as the common name.
    If you use a self signed certificate then you will have to export it from IIS and then import it in to the device, as self signed certificates are not trusted by the Windows Mobile device.

    2. Purchase an SSL certificate. This is what I do with my commercial deployments. I usually use RapidSSL for my certificates as they are cheap and do the job.
    With the cheaper certificates you still have to export the certificate or the root certificate, as the Windows Mobile devices only support a limited range of certificates. This is quite simple to do and I have it documented on my web site:


    Expert Comment

    This is a very simple configuration issue between your device and the self-signed certificate you are using.

    First, view the certificate.  This will tell you the common name that is being used by the certificate, ie-  Whatever the common name of the certificate is also has to be the address that is used on your device as the server address.  Thus, if the self-signed certificate is for, you can't configure your hand-held to connect to your Exchange server at  The names must match.  As long as you can "get" to your Exchange server using the common name in the self-signed certificate and you use that same name to configure your handheld device; everything will work just fine.

    Hope this helps you out!

    Rick Johnston

    Expert Comment


    Here is what I did, (my bad)
    1-Generated Certificate Request from main Server IIS->Default Website->Properties->Directory Security->Server Communications->Server Certificate.
    2-Send it over to Cetificate Provider
    3-They generated the Certificate
    /*here is what I did something wrong*/
    4-I deleted that pending request
    5-Don't remember how I added certificate on my server, but then it was available when I went into Server IIS->Default Website->Properties->Directory Security->Server Communications->Server Certificate -> Assign an existing Certificate.
    6- I used that certificate.
    7-I got a .cab file from Certificate provider they asked me to install on Devices.

    and after doing all this, am getting this error.
    Now the situation is, I can't request them again to Certificate Provider for re-generating the Certificate :(

    LVL 104

    Expert Comment

    sibisoft - this is an old question. Unlike a forum it is not possible to "bump" questions back up the list. The only people who will see your post are those that have already participated. Instead you should post your question as a new question in the Exchange Server Zone which will allow other experts the chance to see the question and respond.


    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Learn more about how the humble email signature can be used as more than just an electronic business card. When used correctly, a signature can easily be tailored for different purposes by different departments within an organization.
    Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
    In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
    The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

    731 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now