Solved

0x80072F0D in Mobile Active Sync Device

Posted on 2006-06-30
8
39,822 Views
Last Modified: 2012-06-22
We have an Exchange 2003 SP2 Front end server that has been running OWA over SSL with no problems. I am now trying to Mobile Access to work with my Cingular 8125. When trying to sync the error is "The security certificate on the server is invalid...." Error code 0x80072F0D.  

1. I can successfully hit https://myserver.com/oma and login and view the directory.
2. The certificate is a new valid cert from Comodo.
3. The cert is issued to the proper public domain name.

I followed the MS instructions http://www.microsoft.com/technet/itsolutions/mobile/deploy/msfpdepguide.mspx to setup for Mobile use.

Help!
Thanks
Barry
0
Comment
Question by:ixoni
8 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 17023685
If you hit OMA with Pocket IE on the device, do you get a security warning?
I don't believe that Comodo certificates are trusted natively by the Windows Mobile device, which would explain the security warning.

Simon.
0
 

Author Comment

by:ixoni
ID: 17045664
You are correct, if I hit https://myserver.com/oma with IE I do get a security warning that "The cert was issued by a company you have not chosen to trust."   Comodo uses GTE Cyber Trust as the Root cert, which is preinstalled on Mobile 5.0. Not sure what to do from here, but I am contacting Comodo support to get their take on it.

-Barry
0
 
LVL 104

Expert Comment

by:Sembee
ID: 17045854
Are they using a chained certificate?
You have to make sure that it is the correct root certificate. Most of the certificate suppliers have a long list of them.

Geotrust (for example) have loads of them: http://www.geotrust.com/resources/root_certificates/index.asp
But only one is in the Windows Mobile device.

Simon.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:ixoni
ID: 17047341
I think you are correct as Comodo is not on this list: https://partner.microsoft.com/global/partner/40027352

I tried installing a root cert according to http://support.microsoft.com/kb/915840/en-us but with no luck. When I use the spaddcert.exe it cannot find the cert I have copied into the "Storage" folder.  Microsoft says contact the OEM of the device. Cingular's KB has very little info and says to contact Microsoft!  This is starting to be highly annoying!

-Barry

0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 17048944
If you have the required root certificate, then I have another method for getting the certificate on to the device on my web site: http://www.amset.info/pocketpc/certificates3.asp

Simon.
0
 

Author Comment

by:ixoni
ID: 17053363
Simon,

That did the trick! You are the Expert!. Thanks.
0
 

Expert Comment

by:boinac
ID: 24203914
Sembee, I dont know why but I follow your entire process but in the moment to install into the mobile device give an error :(

I have my root certificato from Very sign.

Can you help me?

Thanks!
0
 
LVL 1

Expert Comment

by:ITnavigators
ID: 35195568
Thanks Simon.  Haven't needed that one in a couple of years.  Great to be able to find it this quickly.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to solve this Exchange 2010 issue? 6 38
Access to GAL from one domain to another 6 35
exchane, activesync 4 19
Removing on Premise Exchange 7 19
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question