security for Exchange push email

jacass
jacass used Ask the Experts™
on
I have set up my exchange server to push email to mobile clients, to do this I have opened port 80 on the firewall pointing to the exchange server, I have locked down ISS to only allow IP's from the mobile range.

Is there anything else I can do to improve the security?

I value the need for good security so I have awarded high points
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Here is a good article for securing client access on exchange 2003.
http://technet.microsoft.com/en-us/library/aa995729(EXCHG.65).aspx

I would first start by getting a certificate and enabling SSL.
Definately certificate+SSL.
Additionaly you should define a more restrictive Exchanger Activesync policy in Exchange management console (require device password!) and assign this policy to all users, and disable Activesync functionality for all users that don't need it.

Author

Commented:
Thanks for your help guys, and speed.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial