Solved

Palm Treo 750 Trying to Send Encrypted Emails via Exchange Server using Verisign Digital Certificates

Posted on 2008-06-18
7
710 Views
Last Modified: 2013-12-05
I am trying to send encrypted emails via the palm Treo 750 smart phones.  The smart phone is running windows mobile 6 and I am sending emails via our Exchange Server.  I have installed a Versign digital certificate (.pfx digital certificate) on the device for sending encrypted emails.  I can send emails that are signed with my digital certificate but i cannot encrypt emails.  If i receive an encyrpted email i can open it on the Treo however i cannot reply to this message unless i turn off the encryption.

I am running an Exchange 2003 server SP2 and active Sync is running with SSL enabled. I think i have published the public keys correctly in the Global Address List by opening Active Directory, navigating to all the users i want to send encrypted emails to, and attaching their .cer certificates to each account (if that makes sense).  There are 7 people in my office who send encyrpted emails and i have attached each of their public keys (*.cer) within active directory.

On the Treo, i can send an encrypted email but it automatically bounces back to me when i hit send/receive.  The error i get on the Treo is:
"The certificates are not available for the following recipients or one or more members of the following distribution lists: user@domain.com.au  The email is then placed in the drafts directory.

If i receive a signed email from someone and check the validity of the signature on the Treo, I get this error:  The signature is not valid.  A certificate has been used incorrectly .

Could this be due to an authentication issue in IIS??? I am running windows 2003 SBS and am NOT running the certificate server so cannot publish my own certificates.  I am using versign Secure email certificates to send encrypted emails.

I ve spoken to Verisign and Palm and have done as much troubleshooting as I can with those guys. I think it s down to the config on our server.  Any help is much appreciated. I need to get this problem resolved within 48 hours so the management team in my office can send encyrpted emails to each other on their smartphones using 3rd party certificates.  The reason for the urgency is a couple of people are going overseas and i need to have this resolved before they go.

Please help.  thanks :)


0
Comment
Question by:nina007
  • 3
  • 2
7 Comments
 
LVL 10

Expert Comment

by:Casey Herman
ID: 21818697
start by testing it through oma first.  Remove the phone from the picture at the moment.  See if you can get to oma and are able to send a email on ssl.  I am willing to bet this is going to fail here first.

Casey
0
 

Author Comment

by:nina007
ID: 21819180
Hi  Casey,
You are right.... if i open IE and go to http://name.domain.com.au/oma or if i go to https://name.domain.com.au/oma i get error: You are not authorized to view this page . HTTP Error 401.2 - Unauthorized: Access is denied due to server configuration. Internet Information Services (IIS).
any ideas?
0
 

Author Comment

by:nina007
ID: 21819771
Hi Casey,

I managed to get OMA working via IE and can send/receive messages ok however this didn't fix my problem and i still get the error: "The certificates are not available for the following recipients or one or more members of the following distribution lists: user@domain.com.au  The email is then placed in the drafts directory.

Not sure what else i can try.
Nina
0
 
LVL 10

Expert Comment

by:Casey Herman
ID: 21824018
http://www.amset.info/pocketpc/certificates2.asp
This site has a lot of usefull info.

Hope it helps.  Screen shots are good..!!!

Casey
0
 
LVL 10

Accepted Solution

by:
Casey Herman earned 500 total points
ID: 21824043
This is the article that I live by....

http://www.amset.info/exchange/mobile-85010014.asp

casey
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

838 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question