Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Palm Treo 750 Trying to Send Encrypted Emails via Exchange Server using Verisign Digital Certificates

Posted on 2008-06-18
7
Medium Priority
?
719 Views
Last Modified: 2013-12-05
I am trying to send encrypted emails via the palm Treo 750 smart phones.  The smart phone is running windows mobile 6 and I am sending emails via our Exchange Server.  I have installed a Versign digital certificate (.pfx digital certificate) on the device for sending encrypted emails.  I can send emails that are signed with my digital certificate but i cannot encrypt emails.  If i receive an encyrpted email i can open it on the Treo however i cannot reply to this message unless i turn off the encryption.

I am running an Exchange 2003 server SP2 and active Sync is running with SSL enabled. I think i have published the public keys correctly in the Global Address List by opening Active Directory, navigating to all the users i want to send encrypted emails to, and attaching their .cer certificates to each account (if that makes sense).  There are 7 people in my office who send encyrpted emails and i have attached each of their public keys (*.cer) within active directory.

On the Treo, i can send an encrypted email but it automatically bounces back to me when i hit send/receive.  The error i get on the Treo is:
"The certificates are not available for the following recipients or one or more members of the following distribution lists: user@domain.com.au  The email is then placed in the drafts directory.

If i receive a signed email from someone and check the validity of the signature on the Treo, I get this error:  The signature is not valid.  A certificate has been used incorrectly .

Could this be due to an authentication issue in IIS??? I am running windows 2003 SBS and am NOT running the certificate server so cannot publish my own certificates.  I am using versign Secure email certificates to send encrypted emails.

I ve spoken to Verisign and Palm and have done as much troubleshooting as I can with those guys. I think it s down to the config on our server.  Any help is much appreciated. I need to get this problem resolved within 48 hours so the management team in my office can send encyrpted emails to each other on their smartphones using 3rd party certificates.  The reason for the urgency is a couple of people are going overseas and i need to have this resolved before they go.

Please help.  thanks :)


0
Comment
Question by:nina007
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
7 Comments
 
LVL 10

Expert Comment

by:Casey Herman
ID: 21818697
start by testing it through oma first.  Remove the phone from the picture at the moment.  See if you can get to oma and are able to send a email on ssl.  I am willing to bet this is going to fail here first.

Casey
0
 

Author Comment

by:nina007
ID: 21819180
Hi  Casey,
You are right.... if i open IE and go to http://name.domain.com.au/oma or if i go to https://name.domain.com.au/oma i get error: You are not authorized to view this page . HTTP Error 401.2 - Unauthorized: Access is denied due to server configuration. Internet Information Services (IIS).
any ideas?
0
 

Author Comment

by:nina007
ID: 21819771
Hi Casey,

I managed to get OMA working via IE and can send/receive messages ok however this didn't fix my problem and i still get the error: "The certificates are not available for the following recipients or one or more members of the following distribution lists: user@domain.com.au  The email is then placed in the drafts directory.

Not sure what else i can try.
Nina
0
 
LVL 10

Expert Comment

by:Casey Herman
ID: 21824018
http://www.amset.info/pocketpc/certificates2.asp
This site has a lot of usefull info.

Hope it helps.  Screen shots are good..!!!

Casey
0
 
LVL 10

Accepted Solution

by:
Casey Herman earned 2000 total points
ID: 21824043
This is the article that I live by....

http://www.amset.info/exchange/mobile-85010014.asp

casey
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Windows Server 2003 introduced persistent Volume Shadow Copies and made 2003 a must-do upgrade.  Since then, it's been a must-implement feature for all servers doing any kind of file sharing.
By default Outlook 2016 displays only one time zone in the Calendar. The following article explains how to display two time zones in one calendar view.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question