?
Solved

Exchange 2003: ActiveSync on mobile phone errors when password expires and is changed, how can I prevent?

Posted on 2008-06-19
12
Medium Priority
?
925 Views
Last Modified: 2012-05-05
We've had an annoying problem with Exchange Server 2003 on our side that I have not been able to find a fix for up to this point. I'm hoping you can help.

We have Windows Mobile phones and set them up to sync over the air with our Exchange Server. It works wonderfully ... until the end user changes their password, either as a result of expiration or choice. After that, the phone fails to synchronize, brings up a View Status screen, and the error it shows is the following:

ActiveSync encountered a problem on the server.

View Support Code (Support Code: 0x85010001)

The only way I can fix it is to delete the entire ActiveSync partnership, reboot the phone (either warm reset or battery removal and re-plugin) and then rebuild the partnership from the ground up. This is creating a lot of support calls, and is very hard to explain to the end user when they are on the road and cannot get to their e-mail.

This happens on all of our AT&T phones across the board (Blackjack 1 and 2, 8125, 8525, Tilt), so I'm sure it's either a Windows Mobile setting I need to hack in, or more likely, a setting on the Exchange Server I need to take a look at. Would anyone here know the first place to look?

Thanks!
0
Comment
Question by:sav2880
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
12 Comments
 
LVL 20

Expert Comment

by:jdera
ID: 21822144
Have you checked the permissions on the activesync virtual directory within IIS?
0
 
LVL 1

Expert Comment

by:DAN_KANN
ID: 21823137
If they change the password in AD are they changing it in the device too? Go into the Activesync on the device and check the server settings. The password will need to be updated there too.
0
 
LVL 2

Author Comment

by:sav2880
ID: 21823874
jdera: I will check ... what should the permissions be in best practice?

DAN_KANN: They are never prompted to change the password, I would think that they would be. I agree, the password should be changed in the device too, but it seems like it should give me a "wrong password, try again" message and not an ActiveSync straight-up error and a completely unsuccessful sync.
0
NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

 
LVL 1

Expert Comment

by:DAN_KANN
ID: 21823972
You would think it would be that simple and straight forth. I am the only one currently using the MotoQ9c the rest of our guys with mobile devices are using BlackBerrys synching through the BIS server. When ever a password is changed in AD I have to log into the BIS site and manually change it otherwise they will stop getting their email and not even get a notification.

What is the error message that you have gotten?

Have you tried to recreate the error and then update the password in the device to see if that resolves it?
0
 
LVL 2

Author Comment

by:sav2880
ID: 21824184
The error message has always been like the one noted above. When it happens, it'll act like it's going to sync and then quickly give up. Not sure why it doesn't always bring up a "wrong password" message.
0
 
LVL 20

Expert Comment

by:jdera
ID: 21824465
Here is a good step by step including the permissions I mentioned.

http://www.riverbank.co.uk/home/support/knowledge-base/r1403

0
 
LVL 1

Accepted Solution

by:
DAN_KANN earned 2000 total points
ID: 21824947
I would put money on it being the password needing to be changed if. I am assuming that the only devices failing are the ones where users have changed their passwords. You did not specify this.
0
 
LVL 1

Expert Comment

by:DAN_KANN
ID: 21825437
I was thinking about something you posted earlier... Are they being prompted to change their password on their mobile device or their Active Directory password?

0
 
LVL 2

Author Comment

by:sav2880
ID: 21827823
Guess I should have specified this ... thought I had stated it clearly, but I'll go for it.

You are correct. The only devices failing are ones where the AD password has been changed. It doesn't really matter where it's changed (by an admin in ADUC, by the end user when the password has expired or changed by the end user by choice). Once that password has been changed, the mobile device then fails to sync, and does not ever offer a "wrong password" message offering to update the password on the device ... just that error.

What I want it to do is properly note that the password is wrong, allow it to be updated on the mobile device, and then trot along as normal. So DAN_KAHN, you're on to how the error comes to be, just need to get to how to eliminate it.

jdera: Checking that post now.
0
 
LVL 1

Expert Comment

by:DAN_KANN
ID: 21830725
I don't believe you are going to be able to automatically rectify the situation. I tested this myself this morning and got the same thing. As I am not an expert on this, it's my opinion that you are going to have to have your users manually update the password on their mobile devices when they change it. If for some reason you have to reset it in AD then they will obviously be aware of this and will know to change it then too.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
Changing a few Outlook Options can help keep you organized!
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month8 days, 16 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question