• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2183
  • Last Modified:

Active Sync - Certificate Erro (80072f06)

I have a user who is experiencing a problem with syncing his smart phone.
He has Treo 700WX (from sprint).
ActiveSync version 4.5.
When I try to sync with Exchange (2007) Mail Server, I get an error.
"You have an incorrect SSL certificate common name in the Host Name field.....
Support Code: 80072f06".

It was working for him on his old phone. He has changed it to Treo and it started giving this error.
I've checked all of the settings for Exchange Config in ActiveSync and everything seems to be fine. It works just fine for another user with identical ActiveSync configuration.
Phone has WM 5.1

Any ideas?
0
all_experts
Asked:
all_experts
  • 5
  • 4
1 Solution
 
Andres PeralesCommented:
Does he have the correct certificates on the phone for the certificate chain
0
 
all_expertsAuthor Commented:
Exchange uses self-sign certificate and as far as I know it doesnt get copied to the phone.
He has no "personal" certs and a bunch of ROOT ones.
0
 
Andres PeralesCommented:
Alright, then download the root chain of certs from the server that created the certs and install them on his mobile phone see if that clears up his issues...
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
all_expertsAuthor Commented:
How do I do that?
0
 
Andres PeralesCommented:
Go to the server that issued the certificate to your Exchange server, if you used microsofts CA then it would be http://servername/certsrv once you get to that page then their should be a link on the page that says download certificate chain, down load and save to you computer, then tranfer to mobile device by either directly connecting and copying to you mobile device or use a memory card, you just need to get them on the mobile device.
once on the mobile device user the file manager to find where you saved them and click on them to install.
0
 
all_expertsAuthor Commented:
I dont have certsrv on our server. When you say Microsoft CA, do you mean self-signed cert?
0
 
Andres PeralesCommented:
how did you get a self signed certificate?  Let's start there
0
 
all_expertsAuthor Commented:
I didnt, consultant did. Tell me where to look at it and I'll tell you the path or whatever else you need to know.
0
 
all_expertsAuthor Commented:
I figure it out if anybody cares. We were using a wildcard cert (ie *.company.com) instead of mail.company.com. Apparently Windows Mobile 5.1 considers these two as a different certs. 6.0 works just fine.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now