Setting up Iphone 2.0 with Exchange server

Posted on 2008-10-13
Last Modified: 2009-02-18

I am trying to setup an Iphone with our Exchange server.  I have been using the Iphone Enterprise Deployment guide, but I am still running into problems.  

Background info:  we do NOT use OWA or have IMAP enabled on our Exchange server.  So we were going to use Exchange Active Sync.  We didn't have an ISA server or a front end Exchange server so I setup an ISA server and put it in our DMZ.  We added an access list on our router and firewall to allow https traffic to the ISA server in the dmz, then another access list to allow https traffic from the ISA server to our Exchange server.  Right now however, we are having problems getting the Iphone to establish a connection to our ISA server.    

Our mx record for our email points to a hosted spam/virus filtering company, which then forwards email directly to our Exchange server.  When configuring the Iphone, I cannot put the mx record in for the "server" as that would bypass our ISA server.  So I was trying to put in the public IP address of our ISA server, but we do not see any traffic on that IP.  I even tried to put in a public IP that is not in use much and we did not see any logs on our router or firewall blocking access.  Does this mean I cannot enter an IP address into the "server" field?  Also, I have been trying on a non-3g Iphone but it has been upgraded to 2.1 firmware.  The ATT techs tell me I do not need any special plan, is this also true?  

Any help would be greatly appreciated!
Question by:sdcox

Accepted Solution

zejoka earned 250 total points
ID: 22734623
I had kind of a similar problem which I'd managed to resolve.

First step:

From a web browser within your local LAN, type: http:// or https://mailservername/oma

If you get a "browser not compatible error" after logging in this would indicate that Activesync is functioning as expected.  

That being the case, you can then create an A record, e.g.: corresponding to the public IP address of your server, or if you prefer, the IP address of the ISA server (remember to create the rule passing SSL / 443 traffic to your exchange box)
You should also install a SSL certificate on your IIS server (can be self signed as long as you can bear the certificate error message when connecting)

Let me know if that helps, or if you need any further info.
LVL 17

Assisted Solution

JohnGerhardt earned 250 total points
ID: 23516083
A couple of things if ths question is still active...?
  • Check that exchange has SP2 else you are going to have problems
  • Do yourself a favour and get an SSL certficiate for your isntallation, it will save you many heart aches in the future
  • You should be able to use an IP in the server name but I would recommend yous peak to your ISP and create a DNS name.
  • ISA servers take a little setting up to publish OMA correctly, check the logs if you are having problems
  • Start simple, Get the iphone connedted to a Wifi network that has access to the exchage server directly and check that everything works. Then work outwards until you are outside the FW and all is working fine..

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Let me explain this picture a little bit.  First, in case you haven't already guessed, you are looking at my 2 phones, an Android Samsung Galaxy S5 on the left and an iPhone 5 on the right.  They are on their respective cradles on my desk.  But, you…
There is a security feature on iOS devices that is nearly impenetrable when it has been activated.  This article will provide some possible solutions as well as necessary steps to take to ensure you do not end up with a locked device.
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now