Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Setting up an iPhone when using a 'dnsalias.org' address linking to the Exchange server

Posted on 2008-10-31
7
528 Views
Last Modified: 2012-08-14
I have a client who has the front-end set as 'compayname'.dnsalias.org, which can be used to access the OWA using '/exchange'.

My problem is with getting the iPhone to synchronise with the exchange server - which seems to be related to the certificate which I have issued from the server. The certificate is self-signed (through CA on Windows Server 2003 for SBS), is a top-level root certificate and contains the principal name 'companyname'.dnsalias.org.

The iPhone itself connects through Vodafone with no problems, can access WAP, Wireless, POP3, Google Mail etc. When the Exchange account is setup (after installing the certificate profile) a message is displayed stating that the Exchange account cannot be verified. All of the user credentials are correct, and the e-mail address is valid and fully functional.

The server is running Exchange 2003 (SP2), which does support PUSH and all of the required settings and forwards are in place.

Any ideas?
0
Comment
Question by:CoGu
  • 4
  • 3
7 Comments
 
LVL 9

Expert Comment

by:Adam Graham
ID: 22849349
When I setup my 2G iPhone to sync with our SBS 2003 server it would not accept the self signed certificate. We HAD to get a trusted cert.

These can be purchased inexpensively if you look at the likes of http://www.instantssl.com or http://www.godaddy.com

Adam
0
 

Author Comment

by:CoGu
ID: 22849483
Thank you for reply, but I do not believe the problem is with the certificate being self-signed - I have setup several iPhones on similar setups and they have worked flawlessly.

My main suspicion revolves around the 'companyname'.dnsalias.org setup (which was implemented by the previous IT company) and how this relates the issuing server on the certificate. I have set the fully qualified name of the server and tried the full 'companyname'.dnsalias.org name, but neither of these two arrangements allow the iPhone to synchronise.
0
 
LVL 9

Expert Comment

by:Adam Graham
ID: 22849577
Is this company using dnsalias as they have no fixed ip?

Adam
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:CoGu
ID: 22849746
The company does have a static IP, I believe that this service was used to simplify the connection to Remote Web Workplace etc. I personally would remove this service and setup an A record on their external DNS, but no one in the company or the previous IT company have the login details for the DNSAlias account.
0
 
LVL 9

Accepted Solution

by:
Adam Graham earned 125 total points
ID: 22849857
You don't need the login details. Just have the ISP create the A Record pointing to the public IP and start using it. The dnsalias account can retain the configuration, its of no odds.

Once you have this done, re-run CEICW and when you come to the certificate section, create the cert with the newely created A record (something like mail.domainname.com) and try the iPhone connection again.

If you say you have configured the iPhone without a trusted root certificate I will have to accept that, however it has always been to my knowledge self signed certs will not work with them.

Good luck in any case, let us know how you get on.

Adam

0
 

Author Closing Comment

by:CoGu
ID: 31511994
Thank you for your response, I did this in-line with a couple of other changes and everything works!
0
 
LVL 9

Expert Comment

by:Adam Graham
ID: 22941414
no worries, gald your sorted!

Did you use self signed cert or was it a trusted one?

Adam
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
how to add IIS SMTP to handle application/Scanner relays into office 365.

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question