We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you a podcast all about Citrix Workspace, moving to the cloud, and analytics & intelligence. Episode 2 coming soon!Listen Now


Windows Mobile 6.1 - ActiveSync

i24 asked
Medium Priority
Last Modified: 2013-12-05
We use Microsoft ActiveSync to synchronize wireless  mobile devices with Exchange.
We import our own cert and enter the exchange hostname in the mobile devices registry (HKLM\Comm\Tcpip\Hosts).  It works fine if Windows Mobile 5 or 6 is installed.

Just now we have got an new mobile device (htc) with Windows Mobile 6.1 and the configuration is the same as before, but it doesn't work.
It seems that ActiveSync doesn't use the registry entry for our host. If I enter the IP address in the ActiveSync server configuration I can see the firewall  access. Otherwise, if I use the hostname I can't see any firewall access.
Moreover, if I enter the url https://<server name> I get a 404 error, but I get an answer if I use https://<IP address>.

I have tried e.g. the tool HostsFileEditPro.exe, but the result is the same.

What's different in WM 6.1? Has someone a solution for that?

Watch Question

Expert of the Quarter 2009
Expert of the Year 2009

Why are you using a self generated certificate and a hosts file?
It would be far simpler to use an external host name and a commercial SSL certificate. US$30 for a trusted certificate and a lot less hassle.



Thank you, Mestha.
Usually you are right, but we have different public and internal domain names. We have to differ these both.
1.  A few devices work productively and I won't change this environment
2. We think the security is higher. You need the certificate and you have to know the host name.
Whatever, it must be possible to use the host name entries with WM 6.1. What has been changed to the versions WM 5 and WM 6?

Best regards
Expert of the Quarter 2009
Expert of the Year 2009

You have different internal and external host names? So. Most sites I work on have that kind of setup. Easily resolved by using a split DNS system.
You don't get security by obscurity. If the server is exposed to the internet then it can be found. Doing what you do slows down any kind of attacker for all of 20 seconds, if that and simply creates more work for yourself.

I don't know if something changed with Windows Mobile 6.1, I am not a developer. I do know there were extensive changes because Windows Mobile 6.1 supports autodiscover setup for Exchange 2007, plus a lot more policy features for that version of Exchange. You may well have to ask Microsoft or go through the technical documentation for the product on MSDN.

Sorry, my English isn't very good.
Of course it is normal to have different domain names. I know too, that this configuration doesn't help to increase the security against attacks, but it's not so easy for a "normal"  employee to connect to the system with there mobile devices. With this I hoped to avoid a few connections attempts from unauthorized users.
Sometime, I started with this environment for testing with one device and step by step I installed more and more devices in this way. I know, that is the worst way, what I could take, but so it is.
Just know, it is very difficult to reconfigure and test the productive system. But I see I can't avoid it.


Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.