Windows Mobile 6.1 - ActiveSync

Posted on 2009-02-18
Last Modified: 2013-12-05
We use Microsoft ActiveSync to synchronize wireless  mobile devices with Exchange.
We import our own cert and enter the exchange hostname in the mobile devices registry (HKLM\Comm\Tcpip\Hosts).  It works fine if Windows Mobile 5 or 6 is installed.

Just now we have got an new mobile device (htc) with Windows Mobile 6.1 and the configuration is the same as before, but it doesn't work.
It seems that ActiveSync doesn't use the registry entry for our host. If I enter the IP address in the ActiveSync server configuration I can see the firewall  access. Otherwise, if I use the hostname I can't see any firewall access.
Moreover, if I enter the url https://<server name> I get a 404 error, but I get an answer if I use https://<IP address>.

I have tried e.g. the tool HostsFileEditPro.exe, but the result is the same.

What's different in WM 6.1? Has someone a solution for that?

Question by:i24
    LVL 65

    Expert Comment

    Why are you using a self generated certificate and a hosts file?
    It would be far simpler to use an external host name and a commercial SSL certificate. US$30 for a trusted certificate and a lot less hassle.


    Author Comment

    Thank you, Mestha.
    Usually you are right, but we have different public and internal domain names. We have to differ these both.
    1.  A few devices work productively and I won't change this environment
    2. We think the security is higher. You need the certificate and you have to know the host name.
    Whatever, it must be possible to use the host name entries with WM 6.1. What has been changed to the versions WM 5 and WM 6?

    Best regards
    LVL 65

    Expert Comment

    You have different internal and external host names? So. Most sites I work on have that kind of setup. Easily resolved by using a split DNS system.
    You don't get security by obscurity. If the server is exposed to the internet then it can be found. Doing what you do slows down any kind of attacker for all of 20 seconds, if that and simply creates more work for yourself.

    I don't know if something changed with Windows Mobile 6.1, I am not a developer. I do know there were extensive changes because Windows Mobile 6.1 supports autodiscover setup for Exchange 2007, plus a lot more policy features for that version of Exchange. You may well have to ask Microsoft or go through the technical documentation for the product on MSDN.


    Accepted Solution

    Sorry, my English isn't very good.
    Of course it is normal to have different domain names. I know too, that this configuration doesn't help to increase the security against attacks, but it's not so easy for a "normal"  employee to connect to the system with there mobile devices. With this I hoped to avoid a few connections attempts from unauthorized users.
    Sometime, I started with this environment for testing with one device and step by step I installed more and more devices in this way. I know, that is the worst way, what I could take, but so it is.
    Just know, it is very difficult to reconfigure and test the productive system. But I see I can't avoid it.


    Featured Post

    Why do Marketing keep bothering you?

    Is your marketing department constantly asking for new email signature updates? Are they requesting a different design for every department? Do they need yet another banner added? Don’t let it get you down! There is an easy way to manage all of these requests...

    Join & Write a Comment

    As the name suggests, SVCHost stands for Service Host. It is a process which hosts different services of Windows which are actually run from Dynamic Link Libraries (DLL) files. A DLL is a library that contains data (code) that could be used by mo…
    If you need to start windows update installation remotely or as a scheduled task you will find this very helpful.
    As developers, we are not limited to the functions provided by the VBA language. In addition, we can call the functions that are part of the Windows operating system. These functions are part of the Windows API (Application Programming Interface). U…
    With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now