flyinace2
asked on
Iphone VPN
My company runs SBS 2008 and we have an "all in one" Cisco 871W (router,vpn...). We use the Cisco device for our VPN needs.
A few of my employees are starting to get Iphones and of course are wanting to set up their iphone to get their email via activesync or IMAP. I'm a bit concerned about them logging onto our server in an airport or hotel via wifi.
I've seen that you can set up a VPN connection on the Iphone... Is this a practical solution to ensure a secure connection to our email server? Can the VPN connection be "always on" ...At least for wifi use? It would be great if I could set this up on the Iphone so it automatically connected to the VPN without any user input. (Im the only young guy in the office, the rest of the guys are pushing 75 so the simpler, the better.)
We use self-signed certs and I noticed that the Iphone was able to connect to our exchange server without installing the cert...That kind of suprised and scared me...
A few of my employees are starting to get Iphones and of course are wanting to set up their iphone to get their email via activesync or IMAP. I'm a bit concerned about them logging onto our server in an airport or hotel via wifi.
I've seen that you can set up a VPN connection on the Iphone... Is this a practical solution to ensure a secure connection to our email server? Can the VPN connection be "always on" ...At least for wifi use? It would be great if I could set this up on the Iphone so it automatically connected to the VPN without any user input. (Im the only young guy in the office, the rest of the guys are pushing 75 so the simpler, the better.)
We use self-signed certs and I noticed that the Iphone was able to connect to our exchange server without installing the cert...That kind of suprised and scared me...
ASKER
So ssl is secure even if I did not install the self-signed cert? We do not have third party certificate verification...
I'm confused how SSL can secure the IPHONE considering I did not have to do anything to make it secure. I just entered in the server address, username, password and everything worked! Unlike my windows mobile phone which required the Cert be installed first.
I'm confused how SSL can secure the IPHONE considering I did not have to do anything to make it secure. I just entered in the server address, username, password and everything worked! Unlike my windows mobile phone which required the Cert be installed first.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
However, if the only concern is about email when connecting via a wifi link, then there is the option to set up the email to connect using SSL. This will encrypt the traffic over the wifi link which should provide sufficient security against snooping. The advantage of this is that you can set it up, and it will always configured, without your users having to remember to connect to the VPN prior to accessing their email.
Cheers,
Joel