Exchange ActiveSync no working with iphone

Posted on 2009-04-30
Last Modified: 2012-05-06
I'm trying to setup our corporate exchange 2003 server to work with smartphones via activesync.  Right now I'm testing with my iphone and if we have success we will apply to other users.  Right now though it is everything but successful.  For example:
-OMA will not work with https or ssl
-iphone has yet to authorize the account

I currently have OMA working in non-ssl mode and the correct ports(993, 443, 587) opened up.  The most frustrating part of this is that everywhere online you are told that this should "just work" that microsoft has EAS setup by default on exchange.  Any help would be wonderful, I've been working on this for 3 days and I'm about to scrap it.
Question by:Snyper82
    LVL 65

    Assisted Solution

    It should just work.
    The most common problems are with the SSL certificate, and authentication settings.
    Unfortunately the iPhone is a very poor tool to test it with.

    Start with a test account and the Microsoft test site:

    See whether that flags anything of interest.


    Author Comment

    (X) Testing SSLCertificate for validity.
      The SSLCertificate failed one or more certificate validation checks.
     Additional Details
      A network error occurred while communicating with remote host: Exception Details: Message: Authentication failed because the remote party has closed the transport stream. Type: System.IO.IOException Stack Trace: at System.Net.Security.SslState.StartReadFrame(Byte[] buffer, Int32 readBytes, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToken message, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byte[] buffer, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult) at System.Net.Security.SslStream.AuthenticateAsClient(String targetHost, X509CertificateCollection clientCertificates, SslProtocols enabledSslProtocols, Boolean checkCertificateRevocation) at System.Net.Security.SslStream.AuthenticateAsClient(String targetHost) at Microsoft.Exchange.Tools.ExRca.Tests.SSLCertificateTest.PerformTestReally()  

    ***When I click on the link to explain this better, I get info about ports not being open, but here it states that I have an invalid certificate, I wasn't aware I needed one.  Also I've read many places where port 25 (the only one I don't have open) is not a port you want to open to the world.
    LVL 65

    Accepted Solution

    If you don't have port 25 open then you will not receive email from the internet - unless you are using the POP3 connector.
    If you have a static IP address then I wouldn't be using the POP3 connector.

    An SSL certificate should be used, otherwise the username and password is going across in the clear, which is a security risk.

    Do you have an SSL certificate on the server? If not then you should do.
    The cheapest source is GoDaddy. and the certificate will protect OMA, OWA, RPC over HTTPS as well as Exchange ActiveSync.


    Author Comment

    Thanks a lot!

    After obtaining a cert, I went through he test site you gave me and for every error I researched until it was resolved.  There were too many things I had to change to list, but Thanks!

    Expert Comment

    I have got OMA server and active sync is working fine with Nokia E72 but when i try to configure on Samsung GALAXY S , I could able to configure but mail are not syncing . What would be the issue?

    Featured Post

    Want to promote your upcoming event?

    Are you going to an event? Are you going to be exhibiting at a tradeshow? Talking at a conference? Using a promotional banner in your email signature ensures that your organization’s most important contacts stay in the know and can potentially spread the word about the event.

    Join & Write a Comment

    We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
    Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
    In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
    To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now