[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


Exchange ActiveSync no working with iphone

Posted on 2009-04-30
Medium Priority
Last Modified: 2012-05-06
I'm trying to setup our corporate exchange 2003 server to work with smartphones via activesync.  Right now I'm testing with my iphone and if we have success we will apply to other users.  Right now though it is everything but successful.  For example:
-OMA will not work with https or ssl
-iphone has yet to authorize the account

I currently have OMA working in non-ssl mode and the correct ports(993, 443, 587) opened up.  The most frustrating part of this is that everywhere online you are told that this should "just work" that microsoft has EAS setup by default on exchange.  Any help would be wonderful, I've been working on this for 3 days and I'm about to scrap it.
Question by:Snyper82
  • 2
  • 2
LVL 65

Assisted Solution

Mestha earned 500 total points
ID: 24270393
It should just work.
The most common problems are with the SSL certificate, and authentication settings.
Unfortunately the iPhone is a very poor tool to test it with.

Start with a test account and the Microsoft test site:

See whether that flags anything of interest.


Author Comment

ID: 24270671
(X) Testing SSLCertificate for validity.
  The SSLCertificate failed one or more certificate validation checks.
 Additional Details
  A network error occurred while communicating with remote host: Exception Details: Message: Authentication failed because the remote party has closed the transport stream. Type: System.IO.IOException Stack Trace: at System.Net.Security.SslState.StartReadFrame(Byte[] buffer, Int32 readBytes, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToken message, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byte[] buffer, AsyncProtocolRequest asyncRequest) at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult) at System.Net.Security.SslStream.AuthenticateAsClient(String targetHost, X509CertificateCollection clientCertificates, SslProtocols enabledSslProtocols, Boolean checkCertificateRevocation) at System.Net.Security.SslStream.AuthenticateAsClient(String targetHost) at Microsoft.Exchange.Tools.ExRca.Tests.SSLCertificateTest.PerformTestReally()  

***When I click on the link to explain this better, I get info about ports not being open, but here it states that I have an invalid certificate, I wasn't aware I needed one.  Also I've read many places where port 25 (the only one I don't have open) is not a port you want to open to the world.
LVL 65

Accepted Solution

Mestha earned 500 total points
ID: 24272785
If you don't have port 25 open then you will not receive email from the internet - unless you are using the POP3 connector.
If you have a static IP address then I wouldn't be using the POP3 connector.

An SSL certificate should be used, otherwise the username and password is going across in the clear, which is a security risk.

Do you have an SSL certificate on the server? If not then you should do.
The cheapest source is GoDaddy. https://CertificatesForExchange.com/ and the certificate will protect OMA, OWA, RPC over HTTPS as well as Exchange ActiveSync.


Author Comment

ID: 24276521
Thanks a lot!

After obtaining a cert, I went through he test site you gave me and for every error I researched until it was resolved.  There were too many things I had to change to list, but Thanks!

Expert Comment

ID: 34042645
I have got OMA server and active sync is working fine with Nokia E72 but when i try to configure on Samsung GALAXY S , I could able to configure but mail are not syncing . What would be the issue?

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Are you looking for the options available for exporting EDB files to PST? You may be confused as they are different in different Exchange versions. Here, I will discuss some options available.
Here in this article, you will get a step by step guidance on how to restore an Exchange database to a recovery database. Get a brief on Recovery Database and how it can be used to restore Exchange database in this section!
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
Suggested Courses

868 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question