jdcreece
asked on
Problems with Active Sync and OWA on single front end/back end Exchange 2003
Originally after following the the set up for a single fe/be Exchange by Petri I would always get a windows logom prompt for OWA instead of the default home page (like what you get in SBS 2003.) I would have to enter domain\user and then pass. Then I would go directly to my inbox instead of seeing a nice GUI for loging in like in SBS 2003 Premium. Not a problem until now...
I currently have a few WM 6.1 users and Iphone users who can't connect through active sync. I an using a godaddy SSL which I have used for other companies with no problems. I also tried turning on Forms based Auth in ESM which allowed the normal OWA web logon page to appear instead of the logon window that would pop up before, the but the phones srill won't connect (properly.) With one of the WM phones I get the message: Exchange Server reqires a personal cert to logon... with errror code - ox85030027. Thanks for all of your help.
I currently have a few WM 6.1 users and Iphone users who can't connect through active sync. I an using a godaddy SSL which I have used for other companies with no problems. I also tried turning on Forms based Auth in ESM which allowed the normal OWA web logon page to appear instead of the logon window that would pop up before, the but the phones srill won't connect (properly.) With one of the WM phones I get the message: Exchange Server reqires a personal cert to logon... with errror code - ox85030027. Thanks for all of your help.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Also remove the SSL on Microsoft exchange-oma & Microsoft-server-activesyn c virtual directories then perform IISRESET
ASKER
Thanks for the response. I'll get back to it in a couple of hours.
ASKER
Ran the test (alanhardisty) and followed the KB (aslamsurve) but still getting the same errors. I will play some more...
ASKER
Turned off accept ssl from client in Microsoft-server-activesyn c and oma...works like a charm! Thanks! What do I need to check for security wise?
ASKER
alanhardisty, your answer was good but vague. aslamsurve, your advice was a little better and very accurate but lacked a few critical details. All and all i am very pleased with the results. Thanks!
ASKER
After reading SAM"s answer I wonder if he was right all along? I will have to test...and if so I guess I owe SAM a pint or two.
It looks like you are planing to deploy Exchange activesync with Cert base authentication
if that is true please let me know
if it is not the case please go to the properties of Exchange, Microsoft-server-activesyn
go to the directory security Tab -- last edit for secure communication -- put the radio button on ignore certificate and do an iisreset this should resolve the issue.
Thanks,
SAM