asked on
Hello EE. I am having a hell of a time trying to get one iphone4 user to to access OWA on Exchange 2010. I was able to successfyully set up 3 others with no problem. It keeps giving me "Exchange Account Unable to verify account information."
The only difference between her phone and the others is the OS is running 4.2.1 and the others are running 4.1. Inheritable permissions is checked on her AD profile. I was getting event id 1503:
Exchange ActiveSync doesn't have sufficient permissions to create the "CN=User,OU=XXXXX_XXXXX Administrators,DC=MHACS,DC
Active directory response: 00000005: SecErr: DSID-031521D0, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
".
Make sure the user has inherited permission granted to domain\Exchange Servers to allow List, Create child, Delete child of object type "msExchangeActiveSyncDevic
Details:%3
After checking allow inheritable rights in security tab I stopped getting that error but I still can not sync the phone. I tried with and without SSL. I do have a valid SSL ceert from GoDaddy. The other 3 phones gave no problems.. I have Exchange 2010 running on Windows 2008 R2 standard with a DC running Win 2008 R2 Enterprise. My luck she happens to be an Executive Administrator and is a domain admin as well. Any help would be appreciated.
The only difference between her phone and the others is the OS is running 4.2.1 and the others are running 4.1. Inheritable permissions is checked on her AD profile. I was getting event id 1503:
Exchange ActiveSync doesn't have sufficient permissions to create the "CN=User,OU=XXXXX_XXXXX Administrators,DC=MHACS,DC
Active directory response: 00000005: SecErr: DSID-031521D0, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
".
Make sure the user has inherited permission granted to domain\Exchange Servers to allow List, Create child, Delete child of object type "msExchangeActiveSyncDevic
Details:%3
After checking allow inheritable rights in security tab I stopped getting that error but I still can not sync the phone. I tried with and without SSL. I do have a valid SSL ceert from GoDaddy. The other 3 phones gave no problems.. I have Exchange 2010 running on Windows 2008 R2 standard with a DC running Win 2008 R2 Enterprise. My luck she happens to be an Executive Administrator and is a domain admin as well. Any help would be appreciated.
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 26 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.