Exchange 2007 IMAP configuration

you would also need to open port 25 for SMTP for outgoing ... but if you are using exchange and Android, why not use Android's link to exchange instead via OWA (Outlook Web Access) then you need only Ports 25, 80, and 443 open and you don;t have to mess with IMAP settings at all, and you get the calendar and contacts and to do lists sync'ing to the android phones as well ...

Outgoing will need to use an SMTP server to send.  This can be your exchange server on port 25.  The user will need to authenticate to allow them to send.  Make sure you specify credentials rather than "use same as incoming server".

The username needs to be in the format of DONAIN\Username or username@domain.com

Incidentally, doesn't the android have ActiveSync capabilities? This would be a much better option.

>>then you need only Ports 25, 80

You should NEVER need port 80 open for authentication purposes, this is completely insecure!

no one said for authentication purposes on port 80 - just simply need to open it for the OWA web pages it transfers you to the secure webpage automatically and authenticates across port 443 securely.

Port 80 is not required by Exchange 2007/2010, unless you manually add it, which i recommend you dont, there is no point in opening it.

All that is required is port 25 & 443

yes you are correct you don't need to open port 80, but sometimes the users forget to type http with the S at the end and then you get a ton of dumb phone calls about it, it doesn't hurt to open it in this case as it does auto-transfer you to the secure webpage to login and then users don't have to remember anything additional with the S on the end of the http - just enter www.whatever.com/exchange and voila there they are to login ... no fuss no muss ...

IE - I am not arguing with you on the validity of security for port 80 on a server, just the simplicity of it for the end user ..

Simplicity over security.  I know which I would chose.  Male the users use https, they will soon learn after making themselves look stupid for a while.

Either way port 80 is definitely not require for ActiveSync which is what the question is about.

Ok, I am a bit confused..... First of all, I am just using my phone to test.  It is actually for a bberry and they do not want to purchase a BES server, nor do they like the OWA method.

Next, I am confused because isnt smtp already open from inside going out if my mail server is currently sending mail?

yes it is but for it to send mail you need to open it so remote users (phones - blackberry, etc.) can use it to send and you need to authenticate to it as well.  so essentially for what you need to do yes just open port 25 and it should work from there for both send and receive.

of course leave the IMAP ports open as well

SMTP is open, but unless you authenticate you won't be able to send as I said in my first post.

What's wrong with the free version of BES? Or Blackberry Internet Service?

Sorry, I am a bit slow... So do I need to open 25 for my Exchange Server from outside coming in, as well as from inside going out?

I was not aware of a free BES product.... and I dont believe BIS displayed all mail folders... just defaults.

There certainly is a free one: http://us.blackberry.com/apps-software/business/server/express/

You don't need to change anything on your router/firewall unless of course you cannot send/receive email at the moment???

All you need to do is check you are authenticating correctly, please read my first post

The phone says "Your Outgoing mail server does not support authentication"....

On the default receive connector what authentication methods do you have checked?

Please see the screenshot.

Are you using port 25 on the android?

Do you use a SPAM filter?

Yes I m using port 25 and I do have a separate server for spam.

I see... So it is not possible with my current setup.  I just saw the link for the Free BES.  What are some of the limitations?  Why buy the Enterprise version?

The enterprise version is for bigger organisations.  They figure the free version will get the hardware costs from smaller companies.

No, with your current setup you can't do what you want.

You have been very helpful.... 2 more Q's before I award points.... What is the limit of BBerries you can have on the Express version?  Does the GUI look the same as the ENT version?

Well...according to this it's 75 with the new version: http://us.blackberry.com/apps-software/business/server/express/Comparison_Chart.pdf

And yes, the interface is the same just some features are missing but the above comparison chart explains the difference