We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Setup Droid Phone to use SSL for Exchange OWA

Medium Priority
1,054 Views
Last Modified: 2013-12-06
Can someone help me to get my emails pushed through my corporate exchange server using SSL.  I can only seem to get it to work with Basic Authentication.  Here is my network setup.....

1 Windows Small Business Server 2003 (running)
DC/AD
DHCP
DNS
Microsoft Exchange Server 2003
IIS 6.0
ISA Server 2004 Standard
(This server is setup using one network interface card)


I have already gotten the Certificate based SSL to work in a web browser from outside and from inside of my network.  I just haven't gotten it to work on my droid.  I tried using the email application that comes with the phone and also using a program called Touchdown and both do not work. They give me the error of....

"Setup could not finish
Unable to open connection to server"


But if i type the exact same address into a web browser from outside of the network It works just fine.  And on my phone if i take away the "Use secure connection (SSL)", then my emails get pushed perfectly, but they are not encrypted when they are sent from the exchange server.

If you need anymore information just let me know and i can provide it.  I let out a bunch of stuff because i did not know if it was relevant.  All I really want is for the information to be encrypted as it passes from my exchange server to my phone and vice versa.  I would be open to suggestions if someone has another way that i could achieve this.  Any help would be greatly appreciated.
Comment
Watch Question

Hi palmerc12,
What's your android version?
Do your exchange use self-signed ssl certs?
If you use self-signed certs, then when configure your exchange connections on your phone, did you tick the option Accept all SSL Certificates? Try it if you didn't.
If your phone is Android 2.1, it seems the only way to get ssl working with self-signed certs. You can look here:
http://blog.brightpointuk.co.uk/quick-look-android-21s-exchange-support
Hope this help,
T-Man
Enterprise Architect
CERTIFIED EXPERT
Top Expert 2008
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Thank you thetmanvn

What's your android version?
My Android version is 2.2.2

If you use self-signed certs, then when configure your exchange connections on your phone, did you tick the option Accept all SSL Certificates
Yes, I am using self signed certificates.  I tried the option to "Accept all SSL Certificates" and i got the same error as before

Author

Commented:
Thank you Keith!!

Make sure your ISA 2004 box is runninf ISA2004 SP3 (should hope so, it has been out years and 2004 will be unsupported soon).
Yes my Version is 4.0.2167.887.  Which I believe is ISA Server 2004 Standard SP3

Are you running sbs2003 premium - and the ISA is on the DC?
Yes, I know that it is not an ideal setup.  It was configuration that i inherited.

I'll assume for the moment that you have used all the correct wizards and not hacked the config about but this is the best guide I have ever found.
http://technet.microsoft.com/en-us/library/bb794845.aspx

Thank you for the guide.  I make a run through it and make sure that everything is setup correctly.  I'll post my results after I am done
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008

Commented:
For SBS it IS ideal. SBS is the only system that was designed to have ISA on the DC and has the wizards to make it integrate correctly so no issue there.

Author

Commented:
I been reading a lot lately about access rules and publishing rules.  Everything that i have read was using a multi-homed ISA Server as the scenario.  Does this mean that the rules that i created are most likely incorrect because they were based off of a different setup (Multi-Homed)?  Do you have any general advice when working in ISA on a SBS machine or any guides that you would recommend?  It's just that almost everything that I read on ISA configurations said that you lose a lot of protection by having the ISA box on the DC while also using it as a Uni-Homed Server.  Anything that you could give me would be greatly appreciated.
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Thank you Very Much for all of your help Keith!!  It's  awesome that there are people out there that take the time to explain things in detail like you have.
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008

Commented:
Welcome :)
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.