Solved

Is there a way to keep iPhone,iPad and Driod password in sync

Posted on 2011-09-22
9
274 Views
Last Modified: 2013-11-05
I have ActiveSync infrastructure in place in my current environment.
With our AD password policy set for users to change their password every 60 days this presents a minor issue for users using iPhone's, iPad's or Driod's connecting via EAS since they then need to manually change it.
We give the users a tutorial and the heads up that they will need to change the EAS password when they change it for their computer, but it goes in one ear and out the other.  So we get the calls saying "My email is not working" or "My email is not showing up on my phone".

So is there a way to use my CA to issue certs for these devices and use it for authentication?

0
Comment
Question by:yo_bee
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
9 Comments
 
LVL 12

Accepted Solution

by:
Deepu Chowdary earned 250 total points
ID: 36584797
The issue is not about CA, its about logging in using our personal passwords..

Hmm AFAIK there is no CA for password issues.

You have to disable these 60 days option.
0
 
LVL 23

Author Comment

by:yo_bee
ID: 36584821
I guess then the helpdesk deals with this.
Thanks for you input and I felt that was going to be the answer.
0
 
LVL 6

Assisted Solution

by:Reubenwelsh
Reubenwelsh earned 250 total points
ID: 36585272
I have troubleshooted this problem in the past, it is just as Exchange9 says, there is no solution for this currently.
Really you have the same issue with everything that saves your password, it just isnt safe (and there isnt really any point) for your password to be replicated out to the phone.

The only option i can imagine for the future is if you in the future connect your phones to the domain and have passthrough authentication. Sadly with this option you would need to enforce stong passwords on phones instead of 4digit pins... maybe in the future with retina scanners or somthing like that though.
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 23

Author Comment

by:yo_bee
ID: 36707750
I've requested that this question be deleted for the following reason:

No answer to the question other than It can not be done.
0
 
LVL 6

Expert Comment

by:Reubenwelsh
ID: 36707751
The question is if it can be done, which has been answered multiple times. Not how to do it.
0
 
LVL 23

Author Comment

by:yo_bee
ID: 36898550
I've requested that this question be deleted for the following reason:

No solution
0
 
LVL 23

Author Closing Comment

by:yo_bee
ID: 36919448
I still find it hard to believe that Certificate authenication cannot be used for EAS.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question