[Last Call] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 225
  • Last Modified:

Exchange 2010 / Mobile Device Policy

We currently have Exchange 2010 SP1 in our environment, 2 x Hardware Load Balanced CAS servers (including HT roles), and 2 x 2010 SP1 Mailbox servers in a DAG.  

Everything works as expected, however, we would like to put some form of policy in place that prevents a user from adding an iPhone / Andriod without us first approving the device.

At the moment, the only remedy we have is to disabled Activesync on an account basis.  But I was wondering if it would be possible to do this by policy or some 3rd party plug in.
  • 2
1 Solution
you could disable activesync for all mailboxes and then use the following to allow specific types of devices
Set-CASMailbox -Identity: "UserA" -ActiveSyncAllowedDeviceIDs: "IDiPhone","IDiPAD","IDAndroid"
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
Set-ActiveSyncOrganizationSettings –DefaultAccessLevel Quarantine
 â€“AdminMailRecipients admin@company.com

This will cause any connection requests to be initially denied, and an emailing flagging the connection request to be sent to admin@company.com
I think your command above will quarantine all existing users of activesyn which may not be good.

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now