We currently run Exchange 2003 on a Windows Server 2003 box. Within the past two years, we have had our employees start to use ActiveSync on their mobile devices (tablets\cell phones) to connect to our exchange server. We have currently implemented the following security measures:
- Require a lock code for the screen on the mobile device
- Allow remote wiping
What steps can we take to..
- Audit who is accessing our exchange server to use ActiveSync (can we retrieve IP Information\MAC\Mobile Device information with a timestamp?)
- Implement further security measures to prevent unauthorized access?
We would like to hear some insight from other administrators who are handling ActiveSync and mobile devices. Thank you!