• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1668
  • Last Modified:

Exchange 2010 remove mobile partnership not working

Exchange 2010 SP1
I have a test account setup on a droid and also on an iphone

From the EMC I right-click the user to Manage Mobile Phone and then choose to remove the mobile phone partnership. It succeeds fine. Initially email on the phone will go away, throw some errors about connecting, then within 5 minutes all email is back and I can send/receive email from the phone. I also tried using the shell - Remove-ActiveSyncDevice -Identity...

I also tried from OWA. I logged on as the test user and hit the X to delete the phone. It goes away for a few minutes and then returns. ANy ideas? Does SP2 fix this?? Thanks so much for any help.
0
cb_it
Asked:
cb_it
  • 5
  • 2
1 Solution
 
Ben HartCommented:
You have to manually remove the account info from the phone.  The relationship is re-established if the device re-syncs to the server.
0
 
cb_itAuthor Commented:
So, if an employee loses the device, what are my options? What is the point then of having the option to 'remove mobile phone partnership'??
0
 
Ben HartCommented:
All I can find so far indicate manual removal of the account settings on the mobile device are required.. either that or you disallow ActiveSync for the user.
0
 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

 
Ben HartCommented:
Look like the best option to do is set the default active sync access settings to Quarantine new devices for admin approval.  Check here: http://mobilitydojo.net/2009/09/28/restricting-exchange-activesync-access/
0
 
Ben HartCommented:
When a user reports a lost mobile device, one of the first things done should be changing their password.  So if the device was found and someone tries accessing their mail you've performed a remote wipe that has hopefully succeeded, then you remove the device from their ActiveSync settings and changed the users password.  Without new credentials the thief cannot access mail.
0
 
cb_itAuthor Commented:
Like I said, the remove mobile partnership is pointless, within a few minutes the phone syncs right back up. I also am hesitant to do a full remote wipe. We have a BYOD setup here and I cant imagine the blowback from wiping someone's phone. They lose all data. Yikes!

I guess changing their password is the option.
0
 
Ben HartCommented:
Here's the problem with BYOB.. what we've been looking at at work ourselves.  We've worked up a disclaimer the employee must agree to before they can use their own device.  If they want to store the companies information on their personal device then they MUSt agree to let us wipe it in the event they lose it.. lest company owned information winds up in the wrong hands.  If they do not agree to that (and our policy forcing a password on the device) then they do not get to use their device and must use a company-provided Blackberry.  Simple as that.

the information belongs to the organization.. not the employee, therefore to safeguard the info the company must be allowed to impose rules.
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now