Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Securing the Exchange ActiveSync 2007 ?

Posted on 2013-07-02
5
Medium Priority
?
398 Views
Last Modified: 2013-07-03
What can we do to make the Exchange Server 2007 Active Sync connection secure ?

because I believe that out of the box, Exchange HT server allows anyone to connect to receive email as long as they know the HT server name and got AD credentials.
0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 39292824
What do you mean by secure?

By default you will be secure because you will be using SSL.

Do you want to block access unless specifically allowed?

If that is the case, you can globally disable ALL accounts using the following command:

get-mailbox | set-casmailbox -activesyncenabled:$false

Then you can manually enable a specific account using the Exchange Management Console or the shell.

Alan
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 39292936
Exactly, so in this case, Exchange 2007 allows ActiveSync to be enabled by default.
what about Exchange Server 2010 or 2013 ?
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 39292979
Activesync is enabled by default on ALL versions of Exchange.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 39293616
ok, so in this case after I execute the powershell script

get-mailbox | set-casmailbox -activesyncenabled:$false

Open in new window


I need to do it again everytime I created new mailbox ?
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 2000 total points
ID: 39293866
The command will disable it for ALL existing mailboxes and if you add a new one, you can run the same command again providing you have not enabled it for anyone manually.

If you have enabled some and want to keep them enabled, then you need to run:

Set-CASMailbox -Identity newuser@yourdomain.com -ActiveSyncEnabled $false
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question