?
Solved

Securing the Exchange ActiveSync 2007 ?

Posted on 2013-07-02
5
Medium Priority
?
403 Views
Last Modified: 2013-07-03
What can we do to make the Exchange Server 2007 Active Sync connection secure ?

because I believe that out of the box, Exchange HT server allows anyone to connect to receive email as long as they know the HT server name and got AD credentials.
0
Comment
  • 3
  • 2
5 Comments
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 39292824
What do you mean by secure?

By default you will be secure because you will be using SSL.

Do you want to block access unless specifically allowed?

If that is the case, you can globally disable ALL accounts using the following command:

get-mailbox | set-casmailbox -activesyncenabled:$false

Then you can manually enable a specific account using the Exchange Management Console or the shell.

Alan
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 39292936
Exactly, so in this case, Exchange 2007 allows ActiveSync to be enabled by default.
what about Exchange Server 2010 or 2013 ?
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 39292979
Activesync is enabled by default on ALL versions of Exchange.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 39293616
ok, so in this case after I execute the powershell script

get-mailbox | set-casmailbox -activesyncenabled:$false

Open in new window


I need to do it again everytime I created new mailbox ?
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 2000 total points
ID: 39293866
The command will disable it for ALL existing mailboxes and if you add a new one, you can run the same command again providing you have not enabled it for anyone manually.

If you have enabled some and want to keep them enabled, then you need to run:

Set-CASMailbox -Identity newuser@yourdomain.com -ActiveSyncEnabled $false
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
This article will help to fix the below errors for MS Exchange Server 2016 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Suggested Courses

616 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question