Accepting Exchange 2010 ActiveSync Basic Authentication OR Certificate Based Authentication
Hey,
I would like to implement Exchange 2010 EAS Certificate Based Authentication along with still being able to use Basic Authentication. Reason being is we are testing CBA and a small subset of people will use it at first. When configure CBA, Certificates need to be set to accept or require in the EAS properties of the CAS server along with unchecking Basic Authentication which would prohibit EAS from accepting the basic usernames and passwords. What is the best way of me trying to accomplish having both authentication methods work? Would I need a second ActiveSync virtual directory, one with a URL pointing the virtual directory that accepts BASIC authenticaiton, and another URL pointing to a second virtual direction that accepts Certificates only?
That is probably the only way you can do it.
You can only ignore or accept client certificates.
You would need two web sites, two host names. The one with basic authentication should be left on the default web site.
However clients would need to be configured manually because you have no way of telling Exchange which clients use which address.
Simon.
0
digitalhitman00Author Commented:
Ok, I just tried creating a second EAS website, but it yelled at me. I tried running:
New-ActiveSyncVirtualDirectory -websiteName "EAS CBA" - Error: The web site doesnt Exist. New-ActiveSyncVirtualDirectory - Error, the AD Configuration for virtual directory 'Microsoft-Server-ActiveSync' already exists, please fremote this AD config manually.
I saw this listed: Only one Exchange ActiveSync virtual directory can exist in each Exchange ActiveSync website. Microsoft Site
Any ideas on adding a second eas instance on a computer that already has a first one?
You can only ignore or accept client certificates.
You would need two web sites, two host names. The one with basic authentication should be left on the default web site.
However clients would need to be configured manually because you have no way of telling Exchange which clients use which address.
Simon.