Exchange 2010 SP2 new users not able to connect via Activesync (mobile devices)

Exchange 2010 SP2 new users not able to connect via Activesync (mobile devices)

I already made sure that their AD properties under Securities/Advance is checked on "Include inheritable permissions from this object's parent".

We have over 1200 mailboxes.
CAS server has Update Rollups ver 4 and 6 only.

Do I need Rollup 2 for SP2? or Do I need to go to SP3 directly?

Older mailbox/accounts are still able to connect via activesync in their phones.

Note that those that cannot connect via ActiveSync uses either iPhone or Android.
We do have a MS Forefront TMG server in the DMZ before things hit the Exchange Servers. (Just FYI)

Help please.
Who is Participating?
Simon Butler (Sembee)Connect With a Mentor ConsultantCommented:
Rollups are cumulative - so rollup 4 contains all fixes within previous rollups.

Create a test account and then run it through the Microsoft test site at

Simon Butler (Sembee)ConsultantCommented:
I would suggest going to Exchange 2010 SP3 with rollup 4 before you doing anything else. Do the Client Access Servers first. There are lots of problems with ActiveSync from non-Windows Phone devices which have been resolved in the later updates. Particularly with iOS.
Ensure that iOS devices are kept up to date with the latest version of the OS.

Rollups are cumulative - therefore you only need to install the latest one.

asilvestreAuthor Commented:
Thanks Sembee2.

Do you have a link where I can download SP3 and ru4? or does it come with just one download?

I'll try this tonight.

So should I install SP3 first and then ru4?
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Simon Butler (Sembee)ConsultantCommented:
SP3 has to be installed, the server rebooted and then do RU4.

The download links are the first hit on Google.


Both will take about 40 minutes to install.

asilvestreAuthor Commented:
I pushed SP3 and ru4 on the 2 CAS/HUB servers but not yet on the MB server (I'm still waiting for backups to finish).

So far email flow is fine but still not connecting in activesync with new users/mailbox.

I've been reading and I think RU1 resolves the syncing of ActiveSync issues....

Should I install RU1 as well?
Shouldn't it worked already? or really necessary to have SP3 and RU4 installed inside the Mailbox server?
asilvestreAuthor Commented:
I completed the install for the MBX server but still same symptom and no new user can sync with ActiveSync.

So not yet resolved.
asilvestreAuthor Commented:
Still not working with the new SP3 and Rullup4.

So desperately I found that re-establishing Exchange Server object rights to having full control to "this object and all descendant objects" on users' main OU works now on every new accounts.

I'm not sure if this is the best way of doing it but at least ActiveSync is again connecting to mobile devices. Most especially the function to "Create msExchangeActiveSyncDevice".

Thanks Simon/Sembee2 for the effort.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.