prevent users from accessing Exchange online from non activesync device

Posted on 2014-09-01
Medium Priority
Last Modified: 2014-09-05
I will try and make this question as clear as I can-

We recently switched from an on-prem Exchange to Exchange online. Previously, the only three ways of accessing our email was VPN, ActiveSync and webmail. However, it now appears that any user can use any device that accepts an Exchange email account and start getting their emails. I understand this is the idea of cloud email, but as a HIPAA organization, this presents a serious security risk. My question is this-how can I track how users access email? I know I can limit things based on IP(http://technet.microsoft.com/en-us/library/hh526961(v=ws.10).aspx), but then it would work if they had a VPN connection and we allow certain users to access our servers using their home PC if they use a VPN connection. But now they do not need that.

Is there any way to track what devices and users are accessing our hosted Exchange environment, or is this just the nature of hosted email?
Question by:dkurz8814

Expert Comment

ID: 40297579
Hello, might wanna check http://technet.microsoft.com/en-us/library/dn282287.aspx and http://technet.microsoft.com/en-us/library/dn282277.aspx.

Mind that win8 client is ActiveSync Based.

Setting device access rules might help - here is the 2013 version http://justaucguy.wordpress.com/2013/02/25/exchange-2013-configure-your-mobile-device-mailbox-policy/

ansd here is the blog that should give you some insight: http://blogs.technet.com/b/exchange/archive/2010/11/15/3411539.aspx.

Depending on exactly you need to achieve, other types of filtering/block might be needed, I am thinking here at get-CasMailbox settinhd -  http://technet.microsoft.com/en-us/library/bb125264(v=exchg.150).aspx

Hope it helps.
LVL 24

Accepted Solution

Mohammed Hamada earned 1500 total points
ID: 40297909
I think for hosted environment the software "Exchange reporter plus" does what you're looking for. it's free for 25 users.


Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Eseutil Hard Recovery is part of exchange tool and ensures Exchange mailbox data recovery when mailbox gets corrupt due to some problem on Exchange server.
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question