Solved

Exchange 2007 SP3 + Active Sync

Posted on 2014-11-11
6
105 Views
Last Modified: 2014-11-13
I am looking for a solution, where users via their devices, that use Microsoft's active sync go through say webmail01.xyz.com.

When they go through OWA they go through webmail02.xyz.com.  I want this URL  not to use active sync at all.

Can this be done via Exchange 2007 SP3?

thanks
0
Comment
Question by:techgenious
  • 3
  • 3
6 Comments
 
LVL 33

Expert Comment

by:it_saige
ID: 40435997
Theoretically, you could, but I have to ask, is there a specific reason why?

-saige-
0
 

Author Comment

by:techgenious
ID: 40436093
Yes  more for security reasons to separate the two.
How can it be done ?
0
 

Author Comment

by:techgenious
ID: 40436102
It was asked by management and they want them separated due to security reasons ?
Thanks
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 33

Accepted Solution

by:
it_saige earned 500 total points
ID: 40436123
Simply changing the url does not change the security landscape.  Management has to understand, that whether one address or many are used, ultimately, the service requests for OWA and ActiveSync, get answered by the same mechanism, your CAS [or Client Access Server].  The key is securing each of the services path's to the CAS [e.g. - Using SSL, WindowsIntegrated Authentication and FBA (Forms Based Authentication)].

More on Securing an Exchange 2007 Client Access Server:
http://www.msexchange.org/articles-tutorials/exchange-server-2007/mobility-client-access/securing-exchange-2007-client-access-server-3rd-party-san-certificate.html
http://technet.microsoft.com/en-us/library/bb400932(v=exchg.141).aspx

More on Hardening Exchange Server 2007:
http://www.msexchange.org/articles-tutorials/exchange-server-2007/security-message-hygiene/hardening-exchange-server-2007-part1.html

-saige-
0
 

Author Comment

by:techgenious
ID: 40436567
Thanks Saige let me check those articles.

The overall issue they have is, if you are able to obtain my user ID & password you can get into our network.
We want to have a infrastructure where, if the device is not configured to enter our network, then they cannot get in.

Example:
configuring their email with the stolen user ID & Password and getting the users email.  We want it where devices are also are authorized the internal network.
0
 
LVL 33

Expert Comment

by:it_saige
ID: 40437505
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
On-premise Digitally Signed/Encrypted Secure E-mail Solutions 1 35
exchange ,script 10 41
Exchange 2013 Snap-in? 3 26
Exchange 2016 Dag Question 2 31
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now