Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Surface Pro 3 can't sync email over Activesync on Exchange 2010

Posted on 2014-12-30
5
Medium Priority
?
2,216 Views
Last Modified: 2014-12-31
I have a user that just got a Microsoft Surface Pro 3 for Christmas and wants to sync her email via Activesync with our Exchange Server 2010.  I have an Activesync policy set up in Exchange that requires a password be on the device, and that the device be encrypted.  When we enter in the settings for Activesync within the email app on the Surface (NOT Outlook 2013) it connects to Exchange fine - no errors.  However when the mail app tries to sync, it says "This PC can't meet the security requirements for syncing <user's email address>.  There is a link on the box that says "See how".  When you click that, it says "We can't sync <user's email address> because this PC can't meet its mail server's security requirements.  For more info, ask your server administrator."  Well, that would be me, and I'm at a loss.  Bitlocker is enabled on the Surface, so it should be encrypted, and the user has a password set on it.  We have been able to set this up on all versions of IPads, IPhones, and Android phones with no trouble.  Weird that it's the Microsoft tablet that doesn't want to play nice with Exchange.  When an IPad/phone/android is missing one of the security requirements (i.e. no password on the device, or not encrypted), it prompts the user to do those things, and then begins syncing without any trouble.  Any suggestions?
0
Comment
Question by:IT_Girl2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 8

Expert Comment

by:Jessie Gill, CISSP
ID: 40524701
Not knowing all of your active sync settings, I bet it is the force encryption portion.
To validate this make another active sync policy, which does not require encryption and apply that policy to the user.  If it connects then you know the surface pro doesn’t support that setting.  I have had similar problems with windows phones, for some reason windows devices don’t play very nice with active sync.
0
 

Author Comment

by:IT_Girl2
ID: 40525684
Yep.  That's exactly the issue.  I did as you suggested, and sure enough, it started syncing email like a champ.  So, how do I get around this?  Do I have to have a separate policy for Surface users?  Since bitlocker is on, the device is encrypted, right?  Any idea why Exchange thinks it is not?  I would prefer to have one ActiveSync policy for all mobile devices which requires encryption, is that possible?
0
 
LVL 8

Accepted Solution

by:
Jessie Gill, CISSP earned 2000 total points
ID: 40525719
If bit locker is enabled and configured on the Surface then yes the Surface pro 3 is encrypted, there really is no need to force the active sync encryption (It won’t work anyway).  

One active sync policy won’t work here, as you would have to weaken the security on the primary policy to accommodate the Surface Pro's.

I would treat the surface pro’s as laptop computers instead of mobile devices, and create a different Active Sync policy, just ensure all the Pro users use bit locker to satisfy your encryption requirement.
0
 

Author Comment

by:IT_Girl2
ID: 40525870
So, if I understand correctly, you are saying that there is no way to make a Surface Pro function with an ActiveSync policy that requires encryption.  I understand that there are ways around it, but I just want to confirm that a workaround is the only solution.  (I really appreciate your help, Jessie.  :) )
0
 
LVL 8

Expert Comment

by:Jessie Gill, CISSP
ID: 40525889
From my experience I have not gotten it to work with encryption enabled
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
This article covers the basics of data encryption, what it is, how it works, and why it's important. If you've ever wondered what goes on when you "encrypt" data, you can look here to build a good foundation for your personal learning.
The viewer will learn how to simulate a series of coin tosses with the rand() function and learn how to make these “tosses” depend on a predetermined probability. Flipping Coins in Excel: Enter =RAND() into cell A2: Recalculate the random variable…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question