MichaelBalack
asked on
Why my mobile device could not work with my Exchange 2013 server?
This is using MS Exchange 2013 server. However, I found that my mobile handphone couldn't be setup to sync with my exchange server for emails. How should I troubleshoot to get it resolved.
Thanks in advance.
Thanks in advance.
You have provided no information to be able to provide assistance.
You haven't said what the device is (OS etc) or whether you have done anything yourself to resolve the issue.
Create a test account and run it through the Microsoft test site at http://exrca.com/ and see what that flags up.
Do you have a trusted SSL certificate on the server? If not then you will need to change that as most mobile clients will have problems with the self signed certificate generated by Exchange - which isn't supported for production use anyway.
Simon.
You haven't said what the device is (OS etc) or whether you have done anything yourself to resolve the issue.
Create a test account and run it through the Microsoft test site at http://exrca.com/ and see what that flags up.
Do you have a trusted SSL certificate on the server? If not then you will need to change that as most mobile clients will have problems with the self signed certificate generated by Exchange - which isn't supported for production use anyway.
Simon.
ASKER
Hi Simon,
This is using self-signed cert. I will test if without cert, can my andriod work?
This is using self-signed cert. I will test if without cert, can my andriod work?
Hi MichaelBalack,
prvsly I had similar issue. I have solved in following way, I was domain admin group at that time.
1. Remove your user from domain admin group.
2. configure Active sync or exchange account on your mobile device.
3. Once your mailbox is synced again add your user in domain admin group.
if it doesnot works please check following steps
To work around this issue, assign the Exchange Servers group the right to change permissions against msExchActiveSyncDevices objects. To do this, follow these steps:1.Start Active Directory Users and Computers.
2.Click View, and then click to enable Advanced Features.
3.Right-click the object where you want to change the Exchange Server permissions, and then click Properties.
Note You can change permissions against a user, an organizational unit, or a domain.
4.On the Security tab, click Advanced.
5.Click Add, type Exchange Servers, and then click OK.
6.In the Apply to box, click Descendant msExchActiveSyncDevices objects.
7.Under Permissions, click to enable Modify Permissions.
8.Click OK three times.
prvsly I had similar issue. I have solved in following way, I was domain admin group at that time.
1. Remove your user from domain admin group.
2. configure Active sync or exchange account on your mobile device.
3. Once your mailbox is synced again add your user in domain admin group.
if it doesnot works please check following steps
To work around this issue, assign the Exchange Servers group the right to change permissions against msExchActiveSyncDevices objects. To do this, follow these steps:1.Start Active Directory Users and Computers.
2.Click View, and then click to enable Advanced Features.
3.Right-click the object where you want to change the Exchange Server permissions, and then click Properties.
Note You can change permissions against a user, an organizational unit, or a domain.
4.On the Security tab, click Advanced.
5.Click Add, type Exchange Servers, and then click OK.
6.In the Apply to box, click Descendant msExchActiveSyncDevices objects.
7.Under Permissions, click to enable Modify Permissions.
8.Click OK three times.
ASKER
Hi Praveen,
Let me have some time to do it. I'll update you the results.
Let me have some time to do it. I'll update you the results.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Simon,
The activesync without cert is just to check whether it works or not.
Btw, how to configure activesync w/o cert?
The activesync without cert is just to check whether it works or not.
Btw, how to configure activesync w/o cert?
Hey Michael,
ActiveSync works out of the box. All you need is a proper SSL certificate from a trusted third party CA and that's it. (Assuming you have also configured NATing on your firewall)
As Simon mentioned, configuring ActiveSync without SSL is not recommended for the reasons he stated.
GoDaddy has a single name SSL cert on sale right now for $55. And with some Google searching on GoDaddy promo codes you can pick one up for probably close to $40.
ActiveSync works out of the box. All you need is a proper SSL certificate from a trusted third party CA and that's it. (Assuming you have also configured NATing on your firewall)
As Simon mentioned, configuring ActiveSync without SSL is not recommended for the reasons he stated.
GoDaddy has a single name SSL cert on sale right now for $55. And with some Google searching on GoDaddy promo codes you can pick one up for probably close to $40.
ASKER
ok,
Please wait for my updates in 12-hour time.
Please wait for my updates in 12-hour time.
ASKER
Thanks Simon, after I changed to use MS Internal CA, and mobile using EAS is working fine.
http://msexchangeguru.com/2012/02/01/exchange-activesync/