vizoita
asked on
emails access after account is disabled in exchange 2007 using mobile devices
Im working with exchange 2007 and the users access their mailboxes using mobile devices only using activesync. If i disable a user account in exchange obviously the user can't send|receive anymore but still has access to the old email. i would like to have a setup when once an account is disabled there is no access to any email, Is there a way? I tries imap but it does saves emails on the phone.. I do know about the device wipe future in exchange but it is too drastic as the phone belong to users and the company plus if the user restores the phone from a backup, the email will restore as well.
Thanks
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
That is an interesting angle.
Can you archive the mail rather then delete it completely?
Can you archive the mail rather then delete it completely?
You don't want to delete the messages you want to use mobile management to initiate a remote wipe. We use this also when a device is lost or stolen. This will wipe the data from the mobile device and disable access but retains the mailbox content.
http://m.msexchange.org/articles-tutorials/exchange-server-2007/mobility-client-access/mobile-messaging-exchange-server-2007-part2.html
http://m.msexchange.org/articles-tutorials/exchange-server-2007/mobility-client-access/mobile-messaging-exchange-server-2007-part2.html
@thomas
That is not the question at hand that the Asker is asking.
This is not about lost or stolen, but rather a user leaves a company and there is no formal exit. They want to stop and remove all instance of the email and contacts, not wipe their phone.
That is not the question at hand that the Asker is asking.
This is not about lost or stolen, but rather a user leaves a company and there is no formal exit. They want to stop and remove all instance of the email and contacts, not wipe their phone.
@yo_bee that is right you can use mobile management to achieve this. You are not wiping the phone you can remove email contacts and disable sync.
ASKER
Amazing answer.. So simple and fits perfect for what i need. Thank you very much.
@vizoita
You do not have any concerns about retention or compliance?
You do not have any concerns about retention or compliance?
ASKER
yo_bee
Im not sure what do you mean by retention and compliance. please explain.
Im not sure what do you mean by retention and compliance. please explain.
The script that you accepted as a solution removes all e-mails so if you have to go back for search for an e-mail you will not have it. I would look at using the solution, but rather then delete the items Archive them in a PST just in case you need to search the content. Then after some time you can delete the PST.
ASKER
yo_bee
i accepted MAS's solution as an overall idea. I would defiantly dump mailbox content into a pst prior of wiping.
Thanks everyone for the help.
i accepted MAS's solution as an overall idea. I would defiantly dump mailbox content into a pst prior of wiping.
Thanks everyone for the help.
What this allows you to do is keep work stuff separate from personal stuff. It also prevents user from easily copy or save data in Dropbox, Google Drive and others like that. MDM Solutions will push a payload setup to a device and will allow you to remove the payload, but it is not the most secure. I would look closer at EMM/Workspace options.
I have been doing some POC's with various venders.
MaaS360
Airwatch
GO! Enterprise
GOOD