ActiveSync policies set in various places in various management consoles

pma111
pma111 used Ask the Experts™
on
We are  doing a risk assessment of certain security settings on a number of our key systems, including 3 internal 2010 exchange servers. on each server, we can go to the exchange management console and view the active sync policies within organization configuration > client access > exchange ActiveSync mailbox policies. There are some concerns about the active sync policies set here. However, the admin has shown some completely contradictory AS policies set in some sort of web admin console (exchange control panel? > phone & video > ActiveSync access?). How can we tell which policies are taking effect, or whether both are valid. Or can policies set via either management console, if so which takes precedent and overrules the other?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
View Solution Only
Solutions Architect
Top Expert 2016
Commented:
Activesync policy is policies defined by administrator
you can have multiple active sync policy

then administrator then apply one activesync policy to a mailbox. you cannoy apply more than one policy to a user

So your console shows every activesync policy, where the websites shows the users end (and how many device they owns)

i usually prefer powershell as it can be use in other form

https://technet.microsoft.com/en-us/library/bb123994%28v=exchg.141%29.aspx?f=255&MSPPError=-2147217396



what exactly you want to do probably will help me to guide you on your journey.
Jian An LimSolutions Architect
Top Expert 2016

Commented:
provided an overview for the answer

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial