Solved

exchnage, active sync

Posted on 2016-10-06
10
75 Views
Last Modified: 2016-10-07
what are the security requirements we require for mobile device connections to exchange email for exchange 2007 having outlook 2007 and above
0
Comment
Question by:pramod1
  • 4
  • 3
  • 2
  • +1
10 Comments
 
LVL 16

Expert Comment

by:Ivan
ID: 41832584
What do you mean?

Mobile device like mobile phones, or you are referring to mobile computers, like computers from people that work in field?

Regards,
Ivan.
0
 
LVL 30

Expert Comment

by:Scott C
ID: 41832589
All you should need is a valid cert from a CA and an Exchange server.

Though you are going to want to consider upgrading your Exchange.   2007 is very quickly nearing it's EOL support cycle.
0
 
LVL 15

Expert Comment

by:Todd Nelson
ID: 41832642
SSL would be my recommended requirement.

Agree with ScottCha.  This environment really should be transitioned to Exchange 2010 and Office 2010 (at a minimum) or migrated to O365.

And support for Office 2007 is scheduled to expire on 10 Oct 2017 (one year from now) ... https://support.microsoft.com/en-us/lifecycle/search/?p1=8753
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:pramod1
ID: 41832712
I have this attached figure for active sync mobile policies on 0365

do we have such security options for mobiles ( exchange active sync) which are used for exchange 2007

like password length, number of sign in failures etc.
capture.png
0
 
LVL 16

Expert Comment

by:Ivan
ID: 41832747
Yes, you do.

Here is a list of options on Exchange 2007: https://blogs.technet.microsoft.com/exchange/2007/05/23/exchange-2007-activesync-policies/

Regards,
Ivan.
0
 

Author Comment

by:pramod1
ID: 41833519
but ivan, how would I know if these policies are applied to users
0
 
LVL 16

Expert Comment

by:Ivan
ID: 41833524
Hi,

you would go to user mailbox, and in properties --> mailbox features --> ActiveSync --> you can see what policy is applied to that user.

More on that: https://technet.microsoft.com/en-us/library/aa997929(v=exchg.80).aspx

Picture is attached.

Regards,
Ivan.
policy.jpg
0
 

Author Comment

by:pramod1
ID: 41833545
it says default policy

how can I find what are in defaults
0
 
LVL 16

Expert Comment

by:Ivan
ID: 41833559
Follow this guide to get to default policy, and see what is in it.

Link: https://technet.microsoft.com/en-us/library/aa995989(v=exchg.80).aspx

Regards,
Ivan.
0
 
LVL 15

Accepted Solution

by:
Todd Nelson earned 500 total points
ID: 41833668
These are screenshots of the default EAS policy...

eas0.png
eas1.png
eas2.png
eas3.png
eas4.png
eas5.png

And here is the text output of that same policy...

[PS] C:\>Get-ActiveSyncMailboxPolicy | fl


AllowNonProvisionableDevices             : True
AlphanumericDevicePasswordRequired       : False
AttachmentsEnabled                       : True
DeviceEncryptionEnabled                  : False
RequireStorageCardEncryption             : False
DevicePasswordEnabled                    : False
PasswordRecoveryEnabled                  : False
DevicePolicyRefreshInterval              : unlimited
AllowSimpleDevicePassword                : True
MaxAttachmentSize                        : unlimited
WSSAccessEnabled                         : True
UNCAccessEnabled                         : True
MinDevicePasswordLength                  : 4
MaxInactivityTimeDeviceLock              : 00:15:00
MaxDevicePasswordFailedAttempts          : 8
DevicePasswordExpiration                 : unlimited
DevicePasswordHistory                    : 0
IsDefaultPolicy                          : True
AllowStorageCard                         : True
AllowCamera                              : True
RequireDeviceEncryption                  : False
AllowUnsignedApplications                : True
AllowUnsignedInstallationPackages        : True
AllowWiFi                                : True
AllowTextMessaging                       : True
AllowPOPIMAPEmail                        : True
AllowIrDA                                : True
RequireManualSyncWhenRoaming             : False
AllowDesktopSync                         : True
AllowHTMLEmail                           : True
RequireSignedSMIMEMessages               : False
RequireEncryptedSMIMEMessages            : False
AllowSMIMESoftCerts                      : True
AllowBrowser                             : True
AllowConsumerEmail                       : True
AllowRemoteDesktop                       : True
AllowInternetSharing                     : True
AllowBluetooth                           : Allow
MaxCalendarAgeFilter                     : All
MaxEmailAgeFilter                        : All
RequireSignedSMIMEAlgorithm              : SHA1
RequireEncryptionSMIMEAlgorithm          : TripleDES
AllowSMIMEEncryptionAlgorithmNegotiation : AllowAnyAlgorithmNegotiation
MinDevicePasswordComplexCharacters       : 3
MaxEmailBodyTruncationSize               : unlimited
MaxEmailHTMLBodyTruncationSize           : unlimited
UnapprovedInROMApplicationList           : {}
ApprovedApplicationList                  : {}
AllowExternalDeviceManagement            : False
MailboxPolicyFlags                       : 0
AdminDisplayName                         :
ExchangeVersion                          : 0.1 (8.0.535.0)
Name                                     : Default
DistinguishedName                        : CN=Default,CN=Mobile Mailbox Policies,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=d1,DC=com
Identity                                 : Default
Guid                                     : 53e4840b-9bff-47de-a23a-e548935766f1
ObjectCategory                           : contoso.com/Configuration/Schema/ms-Exch-Mobile-Mailbox-Policy
ObjectClass                              : {top, msExchRecipientTemplate, msExchMobileMailboxPolicy}
WhenChanged                              : 8/21/2015 7:14:51 PM
WhenCreated                              : 8/21/2015 7:14:51 PM
OriginatingServer                        : server1.contoso.com
IsValid                                  : True



[PS] C:\>

Open in new window

0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Some of the SEO trends we might expect in 2017.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
how to add IIS SMTP to handle application/Scanner relays into office 365.

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question