Link to home
Start Free TrialLog in
Avatar of Member_2_8001432

asked on

Exchange 2010. 403 error. activesync not working for some users.

Hello Experts

We have some mobile users that has trouble connecting to exchange via activesync.

When using exchange analyzer and activesync tester i get the error 403 from both of them, saying access denied.

I used to fix this problem by enabling inherit in AD. But now it doesn't work.

I have enabled "Basic authentication" on the IIS side for active-sync folder.

Active sync policies from exchange have "allow non-provisible devices" enabled.

I am suspecting it could be an AD issue, since this user had a working activesync previously. no membership or permissions has been changed.
Avatar of Member_2_8001432


just to add, i just created a new account, and created a new mailbox. Activesync works.
Avatar of Scott C
Scott C
Flag of United States of America image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
i think your debug comment helped me solve it. Testing it now.

i saw in the log this:
WARNING: You currently have 10 Exchange ActiveSync partnerships out of 10 maximum partnerships allowed per user. After
you reach the maximum, no new partnerships can be created until you remove some from your account.

I have removed some devices and waiting for them to remove the old devices. Gonna try again. You might just have given me the solution!

Gonna test it first :)
Yes.  Too many partnerships will cause that.

That article is a great read.  I personally know the author and worked with him first-hand at MS.
Yep, max devices were reached. Thanks!
Glad I could help.