Synchronizing Pocket PCs with Exchange 2003 mailboxes

Get help setting up SSL authentication to allow Pocet PC users' email to synchronize with Exchange Server 2003 mailboxes.

Richard Luckett, Learn IT Solution Group LLC

Published: 24 Aug 2005

A group of my users recently picked up new cell phones that are Pocket PCs. I was able to set up ActiveSync with my Exchange 2003 box so that users can synchronize their mailboxes to their phones. I wanted to make them use Secure Sockets Layer. I set up a certificate and applied it to my default Exchange site.

Internally, I have no problems getting to https://internal.mail.company.com, but externally https://mail.company.com does not work. However, http://mail.company.com says that you need https:// to connect to the site. Port 443 is enabled and allowed on my firewall. When I remove the certificate from the site and uncheck the SSL from the phone, the users' mail synchronizes again.

I'm pulling my hair out. Obviously, something is wrong. What do I do?

You only mention one Exchange server, yet there are two URLs. Is there also a front-end server that the clients have to go through from the Internet? If so, then the certificate must be applied to the front-end server, not the server with mailboxes on it.

A well documented issue with the Pocket PC 2002 operating systems is that, if you are going to establish an HTTPS connection, the device must explicitly trust the Root certificate authority (CA). If you are running a Windows CA, and not using a third-party like VeriSign, then the Pocket PC will not trust your root CA without some additional work. See Sample to add root certificates to Pocket PC 2002.

According to Microsoft, this is not an issue with Pocket PC 2003. I don't think this is your problem though, because you are working internally without any errors.

Do you have comments on this Ask the Expert Q&A? Let us know.

Related information from SearchExchange.com:

Reference Center: Mobile and wireless resources

Reference Center: User authentication tips and resources

Dig Deeper on Outlook management

Secure configuration management tasks with a certificate authority A CA server is a limited shield for the data that configuration management tools collect, but IT admins can use one for many tasks -- like to create custom certificates -- and boost security.

How the use of invalid certificates undermines cybersecurity Symantec and other trusted CAs were found using bad certificates, which can create huge risk for internet users. Expert Michael Cobb explains how these incidents can be prevented.

DV certificates abused, but policing may not be possible Research shows DV certificates can be a prime target for phishing and malware operators, but experts are unsure how certificate authorities should deal with the issue.

HTTP public key pinning: Is the Firefox browser insecure without it? HTTP public key pinning, a security mechanism to prevent fraudulent certificates, was not used by Firefox, and left it open to attack. Expert Michael Cobb explains how HPKP works.

Should enterprises use the Let's Encrypt open certificate authority? Let's Encrypt, a new open certificate authority, is coming soon. Expert Michael Cobb explores the merits of using free and open CAs and whether or not enterprises should explore them.

Microsoft security tools remove risky Dell certificates Microsoft has updated its security tools to remove vulnerable certificates intalled on some Dell computers from the certificate root store, as well as the affected binaries that might reinstall the vulnerable certificate

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Windows Server experts

View all Windows Server questions and answers

Synchronizing Pocket PCs with Exchange 2003 mailboxes

Get help setting up SSL authentication to allow Pocet PC users' email to synchronize with Exchange Server 2003 mailboxes.

Dig Deeper on Outlook management

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Why won't the Exchange 2013 Edge Transport Server install?

How do I configure Outlook Anywhere for specific external use?

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchServerVirtualization

Learn to integrate VMs and containers in your data center

Dockerfile commands for containerizing applications

VMware vSphere monitoring ensures system health, performance

SearchCloudComputing

Review these Azure Service Bus best practices

Instill cloud change management best practices

How much cloud does an IT disaster recovery plan need?

SearchSQLServer

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

SearchEnterpriseDesktop

Cut through confusion of the digital workspace market

Windows 10 issues top list of most read stories for IT pros

How to fix printer problems after a Windows 10 update

SearchVirtualDesktop

VMware vs. Citrix: VDI security showdown

Understand VDI market shifts from traditional VDI to cloud

Compare offerings from 3 major desktop-as-a-service providers

Dig Deeper on Outlook management

Related Q&A from Richard Luckett

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.