Re: ActiveSync 4.0 with Exchange 2003 SP2 (Problems setting up sma

Hello!

I haven't had a chance to try out this on the network via wireless, but I
did reinstall/recreate a new certificate for the server...

Doing this the name is now email.server.com and the issued to on the cert is
email.server.com as well as the common name.

So....OWA/OMA is working better than ever. I don't even get a cert warning
or anything.

But now I'm getting the following error on my device. =)

The Security Certificate on the server is invalid. Contact your Exchange
Server administrator or ISP to install a valid certificate on the server.

Support Code: ox80072F0D

"ahl" wrote:

> In-line
>
> "James Rennard" <JamesRennard@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:F2E083D7-186C-4D10-82FC-1B664C6A5835@xxxxxxxxxxxxxxxx
> > Hello!
> >
> > Okay...so I have the following in the parameters directory: (Also, SSL is
> > not selected)
> >
> > I have an SMTPProxy = email.domain.com (which is the location of our
> > OMA/OWA/Sync server)
>
> I belive that this entry is not required after you have applied Exchange
> SP2.
> I no longer have it an active sync is working OK
>
> > Then I have ExchangeVdir = /exchange-oma
> >
> > Also, I switched some things around and exported the certificate from IIS
> > and installed it on my device.
> >
> > Now I get the following message...
> >
> > Result:
> > You have an incorrect SSL certificate common name in the Host Name field.
> > For example, you may have entered www.tailspintoys.com when the common
> > name
> > on the certificate is actually www.wingtiptoys.com. Make sure the server
> > name is entered correctly.
> >
> > Support Code: 0x80072F06
> >
> > I'd like to mention that when I view the certificate in IIS it shows the
> > "friendly name" field and "description" field. However, when I export the
> > certificate, regardless of how I try to export it for use, those two
> > fields
> > do not come through on the certificate.
> >
> > The "friendly name" field on the certificate is email.domain.com just like
> > I
> > am using as the servername field on my device when I set it up to sync.
>
> Are you able to
> 1. temporarily open port 80 inbound on your firewall for testing?
>
> Or even better
>
> 2. can you connect your device to the network via an internal wifi AP?
>
> If yes, change your device activesync client setting to;
> 1.use FQDN and NOT require SSL
> or
> 2.Use the internal server name and not require SSL if you can connect to
> internal WiFi.
>
> Give that a try to confirm if server-active-sync is working and then we can
> move on to the certificate problem.
>
> At that point I can only advise what I did to correct my problem(s) as I'm
> not an IT expert by any definition.... :)
>
> Regards,
> Steven B.
>
> > "ahl" wrote:
> >
> >> James,
> >>
> >> Check the permissions on the NEW virtual directory that you created.
> >> i.e "exchange-oma"
> >>
> >> Make sure that "require SSL" is NOT selected.
> >> Auth type should be basic plus integrated.
> >>
> >> Check
> >> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MasSync\Parameters
> >> confirm that it is pointing to the new virtual directory
> >>
> >> Regards,
> >> Steven B
> >>
> >>
> >>
> >> "James Rennard" <JamesRennard@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> >> news:A4251DA6-6AD5-4947-9F47-496317D92564@xxxxxxxxxxxxxxxx
> >> >> That's what you should get.
> >> >>
> >> >> Try
> >> >> http://servername/exchange-oma/user/NON_IPM_SUBTREE/microsoft-server-activesync
> >> >> as a web folder on an internal PC. See if the sync files are there
> >> >>
> >> >> Substitute "exchange-oma" for what ever you named the new virtual
> >> >> directory
> >> >>
> >> >
> >> > Okay...if I browse the above using HTTP:// I get an unauthorized type
> >> > error.
> >> > If I use https:// I get a Certificate page and then get a dialog...
> >> >
> >> > "Choose a digital certificate"
> >> > The website you want to view requests identification. Please choose a
> >> > certificate.
> >> >
> >> > I'm going to check and see if disabling Forms Auth will correct
> >> > anything.
> >> > Also, how do I go about installing a certificate on the device?
> >> >
> >> > Thanks.
> >>
> >>
> >>
>
>
>
.

Relevant Pages

  • RE: SSL for Exchange stops WSUS
    ... detect your current network configuration settings or you never run CEICW ... configuring ISA Server 2000 as a gateway server, firewall, and web caching ... This newsgroup only focuses on SBS technical issues. ... How you added a certificate to the default web site? ...
    (microsoft.public.windows.server.sbs)
  • Re: Huge problem; new to this job
    ... our entire network went down. ... We have 2 offices and 1 server. ... over IPSec require the installation of a machine certificate, ... connection to provide connectivity between the two offices (across the ...
    (microsoft.public.windows.server.networking)
  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)
  • Re: OWA 2003 w/ Smart Card Authentication.
    ... Exchange 2003 server via ActivSync. ... the IIS certificate. ... Whether or not authentication will succeed is completely dictated by ... Server's SSL certificate must be configured on root of v-server via ...
    (microsoft.public.exchange.connectivity)
  • RE: Two domains question
    ... internal network resources in your home network. ... On the SBS 2003 Server open the Server Management console. ... Click the "Connect to the Internet" link. ... On the "Web Server Certificate" page, choose to create a new Web server ...
    (microsoft.public.windows.server.sbs)