Re: Configuring Exchange ActiveSync to Use RSA SecurID
From: Vin McLellan (vin_at_theworld.com)
Date: 11/27/04
- Previous message: Lanwench [MVP - Exchange]: "Re: New messages doesn't appear in Outlook"
- In reply to: Alistair Keay: "Configuring Exchange ActiveSync to Use RSA SecurID"
- Next in thread: Alistair Keay: "Re: Configuring Exchange ActiveSync to Use RSA SecurID"
- Reply: Alistair Keay: "Re: Configuring Exchange ActiveSync to Use RSA SecurID"
- Messages sorted by: [ date ] [ thread ]
Date: 26 Nov 2004 16:14:42 -0800
Alistair Keay <AlistairKeay@discussions.microsoft.com> queried the
newsgroup:
> I am trying to follow the articles given in
>
> "Exchange Server 2003 Client Access Guide"
> "Chapter 8 - Configuring Exchange Server 2003 for Client Access"
>
> A client wishes to use securid authentication for OWA, Active sync & OMA.
> I tried to follow the articles above however I get "stuck" when Customizing
> the HTTP Response Header for Devices.
Hi Alistair,
As you probably realize, the ActiveSynch client on a Windows Mobile
device must be able to distinguish between RSA SecurID authentication
and Exchange ActiveSynch responses. To enable this capability, you
have to configure custom HTTP response headers on the WebID virtual
root that contains the HTML forms configured by the RSA ACE/Agent.
Check out the instructions for customizing the HTTP response
headers in RSA's PDF implementation guide for Exchange Server
ActiveSynch at: <http://tinyurl.com/6z6og>.
You further explained:
> [...] article states
> Click the HTTP Headers tab, click the Add button, and then enter the
> following header information
>
> Custom Header Name: MS-ASProtocolCommands
>
> Custom Header Value:
>Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,
>CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,
>FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse
>
> The crunch is that the value given above is too long to enter and when I cut
> and paste it is truncated. (Can't manually enter further characters)
<snip> <snip>
In addition to inserting the appropriate property into the (RSA)
WebID virtual directory on the Exchange Server, there seem to be two
identical forms ("Add/Edit Custom HTPP Header") that the admin has to
fill in (sequentially?) to complete the setup.
For the first, the customer header name should be
"MSAS-TwoFactorAuth" and the required header value is "True."
For the second, the customer header name is
"MS-ASProtocolCommands," and the appropriate custom header value is
just what you offered. Case senstive, it is to be entered in one
line.
See the RSA implementation guide for details.
Hope this helps.
Surete,
_Vin
- Previous message: Lanwench [MVP - Exchange]: "Re: New messages doesn't appear in Outlook"
- In reply to: Alistair Keay: "Configuring Exchange ActiveSync to Use RSA SecurID"
- Next in thread: Alistair Keay: "Re: Configuring Exchange ActiveSync to Use RSA SecurID"
- Reply: Alistair Keay: "Re: Configuring Exchange ActiveSync to Use RSA SecurID"
- Messages sorted by: [ date ] [ thread ]
