Re: Configuring Exchange ActiveSync to Use RSA SecurID

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Alistair Keay (AlistairKeay_at_discussions.microsoft.com)
Date: 11/27/04

  • Next message: boblin: "Re: Two messages per one email in Inbox" 
    Date: Sat, 27 Nov 2004 15:37:01 -0800

    Thanks for replying Vin.
    The problem I seem to be having is that HTTP response header is only
    accepting a string of upto 100 characters. The required string as given in
    the document is 205 characters.
     

    "Vin McLellan" wrote:

    > Alistair Keay <AlistairKeay@discussions.microsoft.com> queried the
    > newsgroup:
    >
    > > I am trying to follow the articles given in
    > >
    > > "Exchange Server 2003 Client Access Guide"
    > > "Chapter 8 - Configuring Exchange Server 2003 for Client Access"
    > >
    > > A client wishes to use securid authentication for OWA, Active sync & OMA.
    > > I tried to follow the articles above however I get "stuck" when Customizing
    > > the HTTP Response Header for Devices.
    >
    > Hi Alistair,
    >
    > As you probably realize, the ActiveSynch client on a Windows Mobile
    > device must be able to distinguish between RSA SecurID authentication
    > and Exchange ActiveSynch responses. To enable this capability, you
    > have to configure custom HTTP response headers on the WebID virtual
    > root that contains the HTML forms configured by the RSA ACE/Agent.
    >
    > Check out the instructions for customizing the HTTP response
    > headers in RSA's PDF implementation guide for Exchange Server
    > ActiveSynch at: <http://tinyurl.com/6z6og>.
    >
    > You further explained:
    >
    > > [...] article states
    > > Click the HTTP Headers tab, click the Add button, and then enter the
    > > following header information
    > >
    > > Custom Header Name: MS-ASProtocolCommands
    > >
    > > Custom Header Value:
    > >Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,
    > >CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,
    > >FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse
    > >
    > > The crunch is that the value given above is too long to enter and when I cut
    > > and paste it is truncated. (Can't manually enter further characters)
    >
    > <snip> <snip>
    >
    > In addition to inserting the appropriate property into the (RSA)
    > WebID virtual directory on the Exchange Server, there seem to be two
    > identical forms ("Add/Edit Custom HTPP Header") that the admin has to
    > fill in (sequentially?) to complete the setup.
    >
    > For the first, the customer header name should be
    > "MSAS-TwoFactorAuth" and the required header value is "True."
    >
    > For the second, the customer header name is
    > "MS-ASProtocolCommands," and the appropriate custom header value is
    > just what you offered. Case senstive, it is to be entered in one
    > line.
    >
    > See the RSA implementation guide for details.
    >
    > Hope this helps.
    >
    > Surete,
    >
    > _Vin
    >

  • Next message: boblin: "Re: Two messages per one email in Inbox"
    • Quantcast