Really need some help here. Here's the scenario
I have 1 exchange 2003 SP2 server. No Frontend Server just 1 node. Currently i have SSL enabled and i can use OWA and OMA but not Activesync. I simply get a password prompt again and again.
If i untick require SSL and use port 80 my JasJar syncs over Activesync direct to the server over GPRS no worries, but cant do this as company policy requires SSL.
Questions
1. Has anyone got Activesync working on their Mobile 5 device with a single server setup (no frontend and Backend) with SSL enabled.
2. I dont really need OWA or OMA just activesync over web is their a way i can use SSL for Activesync if i am not worried about the others?
3. If i really need a frontend server is this a pain to do and do all my users internally still access the old (backend) or do they need to repoint to the frontend? In addition in this case would the frontend server also become the server with the internal to internet exchange smtp connector?
Really stuck. If anyone can help i would be very greatful.
Thanks
Yes, I have exchange 2003 sp2 single server working over ssl. Did you have activesync working on your exchange server running sp1 using AUTD?
Is the name on your ssl certificate the same name as the server name you input into active sync on your device? It must match exactly.
Is your certificate publicly recognized by a authorized certificate reseller or did you export and enroll cert into your pda?
Does outlook activesync work over http connection setup on a desktop or laptop using ssl sync?
Can you use activesync using http connection on an outside network to connect to exchange with outlook?
I would guess it has something to do with the certificate name vs the name of the server on your pda...Just a guess tho.
Didnt have running prior to SP2.
Certificates matches exactly and public signed /recognised.
Activesync over a desktop does not work over ssl.
I can use Activesync over http from the internet as well as oma and exchange OWA on standard port 80 http just not ssl.
I have followed the microsoft instructions to create another ExchDAV without SSL for single node scenario which is why oma started working.
I am running EXSP2 single server configuration with SSL enabled. I am using the CACERT free Certificate. You need to import the ROOT of your CA into the PDA.
Take a look at www.msexchange.org there you have to search for the apropriate article.
Cert
Ok, when you used the freecert and imported to root how did you get your JasJar to ignore the fact that the certifcate is not from a trusted authority other than importing onto the device?
I did hear something about a Secure=0 entry in the registry?
If you can save the root authority and server certificates to your PC as CRT files I think, then you can transfer these over to the jasjar and then just tap on them to import them
Thats what I did
Check this:
http://support.microsoft.com/default.aspx?kbid=817379
Check if you can access OWA or OMA over SSL without Ceritifacte error.
If you get error you shoud copy the CA certificate (CRT file) to Universal, rename it to CER and import it.
Good luck!
And one more thing, if youre using Method 2 in KB817379, you should allow access to all your network interfaces in Exchange-OMA Virtual Directory.
I work for a fairly large company and they have not received and lodged the certificate with the new server. When trying to connect I get the following....apparently other phones (iphone, nokias allow you to over-ride and hook up anyway)
"Result:
The security certificate on the server is not valid. Contact your Exchange Server administrator or ISP to install a valid certificate on the server.
Support code : 0x80072FOD "
Any help would be gratefully received.
Thanks again
2 options...
1. Turn OFF SSL when connecting to their exchange server. There is an option in TP2 to do that when you are configuring/editing username/password.
2. try https://yourexchangeserveraddress.com on a desktop browser
if it connects, then download the certificate on your pc and transfer it to your TP2, go to file explorer, click on it and it will install fine. It should connect fine afterwards with SSL on.
Powersquad
Thanks and have tried both options (turn off ssl and downloading) but to no avail....
Any ideas?
Thanks again for the input
Hi all new here and got question regarding my new TP2, Im trying to setup my TP2 to sync with exchange but can not get it to work. I already inputted the username, password, domain, and also the OWA access information. My work's OWA address goes like this www.myjobaddress.com/extension , But after trying to sync it and when I check again it would just show www.myjobaddress.com without the "extension."
Is there a step-by-step guide somewhere? Is there anything else I need to do?
Thanks all in advance
yeah your server name in activesync shouldnt have the "extension". An Exchange server is an exchange server - with a FQDN: owa is a website residing at an addresss - sometimes with path after server name, not always, depends on the admin and the complexity of the setup.
i know that my owa address is waay diff than my activesync, etc server name.
Your admin or 3rd party provider should be able to give you a little config util that will setup your device properly, usually downloadable from a formatted txt msg. Or if you have access to your personal exchange control panel you should be able to get it from there - at the very least the correct info.
Hope this helps a little...
From what I've seen the OWA setup follows the standard as such webmail.company.com
It's been the same format in all the jobs I've had that had OWA access.
The other thing you can do is use Google Chrome, enter your OWA address then once it connects, on the new page that opens you can see the URL. It'll start with the format above.
The other thing you'll need is the domain name. And at times, that domain isn't the same as the company name. So you need to ask your Exchange admin.
All of this of course assumes your company is on Exchange 5.5 or 2007. If not you're not going to be able to get push email.
Thanks for the replies guys....I was able to get it to work. What I did was explicitly input this address "http://www.comanyname.com/exchange"
then just re-entered my username, password and domain. I had username in this format earlier "domain\username", I just removed the "domain" and entered just the username and it started syncing.
Thanks again guys
is there any issues with conecting to imap email servers. been trying to connect to my works email and cant get past the initial incomming server screen.
the settings im inputting are took straight from my G1 that is still working with the email.
any help would be good
i'm having issues with the HTC mail and IMAP as well. Can't get my gmail to download, previously used it on iPhone were IMAP worked fine.
I know someone with this issue and when I tried it I have it too
Filled in the right info, pressed next it says "Verifying Data" but does nothing, doesn't go to the next screen.
I have the same issue on my Desire. Had this problem as well on my Hero with latest leaked 2.1 roms. My server SMTP uses TLS with a self-signed certificate for encryption. Maybe this is the reason the setup fails. In prior version a pop-up used to came up that's warns about the certificate. Now I am being K9 Mail which is IMHO better then HTCs Mail app.
so it looks like its a inherent then. cheers for the replys at least i know it not just mine.
il have a look at K9
k9 setup worked first time, so fingures crossed it looks good
I have the same issue with IMAP+TLS with a self signed cert.
Adb Logging indicates the certificate not being trusted is the problem. Anyone knows how to fix this? Can I eg add the certificate to a certificatestore or setting?
Sent from my HTC Desire using the XDA mobile application powered by Tapatalk
I have a self-signed SSL-certificate, and is also stuck on the login-screen.
Sent from my HTC Desire using the XDA mobile application powered by Tapatalk
Give it a try
--- To avoid misunderstand I remove the proposed solution as this finally did not work, sorry ---
Please use Axel's solution, works on desire perfectly!!!
http://forum.xda-developers.com/showpost.php?p=6269969&postcount=14
(Turn off your IMAP server or block connection for the time of creating the mail account on device)
Something I am doing wrong because everything went well with the import however the mail app does not seem to use it
In order for the above described method to work I imagine the certificate that you import has to be the certificate of your IMAP mail server ?
In my case this certificate is a company certificate in .p7b format, so this approach will not work ?
I have the same problem. With IMAP +TLS on port 587 it looks like works, however not go ahead of the next page and I got the following errors on my mail server.
On port 465 I got the " SSL_accept error from ..." message.
I tried to install the p12 certificate, which was went well, however I'm not sure it is used by the mail app.
Apr 21 21:36:16 XXXX postfix/smtpd[11283]: connect from HOST_NAME[YYY,YYY,YYY,YYY]
Apr 21 21:36:16 XXXX postfix/smtpd[11283]: setting up TLS connection from HOST_NAME[YYY,YYY,YYY,YYY]
Apr 21 21:36:17 XXXX postfix/smtpd[11283]: TLS connection established from HOST_NAME[YYY,YYY,YYY,YYY]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
Apr 21 21:36:18 XXXX postfix/smtpd[11283]: lost connection after STARTTLS from HOST_NAME[YYY,YYY,YYY,YYY]
Apr 21 21:36:18 XXXX postfix/smtpd[11283]: disconnect from HOST_NAME[YYY,YYY,YYY,YYY]
Have same problem here, IMAP with SSL not working .. and Internet browser with personal certificate not working ..
imap ssl with untrusted certificates (workaround)
The solution from moire76 did not work out for me. It says that the certificates were imported and I can see them in the wireless setup, but the HTC email application does not seem to accept my imported certificate as a root.
Anyways, I found a workaround:
1. Shut down your imap server.
2. Edit your account settings. (If the imap server is not responding, you get an option to continue and finish the setup!)
3. Start the imap server again.
Now the email application tells you that the certificate is not from a trusted authority and offers an option to "continue"!
Notes for step (1): If you do not control the imap server, you might get the same results if you setup a firewall rule in your network which filters all packets to the server.
I hope this helps,
- Axel
teteckoo said:
Have same problem here, IMAP with SSL not working .. and Internet browser with personal certificate not working ..
Click to expand...
Click to collapse
Having same problem with IMAP for work.
Installed and tried KMail but it wouldnt let me get passed the second screen for entering a "imap path prefix"
had no idea what to enter tried different things but still wouldnt let me press next...any ideas?
SOLVED by simple Android email client. It works perfectly with SSL+IMAP
forum.xda-developers.com/showthread.php?t=668043
Axel, congratulations, this is THE solution. Thanks so much!
Worked perfectly!
Creating valid certificate finally did not help on Desire's mail setup problem.
BR,
Moire
axel42 said:
The solution from moire76 did not work out for me. It says that the certificates were imported and I can see them in the wireless setup, but the HTC email application does not seem to accept my imported certificate as a root.
Anyways, I found a workaround:
1. Shut down your imap server.
2. Edit your account settings. (If the imap server is not responding, you get an option to continue and finish the setup!)
3. Start the imap server again.
Now the email application tells you that the certificate is not from a trusted authority and offers an option to "continue"!
Notes for step (1): If you do not control the imap server, you might get the same results if you setup a firewall rule in your network which filters all packets to the server.
I hope this helps,
- Axel
Click to expand...
Click to collapse
Great Axel. Thanks a lot, this works for me !!
axel42 said:
The solution from moire76 did not work out for me. It says that the certificates were imported and I can see them in the wireless setup, but the HTC email application does not seem to accept my imported certificate as a root.
Anyways, I found a workaround:
1. Shut down your imap server.
2. Edit your account settings. (If the imap server is not responding, you get an option to continue and finish the setup!)
3. Start the imap server again.
Now the email application tells you that the certificate is not from a trusted authority and offers an option to "continue"!
Notes for step (1): If you do not control the imap server, you might get the same results if you setup a firewall rule in your network which filters all packets to the server.
I hope this helps,
- Axel
Click to expand...
Click to collapse
Got an Omnia 7 today, but I cannot setup my exchange account as I need to import the certificate for my server (small business server 2008).
Previously, I have done this by connecting my phone to a PC using Mobile Device Centre and running the Install Certificate program on the server - quite painless.
However the Omnia doesn't connect to Windows Mobile Device Centre, therefore I cannot connect to run the cert installation - and therefore cannot access my email.
Anyone know how I would go about getting the certificate onto the handset?
Do you have another mail account other than the exchange account already set up on the device?
If so, I think the solution is to mail the certificate and add it that way. See this link too as someone was having issues with the cert and synchronisation. http://social.answers.microsoft.com...7/thread/bf9240a9-a388-4cb7-bf6d-8966ddae7707
I have yet to go down this route. My hardware at home is having issues with SBS so I'm going down a hosted option route till I can sort it