最佳解答者
configure direct push on a single exchange 2003 server for iphone with SSL

問題
-
Hi
All exchange activesync function has enabled at the exchange server according to your Technet doc. The error still occured when verify the SSL cert at iphone.
is below the only way to create the extra virtual dir for SSL for the Single exchange server (both frond-end / back-end in a one server) or do you have any idea. Thanks.
http://support.microsoft.com/default.aspx?scid=kb;en-us;817379
thanks
解答
-
Hi Tony,
When you try to access a Microsoft Exchange Server 2003 computer by using Microsoft Office Outlook Mobile Access or Exchange ActiveSync, you may experience connection or synchronization problems. These issues can occur if either of the following conditions is true:
· The Exchange virtual directory on an Exchange back-end server is configured to require SSL.
· Forms-based authentication is enabled.
From the words above, we know that if you didn’t meet either of the conditions above, you don’t need to create second Exchange virtual directory.
In general, if you using ActiveSync or OMA without using SSL, and you don’t enable Forms-based authentication, you don’t need to create the extra virtual directory for IPhone connection.
Rock Wang
Rock Wang– MSFT- 已標示為解答 Rock Wang– MSFTModerator 2009年5月11日 上午 07:05
所有回覆
-
-
Hi Tony,
When you try to access a Microsoft Exchange Server 2003 computer by using Microsoft Office Outlook Mobile Access or Exchange ActiveSync, you may experience connection or synchronization problems. These issues can occur if either of the following conditions is true:
· The Exchange virtual directory on an Exchange back-end server is configured to require SSL.
· Forms-based authentication is enabled.
From the words above, we know that if you didn’t meet either of the conditions above, you don’t need to create second Exchange virtual directory.
In general, if you using ActiveSync or OMA without using SSL, and you don’t enable Forms-based authentication, you don’t need to create the extra virtual directory for IPhone connection.
Rock Wang
Rock Wang– MSFT- 已標示為解答 Rock Wang– MSFTModerator 2009年5月11日 上午 07:05
-
Hi Tony,
Let me explain more clearly, if you only enable the SSL service at "OWA" , In fact that the Exchange virtual directory on an Exchange back-end server is configured to require SSL.
It meets the following condition 1:
1. The Exchange virtual directory on an Exchange back-end server is configured to require SSL.
2. Forms-based authentication is enabled.
If you do that, you need a front end server or need to create a secondary Exchange virtual directory.
Rock Wang
Rock Wang– MSFT -
Hi Tony,
You can disable/enable SSL on by each virtual directory. However, if you meet the following conditions, you still need a front end Exchange server or create a new Exchange virtual directory.
1. The Exchange virtual directory on an Exchange back-end server is configured to require SSL.
2. Forms-based authentication is enabled.
For 1 condition, it means you enable SSL on Exchange virtual directory.
You can disable SSL on Exchange virtual directory, so that you don’t need to follow the instruction in KB 817379.
Rock Wang
Rock Wang– MSFT -
Hi Rock
Thanks. Same questions , do you means i can't disable/enable ssl on each virtual directory on a combined server (the condition 1), except i setup a front end or virtual directory for oma. My point is ssl must enable on OWA and ssl could on/off on OMA(for iphone). Thanks again
regards
Tony -
Hi Tony,
Your point is SSL must enable on OWA and SSL could on/off on OMA(for iphone).
If you enable SSL on OWA(Exchange virtual directory), since you only have one Exchange server, you will following the steps mentioned in the following KB.
http://support.microsoft.com/default.aspx?scid=kb;en-us;817379
Only when you complete the steps mentioned in the KB 817379 above, your ActiveSync and Outlook Mobile Access can work.
Of course, you can disable or enable SSL on ActiveSync virtual directory.
Rock Wang
Rock Wang– MSFT -
Hi Tony,
Let me explain again. If you meet the following conditions, you should perform the steps mentioned the KB 817379.
1. The Exchange virtual directory on an Exchange back-end server is configured to require SSL.
2. Forms-based authentication is enabled.
Since you don’t care OMA, however you care OWA and OWA for SSL is still on, that is the point. It meet the first condition, you should follow KB817379. Only when you perform these steps, you can disable or enable SSL on ActiveSync or OMA virtual directory.
Rock Wang
Rock Wang– MSFT