Announcement

Collapse
No announcement yet.

Exchange 2003 on iPhone using SSL

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Exchange 2003 on iPhone using SSL

    Hi all,

    I've come across a strange thing that I'm not sure is caused by my configuration or the systems and devices in use.

    My client holds MOD data on their site, so everything is secuirty mad, so obviously they need their remote email, which they get online via OWA or on their iPhone, to be using SSL. This is working fine for OWA, but I'm not so sure about the iPhone.

    I say this because when I change port 80 in IIS to some other random number, the iPhones are unable to make a connection.

    They're set to use SSL, and there's a cert in place which is working fine, but for some reason it needs to have port 80 active.

    Is this just some sort of initial handshake between the iPhone and Exchange that takes place over port 80, or a sign that the configuration we've got isn't actually using SSL.

    In a related question, is the configuration of Exchange 2010 for iPhone SSL easier/straight forward?

    Thanks,

    James

  • #2
    Re: Exchange 2003 on iPhone using SSL

    Changing the port number does not provide you with security. You don't get security by obscurity.

    As far as I am aware there is no requirement for port 80 to be open.
    Or let me put it another way, I never open port 80 on any of the deployments that I use, and ActiveSync devices work correctly - which includes the iPhone.

    ActiveSync is ActiveSync, doesn't change depending on the version. SSL certificates in general are a little more complex with Exchange 2007/2010, but that is not directly related to ActiveSync because SSL is core to the operation of the later versions of Exchange.

    I would suggest that you test the environment with a test account and the Microsoft test site https://testexchangeconnectivity.com/

    Simon.
    --
    Simon Butler
    Exchange MVP

    Blog: http://blog.sembee.co.uk/
    More Exchange Content: http://exchange.sembee.info/
    Exchange Resources List: http://exbpa.com/
    In the UK? Hire me: http://www.sembee.co.uk/

    Sembee is a registered trademark, used here with permission.

    Comment


    • #3
      Re: Exchange 2003 on iPhone using SSL

      Thanks for your reply Simon.

      My intention wasn't to be obscure in the ports in use, more to test what would happen if port 80 wasn't there as any unsecure connection is going to use this port by default.

      When I removed port 80, Outlook Anywhere on the iPhone failed, even though it's set to use SSL and port 443 was still in place. In your opinion, does this outcome suggest that the iPhone connection is or isn't taking place over SSL?

      Generally, I think moving to 2010 is the right idea for no other reason than just moving with the times, but this issue is a little more urgent.

      Thanks,

      James

      Comment


      • #4
        Re: Exchange 2003 on iPhone using SSL

        The iPhone doesn't use Outlook Anywhere. Outlook Anywhere is the name for RPC over HTTPS when used with Exchange 2007 or 2010. It is not part of the naming convention for anything in Exchange 2003.
        Not really sure where you got the idea that I was suggesting a move to Exchange 2010, I was simply stating that SSL is part of those versions in a much more critical way.

        Did you create a test account and use the Microsoft test site? That will confirm if ActiveSync is working correctly or not.

        Simon.
        --
        Simon Butler
        Exchange MVP

        Blog: http://blog.sembee.co.uk/
        More Exchange Content: http://exchange.sembee.info/
        Exchange Resources List: http://exbpa.com/
        In the UK? Hire me: http://www.sembee.co.uk/

        Sembee is a registered trademark, used here with permission.

        Comment

        Working...
        X