vB Easy Archive - The Quintessential Guide to Exchange and Windows Mobile Connectivity

Pages: 1 2 3

The Quintessential Guide to Exchange and Windows Mobile Connectivity
(Click here to view the original thread with full colors/images)

Posted by: whtrbt7

AS4.1 is still pretty flakey if you use a firewall. The main issue with it is the USB drivers which seem to network the WM5.x device to your PC. I wouldn't rely on AS4.1 to synchronize with an Exchange server. AES is best when used with an independent internet connection. I'm sorry to say but AS4.1 is still not very good when used with a firewall.

Posted by: defii

As I promised earlier, I installed A.S. 4.1. and did a sync with the QTEK 9000. No problems at all. It connected to the server and updated quite well via WiFi. So the issue with asking for the password each time may have something to do with a firewall or something else on the server end. It is apparently not specific to A.S. 4.1.

Posted by: FL Dude

Quote:

Originally Posted by defii

As I promised earlier, I installed A.S. 4.1. and did a sync with the QTEK 9000. No problems at all. It connected to the server and updated quite well via WiFi. So the issue with asking for the password each time may have something to do with a firewall or something else on the server end. It is apparently not specific to A.S. 4.1.

Okay, I am still confused, i have gone through this entire thread and see a lot of steps listed but no "one" place where anyone has listed the steps needed to connect to an outlook exchange server that does require vpn in order to connect.

Is this possible? I currently use t-mobiles "my email" to download my email but am really looking to be able to connect directly. ANY help / direction will be greatly appreciated.

Posted by: whtrbt7

The reason why there aren't step by step directions is because there is no standard for Exchange server setups. I would love to set standards but setting standards normally requires more cash outlay than some companies are willing to shell out. The other reason why I don't like to place directions is because they are already all over the place. The basic setup for Exchange synchronization has been posted in this thread already as well as in the WIKI (I think). There are also a few diagrams in every instruction manual with these directions. To do even more step by steps would be redundant in my opinion. I would rather have more meaningful troubleshoots and special abilities discussions on this thread which would bring more value to the forum.

@FL Dude
If you have an Exchange server behind a VPN portal then you can definitely access it using standard settings and a VPN through T-mobile. Just make sure that you install the correct certs and have the correct settings for the VPN portal. VPN and AES are 2 separate entities and should be treated as such. First you do the VPN since it is connection and then you do AES configs which I think is pretty standard. If something goes wrong along the way, you just check the logs and troubleshoot from there.

Posted by: EvanZ06

Has anyone gotten the "Global Contact Access" download from MS to work?
http://www.microsoft.com/windowsmob...al/default.mspx
It installs fine, but every time I try to use it I get "Unable to connect to email server." I can connect to the server just fine for activesync, and have tried everything MS suggests on the website (in network, soft reset phone, etc) but with no success.

Posted by: whtrbt7

@EvanZ06
Are you using ISA server, SSL, or even VPN? Also are you outsourced for Exchange or are you using your own server? The main issues lie in server access. Sometimes, if you aren't running ISA server, you won't be able to get in. The ports are the same as AES so if AES works, the GAL access should work.

Posted by: EvanZ06

We've opened ports on our Pix for the phone users to hit with VPN against an Windows 2003 RAS server. All our Exchange servers are internal. We setup up a network exception on the phones to launch the vpn for anything for our internal network, and it works fine for everything. When trying to run the GAL access tools it will successfully launch a VPN session, but then it gives the error message for trying to connect to the GAL.

Posted by: whtrbt7

Hmmmmm, this is probably why MS doesn't offer official support for it. By all means, it should work. I've never used VPN for Exchange though since I use a custom cluster. It's much easier and pretty secure if you use ISA server and route through there.

Posted by: EvanZ06

We don't use ISA, access to the Internet is controlled through our PIX firewalls. It really looks like MS is trying to make it so you have to use ISA for full mobil device access (the WM5 VPN system only works with MS servers, and now the GCA appears to only work through ISA).

Posted by: whtrbt7

That is Microsoft for you. Basically, it seems that most of their products only work well if you combine it with their other products. Just wait until the next exchange servers are out. They require MS SQL server....

Posted by: jameskk

ok, for you Exchange Wizards out there.. I need HELP! I've got a 2003SBS with 10 mobile devices.. everything has worked fine for about a year now. Last night I installed SP2 for Exchange and now my PPC6700 WM5 device won't do a server activesync. All of my other co-workers are using PPC2003 devices and their's still works fine. Another worker has a 2003 Smartphone and it also is working fine. I currently have SSL disabled and the error I get on my device is that my exchange account does not have permission to sync. I can insert the settings (username/password) for another user who's device is working properly and it gets the same message. I have tried disabling and enabling my mobile settings in my Exchange account. I have checked all security settings in IIS. I have also wiped my WM5 device clean and setup activesync from scratch. So far no dice. I plan to call Microsoft support tomorrow if I cannot get it working by then. Any help appreciated.

Posted by: jameskk

got it fixed!

after discovering that activesync worked over wifi but not 1x, I found this article.. turns out, there's a bug in sp2 that affects wm5 devices. here's a link to the article that fixed my problem.

http://groups.google.com/group/micr...A&rnum=1&hl=en&

Posted by: tgq8

I have Exchange 2003 with sp2 and the windows mobile 5 device. Could some one tell is there anything I require to push the mail to the mobile device?

Posted by: qmacker

Hi tgq8:

For the Push Email to work, you additionally need to have the "Messaging & Security Feature Pack" for Windows Mobile 5.0 installed on the Windows Mobile 5.0 device itself.

Unfortunately, the Messaging & Security Feature Pack must be installed by the OEM manufacturer of the device, or supplied later as an upgrade.

This is extremely annoying, as Exchange 2003 SP2 has been out for a while now, well, not that long....about a month or two...long enough though. Windows Mobile 5.0 has been out since March though! They should have had this bundled with ALL WM5.0 devices when they were released, considering how much "push" email is being touted.

This is actually the only thing holding me back from going out and buying an i-mate K-JAM right now. I know that the K-JAM currently does NOT come with the Messaging & Security Feature Pack installed. What is even more annoying, is that there is no way of finding out from i-mate themselves, when, or if, they will include it on the K-JAM. I'm presuming they will, however I wouldn't bet on it, as I know what mobile device manufacturers are like. Once they've sold something to you, they don't care about you anymore. I'm sure someone's going to yell at me here, and say that i-mate told them that it will be included.

On that vein - FYI: I went to the RETARDED i-mate site to see for myself. They will not even allow you to read the documentation for the K-JAM (or any of their products) - not even the FAQ - unless you register for their STUPID site. So I registered....the usual long pain-in-the-*** form wanting to know everything about yourself and your mother's uncle..."Do you wear thermal underwear in the winter? Y/N?" etc. I filled out the invasion-of-privacy form and registered as a Guest, which they said would allow me access to the site. I then went back to read the documentation, faqs, and see the Support Area, which I was supposedly now allowed into. I was greeted wiuth the following:

"Your membership level does not allow you to view this page."

"To become a member, you simply need to own an i-mate™ Windows Mobile-powered device! Once you have your device, return to this site and click here to register your i-mate™ device and you will then become a member. "

Really? So these a-holes want me to "simply" shell out eight hundred bucks for their device, go back to their site, and then what? They'll send me an email ten days later saying, "Sorry, we won't be offering the Feature Pack." I think I'll pass on taking that risk. It's a lovely device, but if their stupid-*** "support" is anything to go by, I wouldn't be at all surprised if they didn't offer the Pack at all.

Anyway, I'm sorry I've turned this into a rant against i-mate. I'm sure they're great. It just annoys me that you can't get straight answers from anyone these days.

The anwser to YOUR question is, sadly: You need to contact the manufacturer of your device and ask them how to get the Messaging & Security Feature Pack.

I think I'm going to wait for T-Mobile and/or Cingular to release this product (whenever that is). My hunch is, the reason they're delaying their release dates, is so they can include the Feature Pack on the devices when they launch them.

Good luck!

Posted by: crowdpuller

I am sorry if this has been covered before. Is there a sticky where it gives detailed information on how to setup your Exchange account on pocket pc with wm5. Also, I have RPC over http setup on my outlook as well., I am guessing its same settings.. or so...

1)Also do I need to worry about certificates? Cuz rpc does need certificate..
2) Is there a way to only get the new emails...? I have lot of emails on my exchange server, do not want all of em to be on my device...

Posted by: spartanrob

Quote:

Originally Posted by qmacker

Hi tgq8:

For the Push Email to work, you additionally need to have the "Messaging & Security Feature Pack" for Windows Mobile 5.0 installed on the Windows Mobile 5.0 device itself.

Unfortunately, the Messaging & Security Feature Pack must be installed by the OEM manufacturer of the device, or supplied later as an upgrade.

So what you are saying is that nobody with a KJam can use push email?

Posted by: spartanrob

Interesting, i just found this:

http://blogs.msdn.com/jasonlan/arch.../30/498276.aspx

Looks like we have to wait for AKU 2.0 for push email on WM 5

Posted by: crowdpuller

Ok, I tried configuring my connection and this is the error I am getting "0x80072EE7"...
I used the exchange server address .. that has been configured on my outlook for rpc
can anyone point me to the rt direction?

Posted by: qmacker

spartanrob -

In response to, "So what you are saying is that nobody with a KJam can use push email?"

The short answer right now is; That is correct - Nobody with a K-Jam RIGHT NOW can use the new Exchange Push Email.

From what I can gather (I might be wrong), the AKU 2.0 referenced in your link above to Jason Langridge's site (http://blogs.msdn.com/jasonlan/arch.../30/498276.aspx) is the update to WM 5.0 which will contain the MSFP.

I belive the AKU 2.0 also contains additional updates, including Advanced Audio Distribution Profile (A2DP).

Copied from another site:

AKU 2.0 for Windows Mobile 5.0 (for both, Smartphone and Pocket PC), which is expected to be released early next year, will also includes support for the Bluetooth Advanced Audio Distribution Profile profile which is designed to transfer a stereo audio stream like music from the device to a headset or car radio.

Posted by: qmacker

crowdpuller -

Check out this link. same problem you are having:

Error "0x80072EE7"

http://groups.google.com/group/micr...A&rnum=1&hl=en&

Posted by: crowdpuller

Ok, now I am getting a different error
0x80072F17...

also i have rpc over http configured and for that our admin gave me two certificates and i had to install em on my workstation, that email also suiggested that if i do not install em, i would not be able to connect...

i am just so confused and i really need this thing to work, man imap is so easy to confugure LOL..

Posted by: crowdpuller

Okay, progress, now I am able to kind of connect.. since installed the certificates to the root... however when I try to connect... it keeps on proping up and saying to renter my password.. i am positive everything is fine...

just wanna confirm things tho
username: user@domain.com?
password:
domain: domain.com

Are these the settings we are looking for?

Posted by: tgq8

Hi Qmacker,

Thank you very much for the detailed mail? Now things are more clear for me. OK agreed I won't able to make the puch email till Mobile manufacters include "Messaging & Security Feature Pack". Once they release this is there any additional service\configuration required form the Mobile Service provider?

Thanks
TG.

Posted by: matchtrader

This may be a dumb question, but what specific advantages will the push email solution using the MSFP have over the AUTD solution that I am using right now (besides the other pluses of the MSFP like remote device wipe A2DP, etc.)? I have been having pretty good success with the AUTD process, although it is a bit flaky from time to time. I am hoping that the overall experience with the MSFP push solution is a bit more consistent, but other than that, are there any specific email advantages that push will provide over the current AUTD Activesync?

Posted by: crowdpuller

please help me guys

me without any exchange sync...

Posted by: qmacker

crowdpuller -

Try the Username/Password/Domain combo like this:

Username: username
Password: ******
Domain: NETBIOSDOMAINNAME <== You need to find out what this is

The NetBiosDomainName is another name for your domain. The easiest way to find it out is to ask your network administrator. Another way is - assuming your workstation or laptop at work is part of the domain - is to look at what the domain name is when you log on. Whe you normally log on to Windows, you will se a box for Username, and Password. Click on the Options button, and you will see the Domain. Try using that instead. I can't guarantee that will fix your problem, but it's worth a shot.

You might also want to try entering your username with the NetBiosDomainName immediately followed by a back-slash (not forward-slash). In that case you would enter it as follows:

Username: NETBIOSDOMAINNAME\Username
Password: *******
Domain: NETBIOSDOMAINNAME

Give all that a shot and let me know how you get on.

Also, did you run the rootcert program on the computer you are running ActiveSync on? If your company is using self-signed ("roll your own") certificates, it is very important that you do this.

Also, might seem like a stupid question, but are you putting in the "s" after https to when you are setting up your connection?

And another thing: Can you at least get the Pocket PC to sync while it is cradled? If it won't do it when it's cradled, it's highly unlikely it will do it over the air.

Posted by: qmacker

TG -

Here's an update I got today from the tech folks at i-mate. After I calmed down from my rant the other day, I did a Google search and got a direct email address for them. I started out with, "Respectfully, may I suggest that you may want to look at changing the restrictiveness of your website. Surely, it is beneficial to your company that prospective clients can read documentaion about the products they wish to buy?"

I then went on to ask when or if they will be releasing MSFP for the K-JAM. I can confirm now that they will! In "early 2006" which seems to be the target date for all the hardware providers. Anyway, here's what they said (I guess it pays to hold your temper!)...

"Dear customer,

Thank you for your email of 01/12/2005 regarding the Messaging and Security Feature Pack for Windows Mobile 5.0 devices. I would like to inform you that it will be available as a free ROM upgrade on clubimate.com for registered users. We expect to make the upgrade available in early 2006. Your patience is highly appreciated.

As for your Club i-mate access, your opinion is very important for us and we will take it into consideration.

For any other queries/clarifications, please do not hesitate to contact us."

So that's it! I think I'll run off and buy a K-JAM now. I emailed T-Mobile, that they just said, they "have no information" on when they will be carrying the Vario. "If you want to see our products, please go to www.blahblahblahb...." Anyone have any ideas where I can pick up a K-JAM the cheapest? Actually, on second thoughts, this is probably not the thread for that!

To answer your question about MSFP and how it works. The answer is, yes, that's all you need. Well, actually to recap, you need three things:

1) Exchange Server 2003 Service Pack 2 (SP2 contains the "Direct Push" feature)
2) A Mobile Device with WM5.0 and the MSFP installed.
3) The mobile device needs a persistent always-on internet connection.

Posted by: qmacker

matchtrader -

There's an excellent (long) article here from one of the designers of Exchange's Direct Push feature (also known sometimes as AUTDv2).

http://blogs.technet.com/exchange/a.../07/406035.aspx

The main difference is it doesn't need to send an SMS to the device to "tell" it to update. It maintains a sort of "heartbeat" with the server at all times. This also means you don't get hit with SMS charges if you have a lot of email. Also, the SMS "sort of" AUTD method is, as you say, a little clunky at times. This is much cleaner, and actually very simple. Here's a snippet from that article which explains the basic process:

*The device issues an HTTP request to Exchange, which asks Exchange to report any changes that occur in the mailbox of the requesting user within a specified time limit. The URL of this HTTP request is the same as that of other AirSync commands ("/Microsoft-Server-ActiveSync") with some differing query string parameters. The body of the HTTP request allows the client to specify those folders that Exchange should monitor for changes. Typically, these will be the Inbox, Calendar, Contacts, and Tasks folders.

*Upon receiving this request, Exchange will monitor the specified folders until either the time limit expires or a change (such as the arrival of a piece of email) occurs in one of those folders, whichever comes first. Exchange will then issue a response to this request that notes in which folders the changes occurred. Of course, this will be empty if the time limit elapsed before any changes occurred.

*Upon receiving an empty response, the device simply re-issues the request. This loop of issuing a request for change notifications, receiving an empty response, and re-issuing the request for change notifications is called "the heartbeat."

*Upon receiving a non-empty response, the device issues a synchronization request against each folder in the response. When those complete, it re-issues the request for change notifications.

Posted by: crowdpuller

Quote:

Originally Posted by qmacker

crowdpuller -

Try the Username/Password/Domain combo like this:

Username: username
Password: ******
Domain: NETBIOSDOMAINNAME <== You need to find out what this is

The NetBiosDomainName is another name for your domain. The easiest way to find it out is to ask your network administrator. Another way is - assuming your workstation or laptop at work is part of the domain - is to look at what the domain name is when you log on. Whe you normally log on to Windows, you will se a box for Username, and Password. Click on the Options button, and you will see the Domain. Try using that instead. I can't guarantee that will fix your problem, but it's worth a shot.

You might also want to try entering your username with the NetBiosDomainName immediately followed by a back-slash (not forward-slash). In that case you would enter it as follows:

Username: NETBIOSDOMAINNAME\Username
Password: *******
Domain: NETBIOSDOMAINNAME

Give all that a shot and let me know how you get on.

Also, did you run the rootcert program on the computer you are running ActiveSync on? If your company is using self-signed ("roll your own") certificates, it is very important that you do this.

Also, might seem like a stupid question, but are you putting in the "s" after https to when you are setting up your connection?

And another thing: Can you at least get the Pocket PC to sync while it is cradled? If it won't do it when it's cradled, it's highly unlikely it will do it over the air.

In terms of username. I think the server has couple of domains configured on it. So, I think I have to enter "username@domain.com"....

Now you are saying that domain: does not equal to domain.com but its actually NETBIOSDOMAINNAME? rt?

Also I have installed the certificates and they can be seen in the root section/folder....

Well, when it's cradled it asks me for same username/password again and renter it again and it keeps on asking me again and again... so answer to your original question, NO, i cannot even sync once its on cradle..? ...

Thanks for your help

Posted by: crowdpuller

Ok, i made some changes and my error code is 0x85010014

Posted by: crowdpuller

this is funny now it says that i have ox8503022 - server i am sync with does not have exchange... hmm

Posted by: whtrbt7

Hello everyone, I'm back. Time for some Q&A.

@everyone looking for MSFP
MSFP is just exactly what it sounds like: for messaging and security. It includes the direct server-device security management tool, IP based push, and configs for Activesync. It's not a huge update in terms of size but it is a substantial update since it is needed for push e-mails. The push e-mails are done even if your device are in "screen off" mode which was not possible before. Right now, even though we can still use AUTD and scheduled pull in "screen off" mode, it is still not true push. MSFP does NOT include A2DP, or any bluetooth modification. MSFP DOES however work through WiFi. Push e-mail will be MUCH faster than AUTD right now and it will also be much more reliable. I know that there were many issues with AUTD stability with many carriers. The new push method wouldn't require anything on the carrier side which is an advantage.

@qmacker
Want to try Mad Monkey Boy's site for a K-Jam or QTEK9100 purchase? He does good work and his prices are excellent. Thanks for putting some info on the MSFP. Updates are released every so often for the HTC Wizard, Universal, XDA ATOM, and well virtually every HTC device. I wouldn't be hesitant to purchase a unit just because MSFP is not installed yet. For now, scheduled sync is still the most stable and controllable method of pull/push on a WM5.x device. I get a lot of attachments so a Blackberry just isn't sufficient for what I want to do.

@crowdpuller
It sounds like you are having EXTREME problems with the AES setup

. I don't think I have ever encountered anyone that has run into so much trouble so quickly

. Listen up everyone because this one, someone can paste in the WiKi (since I'm too lazy to

)

AES (Activesync Exchange Service) Setup for WM5.x devices

1. Open Activesync:
a. This can be done by going to Start --> Programs --> Activesync or if you already have it in the start menu, just Start --> Activesync
2. Click on Menu --> Configure server...
3. Enter the FQDN (Fully Qualified Domain Name) of your Exchange server. This will look like: (sub.domain.tld). You can also enter the IP address of your Exchange server which will look like: (123.123.123.123). After you enter the FQDN, press NEXT
4. Enter your Username for exchange (This will NOT look like name@domain.com!!!) It is just the name.
5. Enter the Password for exchange (self explanatory I hope

)
6. Enter the domain name. The domain name is the NETBIOS domain which the server is assigned to. If you have any doubt what that is, consult your network admin or take a look on the server (Start --> Control Panel --> System --> Computer Name --> Look under Workgroup or Domain, it's one of the two)
7. Check the Save password box if you want to save your password for automatic sync.
8. Click NEXT
9. Check any of the items you want to sync. (Calendar and E-mail have separate advanced settings you can set to reduce the load on your WM5.x device)
10. Click FINISH

Notes:
By now, you should be done with AES setup. If you run into problems, it means that either your server isn't configured correctly or you have the wrong settings.

Posted by: whtrbt7

@crowdpuller
Before you post, you should always set the stage for your hardware and software. In this case, for someone to help you, you need the server hardware and software info as well as your mobile device hardware and software info. This will help us to help you. It's possible that if you are trying to sync to a server that does not have DNS configured correctly or you have issues with firewalls, blacklisting, etc... BTW, RPC over HTTP is different than AES. The addresses that you use for each are different since they run on different technologies.

Posted by: crowdpuller

Seems like the server I am on does not have activeSync configured properly. I emailed the administrator and he is like it could be a possibility that its not implemented as no one has requested me that service yet... he said he cannot make changes on fly.. so he just download the emulation images, hopefully it will work...

Posted by: whtrbt7

It's possible that if you have an older Exchange 2000 server, you don't have the ability to do AES. As for Exchange 2003, it just takes a flick of one switch to enable Activesync.

Enabling AES on Exchange 2003:
1. Open Exchange System Manager
2. Under Global Settings\Mobile services, right click on Mobile services and click on properties.
3. Check the appropriate boxes (All of them if you want OMA, AES, and AUTD)

Posted by: tgq8

Qmacker

Greetings from Kuwait.

Thank you very much for your very precised and detailed reply. I got very clear answers for my queries. My organisation is pushing for a push email solution. I promised them by December but looks like it will materlise only by the first quarter of next year as per your mail. I will keep moinotring this thread.

Thanks once agian..

TG

Posted by: crowdpuller

Quote:

Originally Posted by whtrbt7

It's possible that if you have an older Exchange 2000 server, you don't have the ability to do AES. As for Exchange 2003, it just takes a flick of one switch to enable Activesync.

Enabling AES on Exchange 2003:
1. Open Exchange System Manager
2. Under Global Settings\Mobile services, right click on Mobile services and click on properties.
3. Check the appropriate boxes (All of them if you want OMA, AES, and AUTD)

Yes, but my server admin said that he just obtained the images and see if i can implement.. it he said i cannot change it before i test it... so maybe he needs to svae his job kinda thing.. but should be done this weekend... hopefully... damm times like this i really wish i had imap LOL...

We do have OMA, and I use OMA to check emails rt now...

Posted by: Frispark

I have just purchased my new I-mate the other day and was so looking forward to accessing my e-mail and surfing the Internet - so far both without luck...

I have both got a clear signal to my home WLAN and the GPRS is also working but still not able to get online even though I have read and followed the manual.

Please can someone help me - please note that I need to connect to the Internet via a proxyserver.

Thanks, Anders

Posted by: whtrbt7

@Frispark
ummmmm hmmmmm. Something tells me that you haven't configured WLAN or GPRS. Which device do you have and which carrier are you using? Also what does this have to do with Exchange? It's a little tough to give you instructions without knowing what services and devices you have.

Posted by: Frispark

I have a K-jam and are living in Saudi Arabia and connecting through STC.

I can use the Internet through GPRS now put still not able to connect to the Exchange server. I have enterend the following information:

Server: mail.XXXX.dk/exchange
Username: XXX
Password: XXX
Domain: XXX

When I try to connect at work via sync I get a error called 80072f17

Please let me know if more info is needed?

Thanks!

Posted by: whtrbt7

@Frispark
ummm yeah, your settings are wrong. Your server should just be sub.domain.tld. your domain must also be the NETBIOS domain. Make sure you are using an Exchange 2003 server. Also see if your GPRS settings are good.

Posted by: Frispark

Thank you very much for your help!!!

I will get the NETBIOS domain server from our IT dep. I can connect to the Internet via GPRS so it should be working fine.

I still have a problem with my WLAN where I get a clear signal but cannot connect to the Internet - could there be a conflict with GPRS? Where do I state the proxy-server when using WLAN and can I diconnect GPRS?

Posted by: whtrbt7

Normally GPRS will disconnect when you connect to WLAN. Proxy server setup is in Settings --> Connections --> Connections.

Posted by: Urban Strata

I finally got the VPN to my corporate network working on my device (had to switch to T-Mobile's VPN plan), but now I have a pretty basic question:

When I have my device plugged into my desktop to ActiveSync / charge throughout the day, it still tries to log into the VPN to check my e-mail. This gives me an error message for some reason. (I guess I can't use the VPN when I'm ActiveSyncing, since I'm already inside the firewall.)

Is there a way to force my device to not use the VPN when I'm connected via ActiveSync?

Thanks!

Posted by: whtrbt7

@Urban Strata
Unfortunately not. You need to have U-turn capable VPN in order for it to work correctly.

Posted by: Urban Strata

Okay, thanks for the info, whtrbt7.

Posted by: EvanZ06

I use VPN to connect to Exchange, and it does not launch a VPN session when connecting through Activesync (and yes, it does properly sync email when connected to Activesync). This is on a Sprint 6700.

Posted by: whtrbt7

Activesync should by all means bypass the VPN connection unless you are only using pass-through. There are so many ways to configure VPN on the mobile device that it's possible to only use pass-through to try to access the VPN portal. Also I have noticed that Activesync does malfunction from time to time leading the VPN connection to be the main connection. They should really address this in a future version of Windows Mobile and have it configured more like Windows XP.

Posted by: davidkklim

Hi there,

I got the same problem too, Synchronization failed. Try again, and if this condition persists, reset your device. Error Code:0x80004005.
None of the Google serach can help me to solve this problem.

However, I figured out myself.

The solution is:

Removed the configuration setting on your Server Synchronication:
1. empty the server name,
2. > option >empty Logon credentials
3. Reset your pocket PC
4. Re-connect to your laptop ActiveSync, and let it detect it and re-configurate the Server configuration.
lalala.... it worked for me.

Good luck

David

Posted by: Miretanis

Would you pls point me to the "exchange guide" if there is any? I have Jam and would very appreciate any help in setting the exchange to work with it!

Tnks in advance,
Miret

Posted by: whtrbt7

@Miretanis
Check page 16 of this thread. I have the basics of AES posted. This is only on the side of your PPCPE. If you need help on the Exchange server itself, you should ask a question and set the stage for your network so we can better help you.

Posted by: GU1LLERM0

I have a new PPC-6700/Win 5.0 that won't sync to exchange through my computer or wirelessly. It will get as far as "sychronizing folders" and remain there for some time before giving one of several errors, including 0x80072EE2 and 0x85010004.

I checked the cert, it's already installed on the device, and I can access OWA through explorer OK. Username, pword, and domain should all be correct. I worked with our IT guy for a while and he wasn't able to figure it out .

I've tried just about every server name combination I can think of. Through explorer, we access OWA through https://owa.domainname.com. I'm not sure what version of exchange we're running.

Any advice?

Posted by: whtrbt7

@gu1llerm0
Try hard resetting and then setting up a fresh connection through EVDO first. Once this is done, you should be able to synchronize with the server unless there is a network error. Are you using VPN?

Posted by: Miretanis

@whtrbt7
Tnks for the info, I'll see what I get and get back with question if I have any.

Tnks again!
Miret

Posted by: GU1LLERM0

THanks for the tip. I tried entering the IP address instead with all other settings the same. Depending on what items I am synchronizing, it gets to "synchronizing folders" or "looking for changes" and stays there for up to 5 minutes before reporting "waiting for network" and aborting the sync. Has anyone encountered this?

At this point I think it has to be an IT issue rather than a config issue on my device.

Posted by: whtrbt7

Okie, if you are accessing the exchange server you will definitely get to the looking for changes dialog. This means that you are connecting to the exchange server but are not able to synchronize fully. This means 2 things: 1. There is a firewall issue that is affecting LDAP and the AES function or 2. You have a corrupted exchange database. To fix corruption, I posted directions I think in the first few pages of this thread. I would suggest the exportation and importation of the information. If you still have issues, post here please.

Posted by: Miretanis

OK, so have set the internet package with T-mobile and configured my private email through POP3 and every thing works great!
The problems is with the Exchange server, my company doesn't allow connections through POP3 so I set an IMAP4 account and also followed up with the instruction on the previous pages and can't make it to work.
On the ActiveSync application I'm getting Error Code: CONNMGR_36 (Unable to connect, Verify your dial up or proxy settings are correct...)

Here is my ActiveSync configuration:
Sync with this server: xx.xxx.xxx.xxx (given by IT admin)
User name: xxxxx
Passwords: xxxxx
Domain: xxxxx

X This server uses an SSL connection
X Inbox

Here is my IMAP4 configuration:
Email address: xxxxxxxxxxxx
Your name: xxxxxxxxxxx
User name: xxxxxxxxx
Pass: xxxxxxxxxxxxx
Account type: IMAP4
Name: IMAP4
Incoming mail: xx.xxx.xxx.xxx (given by IT admin) – same used in Sync with this server (ActiveSync configuration)
Outgoing Mail: same as Incoming
Domain: same as Domain in the ActiveSync configuration
X require SSL Connection

Pls advise!

Tnks,
Miret

Posted by: Miretanis

forgot to mentioned that the error message I get while trying to connect to the IMAP4 account is:
" Messages can't be downloaded to your mobile device. Make sureyou are connected...."

Posted by: loebenberg

Hi,

Was hoping someone could help me out here..... I have two users who own Orange SPV M2000 handsets. They are identical, bought at the same time, with the same applications on.

1st handset - set up, working no problems with Exchange Server Activesync.

2nd handset - when trying to sync constantly gets the error "Synchronization failed. Try again, and if this condition persists, reset your device" Have tried a hard reset, and compared all the settings between devices (I think).

Both handsets are (obviously) trying to log-on with different usernames (both of which have exactly the same permissions on the server).

I can't imagine that there is an issue on Exchange 2003 itself, as one of the handsets works fine...... so what's going on?

Thanks so much for any thoughts,

ML

Posted by: bgolfn

I hope someone can help me.

I have a JJ and can not find a way to save my contacts to the SIM card. Is that missing from Wm5?

Posted by: whtrbt7

@Miretanis
1. You don't have access to the right ports through the firewall. Unless your exchange server is 2000 with the Mobility pack or is 2003, and your firewall is configured properly, you won't be able to get access to the Exchange server. The best you can hope for is access to IMAP but if your firewall doesn't let you in, you essentially have no way to get to your e-mail.
2. The CONNMGR36 error message is from your internet settings not being correct. Check that you can browse websites to see if you need to change your internet settings.

@loebenberg
First check the internet settings from your carrier on the M2000. If this doesn't fix it, double check the settings on the M2000 handset to make sure it is working correctly. Hard reset the device and configure from scratch.

@bgolfn
wrong thread but I'll answer it. You need to select the contacts you want to move to the SIM card and then hold down the stylus on the selection. You should get an option to move the contacts to SIM card.

Posted by: bgolfn

Quote:

Originally Posted by whtrbt7

@bgolfn
wrong thread but I'll answer it. You need to select the contacts you want to move to the SIM card and then hold down the stylus on the selection. You should get an option to move the contacts to SIM card.

Thanks for the reply whtrbt. I thought you would have the answer...

Posted by: Miretanis

@whtrbt7
Tnks for the answer, I'll keep trying.

Posted by: GU1LLERM0

ok, so I was getting the error: "your account in microsoft exchange server does not have permission to synchronize with your current settings. contact your exchange server administrator."

support code: 0x85010004

I talked it over with IT, and they made some changes to IIS and restarted the server. Now I get:

"Activesync encountered a problem on the server"

support code: 0x85010014

This is all over dialup or wifi. Doesn't work at all over activesync through PC.

Any thoughts?

Thanks.

Posted by: whtrbt7

@Gu1llerm0
hmmmm I think you have forms authentication and certs you need to install before you sync. Ask your IT department for the certs for your Apache and your IT guys should follow this article from MS: http://support.microsoft.com/defaul...kb;en-us;817379 . Make sure you hard reset your Apache before installing the certs.

Posted by: GU1LLERM0

Thanks. I will let you know how it goes.

Posted by: eb597

Please could you help me?

We are running Exchange 2003 sp2 and I have a couple of hp IPAQ 6515's. I can sync the ipaq with my pc but can't sync with our Exchange Server.

If I vpn into our network, I can get OMA working on the Ipaq's. Webmail is also working.
I've disabled certificates on one PDA but not on the other, the error message I get on both IPAQ's when trying to use ActiveSync is HTTP_407.

Any help would be gratefully received.

Emily

Posted by: whtrbt7

Hello Emily,
Welcome to HoFo. You have the wrong proxy server address which is why you are getting the HTTP_407 error. Check your proxy settings from your VPN and enter in the correct proxy on the HP6515. This is a pretty simple fix.

Posted by: eb597

Thanks for your quick reply

Is there somewhere within active sync I should be putting the Proxy server address? Because the vpn works i just assumed that the proxy was correct.

Emily

Posted by: whtrbt7

It's not in activesync. Your VPN connection has a place to put the proxy server address. Just go to Start --> Settings --> Connections (tab) --> Connections --> Under My Work Network --> Set up my proxy server. Enter the proxy settings there and you should be able to access Activesync correctly.

Posted by: eb597

Thanks for your help, my PDA is now working, unfortunately my Colleagues isn't, we now get an HTTP_403 error, which is a permissions thing.

I've compared the two devices and our two AD accounts and can't find any differences.

Anybody got any ideas?

Emily

Posted by: whtrbt7

Hmmmm.... Check for SSL authentication please. It's possible that the certificate needs to be installed manually. I posted a guide to install the certificate in this thread.

Posted by: eb597

I've turned off SSL on both the activeSync and the PDA. Our ISA seems to be barring it for some reason. Can't understand as both machines are set up identically, and its not the user as I've logged in as myself on his PDA and get the same result. The unfortunate thing is that the PDA is for my Boss who is constantly nagging me even though its christmas.

Any ideas?

Posted by: whtrbt7

thinking...........
Since you are running ISA, you should be having less problems. Are you both on the same service? It's possible that the APN for the other unit isn't set correctly or the account isn't set up correctly through the carrier. If all else fails, I would suggest exporting all data out of the existing AD account and then re-importing it again. HTTP_403 is a forbidden access error which means that it is security related. I would also check permissions of the AD account and the ISA server settings.

Posted by: pelzl

okay here is a strange one. I can sync fine via wifi on my office network as long as SSL is not selected. If I try SSL and go in through the front end via GPRS or external company wifi it hangs on syncing folders and then gives and error code. I can get mail fine via oma/browser or imap4. Any ideas?

Posted by: whtrbt7

@pelzl
If you aren't using SSL then, you don't need to have the box checked. It is either you are using SSL, or you aren't using SSL. Simple as that. If you can sync via WiFi inside the office network without SSL, then SSL settings are not required to synchronize if you are on GPRS.

Posted by: pelzl

whtrbt7

Thanks for the quick reply. My IT guys say that as long as I am on the internal wifi network SSL won't work. Anything external requires it. In order to sync imap4 via GPRS I have to load SSL settings for instance. What is really strange is my IT manager has the exact same settings on his IPAQ with WM5 and it works perfectly on any external wifi network with SSL of course. We are baffled at this point.

Posted by: PDAPHONEFFFF

My QTEK 9000 keeps giving me Activesync exchange server errors and connecting as guest yet I do not use Exchange Server, what can I try to get a full connection?

Posted by: bigmdime

Email notifications on my k-jam are incredibly flaky. Sometimes they work, meaning the sound, the pop up and the led, sometimes there is no notification at all (none of the three) but the email still comes in. I'm using hosted exchange at 4smartphone.com. Any idea what's up with this?

Thanks

Posted by: whtrbt7

@pelzl
okie, that's exactly what I thought. Internally, you can synchronize to Exchange but externally you are using SSL to IMAP which is left open. It means that while you are internal, you can synchronize to the Exchange server but externally the ports are blocked. The only ports that are open for your company are SSL to IMAP. You need to set up a separate IMAP account in order to gain access to your e-mails. Unless your IT team opens up the ports for AES or configured SSL to AES on the Exchange server, you won't be able to activesync externally.

@PDAPHONEFFF
This is an Activesync issue, not an exchange issue. Please refer to documentation provided by Microsoft. I would suggest killing all firewall applications first to synchronize. Also I would check your AES settings to make sure you aren't synchronizing with exchange.

@bigmdime
This topic has been discussed many times before. I personally don't prefer AUTD and use scheduled syncs for this reason. When Push via HTTP comes, I will be using that instead since it will be much more stable.

Posted by: nysportsnucca

Quote:

Originally Posted by whtrbt7

@pelzl
okie, that's exactly what I thought. Internally, you can synchronize to Exchange but externally you are using SSL to IMAP which is left open. It means that while you are internal, you can synchronize to the Exchange server but externally the ports are blocked. The only ports that are open for your company are SSL to IMAP. You need to set up a separate IMAP account in order to gain access to your e-mails. Unless your IT team opens up the ports for AES or configured SSL to AES on the Exchange server, you won't be able to activesync externally.

@PDAPHONEFFF
This is an Activesync issue, not an exchange issue. Please refer to documentation provided by Microsoft. I would suggest killing all firewall applications first to synchronize. Also I would check your AES settings to make sure you aren't synchronizing with exchange.

@bigmdime
This topic has been discussed many times before. I personally don't prefer AUTD and use scheduled syncs for this reason. When Push via HTTP comes, I will be using that instead since it will be much more stable.

whtrbt7

My problem which may be similiar to whats been asked on this thread already is Error Code: "CONNMGR_36: Unable to connect. Verify you dialup or proxy settings are correct and try again."

This error only occurs when I try to synchronize with the server. I'm not getting it because..,when I have my i930 in its cradle and synchronize with Windows PC.., it works perfectly and I'm able to obtain all my email via POP3.

I'm running ActiveSync 2002, have all the settings identical to my PC.., have my complete FQDN in assigned to my server settings on my phone and followed all the instructions perfectly.

I just can't understand why I'm not able to access my email account without being directly linked to my PC.

I dont know what IMAP is or if I need to set up a seperate one like you advised pelzl. I'm wondering if you can help me.

Posted by: politby

Greetings,

I have an account with Mailstreet and it works very well, including the AUTD feature. However, only my Inbox is synchronized. Is there no way I can read my other folders on the PPC (Qtek 9100, WM5)?

regards,
politby

Posted by: whtrbt7

Alright, I'm back. Happy New Year everyone.

@nysportsnucca
Your Connmgr_36 error means you aren't getting on the internet with your i930 at all. I would check with Nextel on what kind of internet plan you have and also the configuration for internet. You should be able to use full Activesync and synchronize all folders in the inbox once your connection is set up. You don't need a POP or IMAP mail account in order to access your Exchange server mail unless there are special circumstances.

@Politby
Look in the Messaging application and then go to Menu --> Tools --> Manage folders. Check the folders you want synchronized. Voila.

Posted by: pnut4912

activesync update while connected

i searched, but maybe i missed a simple answer. i have syncing to the exchange server working fine, but most of the time my phone is pluged into my conmputer when im at work. is there a way to update my phone using the standard connection (usb) while the phone is plugged in to reflect changes from over the course for the day? i cant change any settings as activesync says all setting are on the server. i want to update info, but not have to GPRS connect to sync all the time using the data connection on the phone.

Posted by: nysportsnucca

Quote:

Originally Posted by whtrbt7

Alright, I'm back. Happy New Year everyone.

@nysportsnucca
Your Connmgr_36 error means you aren't getting on the internet with your i930 at all. I would check with Nextel on what kind of internet plan you have and also the configuration for internet. You should be able to use full Activesync and synchronize all folders in the inbox once your connection is set up. You don't need a POP or IMAP mail account in order to access your Exchange server mail unless there are special circumstances.

Why would I check with NEXTEL for what type of internet plan I have and its configurations. My internet connection plan is Verizon Yahoo DSL.

I see that you referred to Exhange server mail..., what exactly is that?? Sorry for the ignorance.

I would appreciate any and all help you can provide.

Posted by: whtrbt7

@pnut4912
If you install Activesync 4.x on your PC, you have have your device charged and access your exchange server via the USB connection without accessing GPRS. Just make sure your firewall isn't interfering with the connection.

@nysportsnucca
Unless I'm mistaken the i930 is a Nextel only phone that works off of iDEN, hence you would need to consult Nextel. Ummmmm hmmmmm this thread is concerning Exchange server connectivity only. If you are not using an exchange account, I would suggest posting in another thread.

Posted by: nysportsnucca

Quote:

Originally Posted by whtrbt7

@nysportsnucca
Unless I'm mistaken the i930 is a Nextel only phone that works off of iDEN, hence you would need to consult Nextel. Ummmmm hmmmmm this thread is concerning Exchange server connectivity only. If you are not using an exchange account, I would suggest posting in another thread.

Ummmmmm hmmmmm maybe you're right. See I'm a noob to all this smartphone, exhange server universe so.., when I first seen my i930 and not knowing completly what I was investing in.., I thought it would be cool to have a phone that I could WIRELESSLY access me to my email accounts without have to go through a the web.

Bam.., I hit a button and there it is. Now.., I have to figure out what an exhange server is, IDEN, IMAP4, POP3, SMTP and the list goes on. lol. See.., I dont work in some corporation and have this great big server. I'm just a regular guy with DSL and a Verizon Yahoo account who wants to be able to check his email when he's out/

Anywayz.., there's no quick fix.., I managed to get my phone to retrieve my email wired with the USB cable directly to my PC.

Thanx for trying to help. I'm sure if I just do my homework. I can get this thing to work how I wanted.

Posted by: whtrbt7

@nysportsnucca
No offense meant by the statement above but personally, if you want to have everything sent to your phone and use it as a communication device instead of just a phone, I would suggest picking up a hosted exchange account and an internet plan from your carrier. This would simplify the everything and would allow you to have the same contacts, calendar, tasks, and e-mail folders across your computers using Outlook 2003 and your smartphone or PPCPE devices. Exchange was made to simplify everything, not to complicate your daily life. It's just that the initial setup requires some dosh and a little bit of knowledge. Check out http://www.1and1.com and see if you want to pick up an exchange account through them. I recommend them since they are solid.

Posted by: ronaldovic

I sync with my PDA (WM5) the corporate exchnage server. All is well, except for the mail i send from my PDA. Recipients receive this mail twice? In the outbox on my PDA there is one entry, it also syncs one e-mail, but eventually the exchange server sends the mail twice?

How come? Any1?

Please?

Posted by: 808e46m3

I've been reading through the posts here and it seems like there's a lot of experts here so I hope this is a simple question/fix.

I just got the new Treo 700w and I'm trying to setup activesync to sync my email wirelessly. My company is using Exchange 2003 (not sure about SP2 though) and I can access my mail via OWA. I followed the directions and put in the FQDN (which is the same as the OWA URL, except you omit the https://, right?), my user id and password. I also completed the domain with what I normally put to login to OWA before my username.

For example, on OWA I put:
URL: https://outlook.abccompany.com
user: abc\john
pass: XXX

AES:
server: outlook.mycompany.com
user: johndoe
pass: XXX
domain: abc

However, when I connect using AS on my treo, it says "synchonizing folders" then quickly gives the error message "Synchronization could not be completed. Try again later." and the support code 0x80072F17.

What am I doing wrong? Do I need to contact IT to have them turn something on? I notice when I login to OWA via IE I get a box informing me that there's a problem with the site's certificate indicating that it's from a company I have chosen not to trust and the name doesn't match the name of the site. I just say yes and it works fine. Does this make a difference?

Thanks!

Posted by: rfischman

Similar question to 808e46m3's...

My company also runs Exchange 2003 and I have no access what so ever to it. We have OWA installed: https://comany.com/exchange
Login is <DOMAIN>\<username>

For a WM5 (such as the Treo 700), is the username field in the activesync config the DOMAIN\username or just username? Also, without OMA turned on, will the device be able to synch OTA with the exchange server?

Its also not likely my company will set up any think to allow AUTD if its not already set up so I may have to use OWA on the WM device. How does OWA render on a Treo 700's screen? Is it usable?

Posted by: 808e46m3

Quote:

Originally Posted by rfischman

Similar question to 808e46m3's...

My company also runs Exchange 2003 and I have no access what so ever to it. We have OWA installed: https://comany.com/exchange
Login is <DOMAIN>\<username>

For a WM5 (such as the Treo 700), is the username field in the activesync config the DOMAIN\username or just username? Also, without OMA turned on, will the device be able to synch OTA with the exchange server?

Its also not likely my company will set up any think to allow AUTD if its not already set up so I may have to use OWA on the WM device. How does OWA render on a Treo 700's screen? Is it usable?

OWA on the treo's small screen it bad - lots of scrolling involved no matter how you set the view.

Posted by: rfischman

Quote:

Originally Posted by 808e46m3

OWA on the treo's small screen it bad - lots of scrolling involved no matter how you set the view.

I imagine thats true of any of the windows mobile devices though

But is it workable as an alternative if exchange synch isn't an option?

Posted by: 808e46m3

Quote:

Originally Posted by rfischman

I imagine thats true of any of the windows mobile devices though

But is it workable as an alternative if exchange synch isn't an option?

I would only use it as a last resort. I'm hoping someone here can figure out what I need to do to get AES working. I tried googling the error code, but the results didn't seem relevant to me.

Posted by: eb597

It's not the AD account as I can log on to my ipaq using his details and get his emails syncing perfectly. It must be something to do with the Unit itself. I'm going to reload everything from scratch just in case I've missed something.

Em

Posted by: rodleach

I just picked up the Treo 700w last Thursday. I realy like the phone with one exception. I can't get it to sync with our OWA server. I can log into OWA from the phone's browser, yet can not sync. The setup I'm using worked fine on an i600 and an i730.

Here are some specific scenarios I've been through.

1) Unload AS 4.1 from the portable and shut the system down. I do a hard reset on the Treo700w. The only thing I setup on the Treo is the sync to my OWA server. The first sync runs fine. It picks up all the mail that's on the server. I have someone send a test message to my Email address and it never downloads (nor does any other NEW mail). I don't get any error messages and I can see the status (0/1 messages) like the device sees the mail on the OWA server.

2) I can boot up the portable and let it log into Exchange. Once that's done the Treo will sync up with no issues.

Another co-worker of mine bought a Treo700w over the weekend and it does the same thing. I'm not sure if we're running Exchange 2003 SP2 (I'll find out in the morning).

Any thoughts would be greatly appreciated.

Rod

Posted by: defii

Hello All,

I've been using 1and1 hosted Exchange service for the past couple months or so. For the most part, it has been reliable. Recently (as over the past two weeks or so), I have quite a bit of trouble with it. Primarily, the problem has been logging on to the server using Outlook 2003. The same problem manifests itself on my desktop and my laptop. It disconnects frequently from the server and then tries forever to reconnect. Some of my emails that I am attempting to send go into the Outbox and never get sent even after the computers finally connect to the server.

I am beginning to think this may be a problem with the server. There's no point in having an Exchange service if it does not reliably deliver. Has anyone else been having any trouble of this sort with 1and1? Any ideas or suggestions?

Posted by: Alex301

Hi Everyone,

I hope that some of you may be able to help me. My company is currently running Exchange 2000 (unfortunately no Mobility Pack installed). I have come to grips that I will not be able to sync directly until we upgrade to Exchange 2003 which I have been told will be some time this year. So in the interim, I have signed up with T-Mobile Internet with VPN and My coporate E-mail.

Now I was unable to set up a direct connect with my exchange server through My Corporate E-mail. I believe that this may be due to having to use a SecureID keyfob to access our OWA from off the network. Is this the cause and if so is there any way to work around it? If not, I guess I'll just have to stick with the redirector.

Cheers,

Alex

Posted by: abendx

whtrbt7... maybe you have an answer to my problem??

what i have is a 4smartphone account to sync my 9100 with my desktop. i have a client that runs exchange, but is very restrictive on exchange access. i had, before i got the 4smartphone account, a partnership with my laptop and the client's exchange server via a provided laptop. i would sync one at a time (local outlook on either).

now that i have 4smartphone, i have deleted the partnership with my laptop and setup the OTA sync with the 4smartphone exchange server. now when i try and access my client's exchange via usb and local outlook on their machine, i get an error that i have to pick either the exchange server or the local activesync?

is there anyway to do what i want, which is sync with 4smartphone and pull in the calendar and tasks from the client via usb?

thx

Posted by: Park City

Quote:

Originally Posted by Luch

Ok I GOT IT WORKING

after dealing with the cert stuff, I looked up the server side error and had to recreate the OMA/ActiveSync Virtual Directory on my exchange server and edit the registry to point to my new VD.
After that, I edited my current SSL Cert to have my outside mail server to be the same as the external mx record.

Here is the link that helped me to recreate the VD on the exchange server...
http://support.microsoft.com/kb/817379

So now I must wait for Good Link 4.7 to come out (nov 15 is what my rep is telling me) so I can use it with my QTEK 9100

... but for the time being I have it working via ActiveSync

I am at wits end

. I have an Eten m600

, Exchange 2k3 SP1 and for the last 2 weeks have been totally fine using ActiveSync to the Server via GPRS, Wifi, etc. Then yesterday, for some unknown reason, it dies. I have read this thread backwards and forwards. Installed the Cert from OWA, fine. (I can see in on my M600 and I dont think I had it there before) Cert FQDN and interntal FQDN match, no problem. I have uninstalled and reinstalled Outloook and ActiveSync 4.1. I have deleted by profile and changed from an OST in cached mode to a pst and back. I have moved my mailbox from one store to another...no corruption. I have even reflashed the firmware on the phone....no luck. I have checked IIS setting and the VD for ActiveSync...all good. Any suggestions?

Thanks, Brad in Park City, Utah.

Posted by: Park City

Quote:

Originally Posted by Park City

I am at wits end

. I have an Eten m600

Thanks, Brad in Park City, Utah.

I tried a little experiment last night and tried to sync to another Exchange account over GPRS and sure 'nuf, it worked like a charm. So something is definitely wrong with my Exchange account...what I dont know. I have used Scanpst.exe and Scanost.exe and both say there are errors but claim to fix them. When I rescan with either, they still see errors but claim to fix them again, so obviously they are not really being fixed. My thought is to take my calendar and contacts and export them to EXCEL files, then convert my email items to a PST and save it. Then delete my Exchange account and start over. I can then import the calendar and contacts into a new OST and use the old PST I created as an Personal Folder and go from there. When I felt confortable that I didnt need the PST anymore, I could just remove it as one of my data files in that profile. Does this sound feasible. Thanks, Brad

Posted by: whtrbt7

Hello everyone,
I've been out the last few days networking offices and getting their servers done. I still have 3 more networks to complete today/tonight so for those of you patient enough to wait, here are some answers:

@ronaldovic
I would check the queues on the Exchange server to see what is going on. I think you may have SMTP duplication which happens when your DNS isn't completely configured correctly and you have SMTP forwarders set in loop. This happened to me once and it looped the sent messages about 180 times

. Yeah that sucked. So after you check the queue, you can see whether or not you are duplicating or even triplicating outgoing mails.

@808e46m3
I posted directions to installing certificates on this thread, I would suggest using it because it seems like you are using SSL which in turn requires a valid certificate. The certificates MUST match otherwise you won't get authenticated. When in doubt, use a 3rd party certificate like verisign to avoid complications.

@rfischman
The username should not include the domain at all when using AES. Just use your normal username and you should be able to log in. Also OMA should be enabled because it is a component of AES. I really wish MS guys would make this a bit more clear on the server because these things should be common sense but the interface doesn't reflect that. OWA is only good if you use a browser that can handle it. PIE on WM5.x devices has LOTS of scrolling just as 808e46m3 mentioned. I would use Thunderhawk or even use a VNC to get OWA completely functional. I would only use OWA on a WM5.x device if AES is down. For those of you wondering about that, AES can go down without OWA going down.

@rodleach
It sounds like you can get a connection with AES only through AS4.1 if I understand your post correctly. I would check your network for VPNs and Firewalls to make sure that you have full access to the exchange server. You don't necessarily need Exchange 2003 SP2 to synchronize. There are also several issues I know of if the synchronization stops after the first sync. It's possible that your Treo 700w is out of memory when it tries to synchronize. That will freeze Activesync immediately and then after several checks you either remain frozen or Activesync will reject the sync. The other possibility is that the database on the exchange server is slightly corrupted which will have the same effect. I would try the export/import method in this thread to remove any corruption. Get back to me on more details because there may be more than meets the eye in your case.

@defii
hehehe 1and1 rocks. They are extremely reliable. I have seen some cases where the exchange keeps dropping off the connection. In those cases, I would suggest checking your wireless card and also reinstalling the configuration for RPC over HTTP. RPC may be hitting a snag somewhere so I suggest downloading a fresh config file from 1and1. As far as I have experienced, 1and1 accounts are extremely stable. There was only one loss of functionality in the last week to several people for about 2 hours but it wasn't too bad considering that the uptime of the servers are excellent.

@AlexSoCal
I'm sooooo sorry dude

, Exchange 2000 can be a major pain in the arse. The common practice for corporations back then was to secure all servers behind a VPN/Firewall which would protect the entire network. Network structure has changed within the last 10 years to this new structure where independent firewalls and open network structure allow for better access without sacrificing stability and security. The best way to handle your situation would be to either open up IMAP ports (SSL would be good if you can handle it) on the network and allow IMAP access. If you can't even get that, I would suggest some kind of RPC redirector that will tunnel through your firewall/VPN.

@abendx
Okie let me get this straight, you have 2 exchange accounts and you want both pieces of information to be on the 4smartphone account? I hope that's correct because here's my answer: You need 2 separate mail profiles to accomplish this. The Mail Profiles are located in Start --> Control Panel --> Mail --> Profiles. From here make sure Prompt for Profiles being used is selected. You can setup both your 4smartphone account and your client's exchange account on your laptop and then export from one and import with the other. This way, you can continue to use AES and just leech the necessary information from your client account.

@Park City
yes, that's what you need to do. Sorry but I believe that is the BEST way of really making sure that your account is clean. Also make sure that your password didn't expire in the AD

that happened to me once and I was scratching my head for like an hour until I realized it. If you have any error codes, please post them too. It would give me a better idea of what is going on. It's very possible that your permissions aren't set correctly for your specific account.

Posted by: abendx

Quote:

Originally Posted by whtrbt7

@abendx
Okie let me get this straight, you have 2 exchange accounts and you want both pieces of information to be on the 4smartphone account? I hope that's correct because here's my answer: You need 2 separate mail profiles to accomplish this. The Mail Profiles are located in Start --> Control Panel --> Mail --> Profiles. From here make sure Prompt for Profiles being used is selected. You can setup both your 4smartphone account and your client's exchange account on your laptop and then export from one and import with the other. This way, you can continue to use AES and just leech the necessary information from your client account.

do i need access to the client's exchange server from my laptop for this?
and/or
do i need access to modify/add the mail profiles on the client's machine?

if this is the case, is there another way as i do not have access to the client's exchange server except from their machine and can not modify this type of infromation on the client's supplied system due to policies. i know... crazy, but this is the security model i must work within. thanks!

Posted by: Alex301

Thanks for your reply whtrbt7. I figured I would be S.O.L., well at least they are saying they should have Exchange 2003 up this year. Which, knowing my company, means by 2010, so I got that going for me. In all seriousness, I have the T-Mobile My Corporate E-mail redirector piping my email to my device already. The only problem with it I have is that when my device connects and downloads the messages they all come in as unread. This happens even if I have read them through outlook on my desktop. I checked on T-Mo's website in My Email and they are showing there as read. So it is when the device downloads them they are marked unread.

Any suggestions?

Posted by: Park City

Quote:

Originally Posted by whtrbt7

@Park City
yes, that's what you need to do. Sorry but I believe that is the BEST way of really making sure that your account is clean. Also make sure that your password didn't expire in the AD

I get the "Synchronizing Folders on the m600 and then the Error code "0x85010014 on the server" Nothing else. Never recieved any other errors.

Brad

Posted by: Park City

Quote:

Originally Posted by whtrbt7

@Park City
yes, that's what you need to do. Sorry but I believe that is the BEST way of really making sure that your account is clean. Also make sure that your password didn't expire in the AD

I get the "Synchronizing Folders" on the m600 and then the Error code "0x85010014 on the server" Nothing else. Never recieved any other errors.

Brad

Posted by: 808e46m3

Quote:

Originally Posted by whtrbt7

Hello everyone,
I've been out the last few days networking offices and getting their servers done. I still have 3 more networks to complete today/tonight so for those of you patient enough to wait, here are some answers:

@808e46m3
I posted directions to installing certificates on this thread, I would suggest using it because it seems like you are using SSL which in turn requires a valid certificate. The certificates MUST match otherwise you won't get authenticated. When in doubt, use a 3rd party certificate like verisign to avoid complications.

Thanks for the help. I installed the certificate, but unfortunately, as you mention, I now get error # 0x80072F06 and it says "You have an incorrect SSL certificate common name in the host name field."

I assume that this means that since I entered the server name as outlook.abccompany.com, but the certificate says mailserver.abc.local, they don't match and I can't sync, right? So what's my options? You mentioned Verisign, but wouldn't that mean I need to have a Verisign certificate installed on the exchange server for me?

Thanks again.

Posted by: Park City

Quote:

Originally Posted by Park City

I get the "Synchronizing Folders" on the m600 and then the Error code "0x85010014 on the server" Nothing else. Never recieved any other errors.

Brad

Just recreated the exchange mailbox and Voila....Everything synchronzied wonderfully.

Thanks again for all the help...EXCELLENT FORUM!!

Brad in Park City

Posted by: whtrbt7

@abendx
You should be able to have 2 different exchange profiles installed on the same computer to allow access to 2 different exchange servers. They are password protected and encrypted so they are protected files. You can access the exchange servers from one or both laptops, it doesn't really matter, you just want the client's info on your exchange server correct? The easiest way would be to connect to one exchange server and export a PST and then connecting to the other exchange server and importing the PST. If you don't have access, then the only solution would be to be on the same server so you can have public folder access. There is also a server application which would be able to synchronize public stores to private stores for that model.

@AlexSoCal
Okie, you need to have IMAP access. IMAP servers will keep track of which mails are read/unread and will also allow folder access. If you use T-mobile's POP systems, they all appear as unread.

@Park City
Congrats, when in doubt just redo the AD. These problems will be fixed once Exchange starts using an SQL backend which should be in the next release. Make sure that you set the password to never expire.

@808e46m3
Yes and yes. Since the certs don't match, it means that you won't be able to synchronize. If you decide to purchase a 3rd party certificate provider such as Verisign, you just need to install it on the Exchange server and install the cert onto your PPCPE. Most of the time, if you have many external users, it's worth purchasing the 3rd party cert.

Posted by: UABigBird

I found this guide very helpful to figure out how to get around the WM5 messaging client.

PDF from Microsoft

Posted by: eb597

Please please can you advise me on what to do. I have two hp ipaqs one works perfectly one doesn't. The setting on both machines are identical.
The machine that works, works for both users so its not an AD problem.

The other machine doesn't work for anybody.

What am I missing? Is there somewhere on our ISA that I need to set up the actual PDA name?

I've already done a hard reboot of the pda and reinstalled everything. The error I'm getting is a HTTP_403.

Emily

Posted by: NY2A

I was an early user of 4smartphone service. I found the service to be fair and the support very good initially, but it dropped off dramatically over time. SPAM was also a problem. Their SPAM filtering was so-so. I dropped them a couple of months ago and went with mailstreet.com. I'm glad I did. They use MX Logic for their back-end SPAM filtering. In my opinion, it's the best SPAM solution available. The only two disadvantages I have had with mailstreet.com is that it is a bit more expensive (but you get what you pay for) and you only get 100 MB of storage. The later is not a problem for me since I archive most messages offline anyway.

Posted by: whtrbt7

@eb597
the HTTP_403 error means that you have a forbidden access error in your system. This can happen for many reasons. Do you have SSL on one of the servers and do you have the right certificates installed on the unit? You're not authenticating somewhere.

@NY2A
Mailstreet is great if you use a blackberry and exchange. 1and1 has spam filtering on 2 ends and includes controls for levels of spam control which is nice. You may want to check them out since they are huge and have comprehensive services.

Posted by: bacmallard

Okay so here we are my sales team wants this thing
Treo 700w

So far I have fought a few battles with it.

I have managed to install the SSL cert on there so im good with that.
I set verbose logging
I get a http 1.1 500 server error
and the device logs a
0x85010014 error

any ideas
Exchange 2003 sp1
trying to sync exchange over activesync

tried playing with username settings
f.lastname@domain.com seems to work best
any other combo it continually prompts me to verify my password

Posted by: gentile

Glad to find your post. I am having a problem similar too bacmallard. I am using a Treo 700 and like the usability. It is my first pda/device. Trying to decide if I should return it and exchange for BB 7130.

Can synch to PC, but get error (0x80072EFD) when trying to synch to echange server. Keeps asking for password. My office IT people don't want to help. Are there settings that need to be changed on exchange 2003 to allow the Treo 700w to synch? Curretly, they are using BB with the email forwarded from exchange to verizon/blackberry email server. This sounds obtuse, but may be my only option for now.
Thanks,
Ralph

Posted by: whtrbt7

@bacmallard
Try this fix:
1. Click Start, click Run, type regedit in the Open box, and then click OK.
2. Locate the following registry key: HKEY_Local_Machine\System\CurrentControlSet\Servic es\MasSync\Parameters\
3. Right-click Parameters, click New, and then click String Value.
4. "New value #1" is selected. Type SMTPProxy and then press ENTER to rename the value. Right-click SMTPProxy, and then click Modify.
5. In the String Data line, type the SMTP domain of your default Recipient Policy. For example, type contosoltd.com.
6. Click OK to quit Registry Editor.
7. Restart the IIS Admin service. To do this, follow these steps: a. Click Start, click Run, type services.msc , and then click OK.
b. In the list of services, right-click IIS Admin service, and then click Restart.

This should fix problems with multiple SMTP addresses.
The 0x85010014 error means the same thing as HTTP_500. Essentially you aren't authenticating correctly, the SMTP addressing is off, or you have SSL enabled in a place where it shouldn't.

@Gentile
You don't have an issue with a server at all. The 0x80072EFD error means that you have no connection to the internet. Here is what you need to do:

1. Check to see if you can browse web pages.
2. If you are using a Windows Mobile based device, install a valid certificate on the server.
3. Verify that you have entered the server name (FQDN) correctly on your device. If you have a front-end/back-end configuration use the name of the front-end server and not the mailbox server.

Posted by: bacmallard

Okay let be breakdown the server configs

Exchange in a front end, backend
so if i make registry changes wich server do I do I make the changes on.
I went ahead and made the changes on the backend server. After reading the article it was a little more clear.

There is some mish mash of solutions
I read some info that says you have to have integrated windows auth enabled
Some say not to.
Now the question is on what level of exchange virtual directory
on the OMA on the Active sync ? Both ? One ? None ? yes ? No?

basic auth is set on these.

the solution provided of entering the SMTPProxy entry
seems to be forcing the default recipient policy address to the activesync module. reference of kb article is http://support.microsoft.com/defaul...kb;en-us;886346

The cause in the article doesnt match my issue though.
We do not have multiple SMTP addresses and the primary smtp address
does match the default recipient policy.

I can try the reboot later of the services being im live right now and during work hours this isnt ideal to do.

I dont have much faith in this. The primary address for anyone here is
flastname.domain.com so i dont see why it would be any different.

Im antsy to try it though Will keep you posted if this works

Posted by: C_Hambone

I recently got a Treo 700w, but have run into problems trying to get it to connect over ActiveSync. The error code that I get on the device is 0x85010014. I get the error whether I try to connect over EVDO connection or connected to my office desktop

This is an Exchange 2003 SP2 server. It is configured as both front and backend server. OWA and OMA work fine and are accessible remotely.

I took a look at the Event Viewer for the server and found an ActiveSync error. It is code 3031 and states that the server does not allow "Negotiate" authentication to the virtual directory (I can post the entire message if necessary). It sounds like there is a problem with a way that IIS is authenticating ActiveSync requests. Is there a way to change this? TIA.

Posted by: robinton

Make sure that Integrated Authentication is turned on for the /Exchange Virtual directory on whichever machine is hosting your Mailbox. If it is not enabled for the /Exchange directory of the server with the mailbox OWA and OMA will work but Activesync will fail repeatedly. I have had several machines spontaneously (at least from my point of view) loose this setting, but as of yet have not been able to get it to repeat or occur somewhere where I have sufficient time to get a ticket in with Microsoft about it.

Robert Harrold
Houston, TX

Posted by: C_Hambone

Thanks Robert. That seems to have worked although I now get a different error.

"Your account in Microsoft Exchange Server does not have permission to synchronize with your current settings.

Support Code: 0x85010001"

I double checked and Mobile Services are enabled and the user account shows it as enabled (in Exchange Features). I am missing something else? Thanks again!

Posted by: Justin Gould

Quote:

Anyway, to install the cert in your device you simply need to export it from your server and run the cert in your PPC. My 9100 recognize the .cer file format and automatically imported the root cert without having to install any additional software. Anyway, assuming you know enough about Exchange and CA, here are the simplified steps.

I want to thank you first off - your post appeared in a Google search I did to solve this issue. Importing the cert did indeed solve the issue.

It's worth mentioning that you don't actually need access to the Exchange box to export the root cert. All you need to do is visit the OWA page using IE, double-click the padlock, go to the Details tab, do a Copy to File, copy the .CER file to the device and double-tap it. I'd have been hosed if I needed to ask our Exchange team for their root cert

Justin

Posted by: autigers20

what exactly is AKU2/MSFP? i understand currently messages are pushed to mobile devices via an SMS message (which usually carriers charge for right?) with AKU2 - how will messages be pushed? is compatibility already built into exchange? do 4smartphone, 1and1, etc... already support this new method of push with exchange? thanks for the info!

Posted by: whtrbt7

AKU2/MSFP are the client add-ons for Windows Mobile 5.x. The MSFP is the main one for the Push feature which is essentially an HTTP based push connected with GPRS/EDGE/UTMS/HSDPA/802.11x instead of an SMS based push/pull system. While Exchange Server 2003 SP2 already has the capability to do this, the client devices are not. This is why you need to install MSFP to get this feature to work. As for AKU2 (Adoption Kit Update), it is the parent package of MSFP, the A2DP (Advanced Audio Distribution Profile (bluetooth)), and the HFP with phonebook transfer (Hands Free Profile with phonebook transfer) updates. The updates will come in the form of a ROM flash from your parent company/brand. You just need to reflash the unit and voila, it works.

Posted by: qmacker

Well, lemme el ya something whtrbt7...

This is not directed at you personally, by the way.

I am so sick of heaing about this fabled legend called AKU2/MSFP, that I've actually GIVEN UP on it.

I'm too tired and fed up about the whole thing, that I'm not even going to bother complaining about it anymore - others have done a fine job. I don't need to improve upon what they've already said. Fact is, there's no MSFP. Windows Mobile 5.0 was released in March 2005 - THAT'S A YEAR AGO FOLKS! HELLO!!!!

Exchange SP2 was released in November 2005.

Please please please please, will everyone refrain from replying to this and telling me that "my device manufacturer or OEM...blah blah blah blah...MSFP...blah blah blah blah...update....blah blah blah blah...'later' this year."

What's the betting that when T-Mobile's new MDA and SDA come out this month, they won't have the MSFP?

I CAN ABSOLUTELY GUARANTEEE THAT THEY WON'T!

Okay, so I did rant. This has become a complete joke, and has made me look like a ******* in front of my clients. They are all lining up in front of me with their Treo 700Ws, asking, "Why is the push email not working?"

Oh, sorry Jon, you'll need to call your device manufacturer or OEM...blah blah blah blah...MSFP...blah blah blah blah...update....blah blah blah blah...'later' this year....

Posted by: whtrbt7

wow, that's a pretty crazy rant. MS released the WM5.x OS probably a little prematurely. They wanted to grab extra revenue upfront with the new devices before the product was fully completed (which it still isn't after AKU2.0). The good news is that the updates have been progressing extremely fast for MS standards. Normally it takes them eons to release updates but in the case of WM5.x we have already seen AKU 1.1 within a single quarter. If you go to Start --> Settings --> System (tab) --> About, you can see the build number. If the build is higher than 14407, then the first AKU1.1 has already been installed. Even though WM5.x has been released for almost an entire year, the OEMs didn't get their versions completed until almost August/September. To top that off, Exchange SP2 had some last minute tech thrown in so basically, we are seeing things right on time, it's just that everyone has been waiting for eons for MS to get their act together. I'm pretty sure the T-mobile's MDA/SDA won't have the AKU2.0 update on their devices immediately. The earliest one I believe will either be QTEK or IMATE. HTC has a beta of the AKU2.0 in development right now so it will be within the first quarter that the update will be released. Once the update is installed, the devices will be MUCH better than blackberries.

Posted by: whtrbt7

I almost forgot, if you guys want to try an unofficial/cooked ROM image with AKU2.0, I have one available. You will have to use it at your own risk and I am limiting the availability of the file so only those of you that have QTEK9100s should PM me.

Posted by: rkorzuch

I have been using the Qtek 9100 2.8.7.1 WWE Rom for the past two day. It definitely isn't new it has a date of 12/05/05. It does include the AKU2/MSFP update. Everything works great. Push Email, Stereo Bluetooth headsets and it's fast. The ROM is a test version but I have had 0 issues so far. QMAKER rest assured that the AKU2/MSFP update is real and will be available sometime this quarter. If would like to try the ROM you can download it from the XDA developers FTP site.

Posted by: autigers20

whtrbt7 - can you explain a couple things...

1) in AUTD mode - is it true that if you are charged for SMS messages - you would be charged for an SMS every time you got an email? it would also be true that the phone would then access GPRS/EDGE to actually retrieve the email - so potentially could be charged for that as well?

2) with AKU2 - how exactly does the push work? we've heard that the phone keeps an http session open with the server - but wouldn't that mean a constant GPRS/EDGE connection? is the phone polling the server for email, or does the server notify the phone somehow when a message arrives? it seems like phones don't normally allow phone calls while connected via GPRS/EDGE - how does this work? AKU2 obviously means no SMS - but does it mean more GPRS/EDGE traffic?

Thanks for your help!

Posted by: qmacker

Quote:

Originally Posted by autigers20

whtrbt7 - can you explain a couple things...

1) in AUTD mode - is it true that if you are charged for SMS messages - you would be charged for an SMS every time you got an email? it would also be true that the phone would then access GPRS/EDGE to actually retrieve the email - so potentially could be charged for that as well?

2) with AKU2 - how exactly does the push work? we've heard that the phone keeps an http session open with the server - but wouldn't that mean a constant GPRS/EDGE connection? is the phone polling the server for email, or does the server notify the phone somehow when a message arrives? it seems like phones don't normally allow phone calls while connected via GPRS/EDGE - how does this work? AKU2 obviously means no SMS - but does it mean more GPRS/EDGE traffic?

Thanks for your help!

Hi autigers20,

There's an excellent and very detailed article on how the push email works here:

http://blogs.technet.com/exchange/a.../07/406035.aspx

Sorry for my earlier rant guys! I know the darned thing is coming (eventually). I'm just desperately impatient for it.

I've held off on buying a WM5.0 device just because of this. I'm still carrying around my iPAQ h2215 and my separate Ericsson R520m, using bluetooth to sync the two. And it REALLY SUCKS! I can't wait to ditch them both.

I'm waiting for the T-Mobile MDA (HTC Wizard) next week. I'm gonna buy it the day it comes out.

rkorzuch - I saw that update on the XDA developers site a couple of days ago. Not sure I'd want to risk it on my new MDA though. Although I could always bring it back to the store if it didn't work. The dummies there don't know much anyway...

Thank you all for allowing me to rant. We'll get there eventually!

- qmacker

Posted by: autigers20

Quote:

Originally Posted by qmacker

Hi autigers20,

There's an excellent and very detailed article on how the push email works here:

http://blogs.technet.com/exchange/a.../07/406035.aspx

sweet - thanks a bunch. fwiw - i ran the qtek test rom with the AKU2 and it worked flawlessly with my 4smartphone exchange account and qtek 9100. the rom itself was much more stable than the old qtek shipping rom i was using (1.0.7 or something).

Posted by: whtrbt7

I believe that I have answered most of these AKU2.0 update questions before and also the questions regarding AUTD, and Exchange SP2. Please search through the thread for the answers. The AKU2.0 update is only in beta right now and not the full package so those of you that don't have a QTEK 9100 may have installation troubles. There is also a separate thread regarding the AKU2.0 update that I have posted information. You can find that here: http://www.howardforums.com/showthread.php?t=842906 .

Posted by: tlutrick

Hey guys,

First let me tell you that I love the communication this board brings to everyone. It's a huge help.

My question is a simple one, but I can't figure it out:

Is there a hack on the Qtek 9100 to allow email notification alerts for messages that are deposited into a subfolder within your Exchange Inbox. I have rules set up for the hundreds of emails coming in on my Exchange account and they are moved to their respective folder based on the sender. Like MY BOSS for instance. I would like a an alert to signal me that the message has been deposited into any subfolder.

Any ideas?

Posted by: whtrbt7

There is no need for a hack to receive folders within the inbox. Just press Menu --> Tools --> Manage Folders and check the folders you want synchronized and voila, you have e-mail folders. I believe that with the new AKU2.0 update, you get notified even if the message arrives in a sub-folder. At least that's what happens on my units.

Posted by: tlutrick

I have the folders set up, they synchronize just fine, but I only get notified of messages that are in my inbox. If a rule exists on my Exchange server that moves that message to a sub-folder of the inbox, then no notification occurs.

Just FYI - I am running ROM 2.8.7.1 WWE, Radio 01.13.10, and ExtROM 2.8.7.101. If there is something newer, that is stable, please let me know.

Posted by: whtrbt7

That's the latest beta ROM out right now. I just checked the sub-folder notification system. Basically, there is no notification by subfolder. I separate folders by using separate IMAP accounts and that's why I was getting notifications. This feature has been missing since WM2003 so it may be a while until a fix comes. I check my e-mail every so often since I'm paranoid so please follow my example =)

Posted by: cas

I have a Cingular 8125 (HTC) and IM trying to get activesync going. Using IE and going to http://FQDN/<activesync> link I get the 501 not implemented message. According to MS this means its working. When I activesync via my 8125 I get the same message. Im not using SSL. Any help would be greatly apperciated

Thanks

here is the message from my IIS logs

2006-02-21 14:17:19 192.168.123.2 GET /Microsoft-Server-ActiveSync User=thisuser&DeviceId=6DD2E5D6633434F80211477B0B5C858D&DeviceType=PocketPC&Cmd=GetHierarchy&Log=VNATNASNC:0A0C0D0FS:0A0C0D0SP:0C0I0S0R0S0L0H 8080 cas 166.173.x.x HTC-8100/1.2+Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+CE;+PPC;+240x32 0) 501 0 0

Posted by: whtrbt7

You just need to put in the FQDN, not the full OWA or OMA address.

Posted by: creighton1

I took a leap of faith this evening and installed the AKU2.0 with MSFP on my Cingular branded 8125. Everything went smoothly and the synchronization between e-mail, contacts, tasks and calendar on my phone and the exchange server is working extremely well. The only issue I seem to have is that notification of new mail messages on my phone is pretty dodgy. I've tried to setting the notification to vibrate, alarm and blinking led and it seems that sometimes it works and sometimes it doesn't. The notifications seem to work most consistently when the phone is in standby and the messaging app was not the last active app. Am missing something?

Also, is there any way to control the rate at which the red notification LED blinks? It would be nice if there were a way to speed it up to about double of what it is by default.

Posted by: whtrbt7

There is a registry setting I think in HKEY_LOCAL_MACHINE\Drivers\Builtin\ but I think a central DLL file controls LED blinking. You may have to have a development kit to really change the LED blinks.

Posted by: shadowimg

Has anyone gotten the Microsoft Global Contact Access to work? I'm running into a problem with it where it always fails authentication to the server. I've poked around into it far enough to edit the GCA config.txt file and turn logging on, and the logging indicates a "TrustFailure" exception.

Now, my OWA/OMA system is using a wildcard SSL certificate, and the TrustFailure exception seems to be related to SSL initialization in WM code. I'm wondering if this is the same problem that's encountered setting up initial syncs against a wildcard SSL cert exchange server in WM5.

Thing is, there's a known registry setting you can change to fix that, but the GCA problem doesn't seem to have any related settings. Anyone run into this and got it working? I found a thread in the PPC newsgroups about it, but no solution was ever found.

Posted by: BillB

Quote:

Originally Posted by shadowimg

Has anyone gotten the Microsoft Global Contact Access to work?

If you mean the free software that was available on Microsoft's web site, then yes, I got it working. All I had to do was enter the server information, basically the same info necessary to set-up the exchange server activesynch. I was surprised how painless it was, because I had read about other experiencing problems.

I don't know if you have to deal with this software much longer. I could be 100% wrong, but I remember reading news or forum saying that the Global Address Lookup will be built-into the much anticipated ROM update. Can anyone confirm?

Posted by: Jazzyj44

hello - I have an iPAQ 2215. It has bluetooth but I cannot get it to connect to my computer or my Verizon Samsung 970 cell phone. Can anyone help me?

Posted by: robr

Quote:

Originally Posted by Trumps

N
When trying to use the AUTD troubleshooter from Microsoft, we can see that the address is correctly set for the username, but when we go to send a test message we get the generic "Could not access 'CDO.Message' object." error.

Did you ever resolve this? I'm experiencing the same error with the troubleshooter.

Posted by: qmacker

As I predicted in my post on 02/09/06:

I bought the T-Mobile MDA the day it came out (Tuesday). I can confirm categorically that the T-Mobile MDA and SDA devices absolutely DO NOT have the MSFP installed. I knew this would happen, and I called it.

Furthermore, bolstering my view that WM5 should not have been released without the MSFP in the first place (avoiding this entire fiasco), I sent an email to T-Mobile Customer Support asking when the MSFP would be released. I received the following replies, again AS I PREDICTED:

FIRST REPLY:

Dear qmacker,

Thank you for contacting T-Mobile. My name is Annatjie and I will be
happy to help you with any concerns you may have with T-Mobile Service.

You contacted us regarding information on Messaging and Security
Feature Pack for Windows Mobile 5.0 and how to install it on your T-Mobile
MDA. I can totally understand your concern on ensuring you do this
correctly and can assist you today.

To expedite your question, I have transferred your issue to our
Technical Care group. You should receive a response within 24 hours. I would
like to take this opportunity to thank you for your patience.

If you have any further questions or concerns please reply to this
e-mail or contact our Customer Care department at 1-800-937-8997 or 611
SEND from your handset.

Thank you for choosing T-Mobile qmacker, we value you as our customer.

Sincerely,

Annatjie J
Representative ID: 7259373
T-Mobile Web Correspondent Team

SECOND REPLY:

Dear qmacker,

Thank you for taking the time to contact T-Mobile your MDA.

Currently we have no information on who will be providing the updates
that you mentioned. If history is a guide it is usually the manufacturer
that provides the updates, but that could change in the near future.

If you have any further comments, questions, or concerns feel free to
contact us at anytime.

Thank you for choosing T-Mobile. We do appreciate your business.

Sincerely,

Bill K
Technical Care Specialist
T-Mobile USA

IN OTHER WORDS (This is qmacker writing again): We don't know what you're talking about. We just take the first OS release Microsoft gives us, and run with that.

Therefore, as I've repeated endlessly...WM5 should not have been released in the first place, without the MSFP included. This is because you cannot rely on the carriers to include it.

I WAS RIGHT! I RANTED WITH GOOD REASON!!

Posted by: whtrbt7

@Shadowimg
GAL lookup is in the new AKU2.0 update now. Just go into the contacts application and go to Look up online to find addresses.

@BillB
I just rechecked it to make sure GAL lookup was successful. The main thing is to make sure that the Exchange SP2 server recognizes the WM5.x device and then asks for password protection.

@jazzyj44
wrong thread. There is the search function which I would suggest or you can post a new thread.

@robr
I would suggest using the new Exchange SP2 Push via HTTP now. It's just easier and doesn't have the problems that AUTD had. AUTD had many problems with AUTD SMS notifications which were mostly security related.

@qmacker
T-mobile will eventually get the AKU2.0 update. The units that go out now will not have it pre-installed. Last I heard from my T-mobile insider was an April ROM on new units. If you really want to stick it to T-mobile, just return your slightly used unit and then get the new one once it arrives. I highly doubt T-mobile will have an inkling of what you mean when you say "MSFP" because they get whatever HTC gives them. Carriers are out to make the quick buck. Sorry if I offend any of you that work at those companies but that's the truth.

Posted by: robinton

whrbt7, you are being much too kind to the T-Mobile folks. Having dealt with them multiple times on the subject of devices, data services and support for message retrieval (both as an individual and as a representative of a large company (If you can't get good support as a representative of a large company whose business they want then it just does not exist)) I can assure you that qmacker actually recieved what passes for the best support availiable from T-Mobile on the subject of devices and data services. Near as I can tell, no-one who speaks with the public at T-Mobile is permitted to know anything about release dates of upgrades until 30 days after they have been released. I went round and round with them a couple of years back about the upgrade for the pocketpc phone to WM 2003, receiving over a 4 month period lies, incorrect information, clueless answers and threats before finally recieving a valid answer to my questions. So, qmacker I side with whrbt7 in reccomending that you return the product and not re-purchase until product is availiable with the AKU2.0 update.

Robert Harrold
Houston, TX

Posted by: mariog7

I have been trying to sync with our corporate Exchange 2003 SP2 server via wireless Activesync for a couple of months, and after a visit to my company IT Dept, we have narrowed it town to a certificate issue. I could really use an experts help, PLEASE! Here are some facts:

1) Phone = PPC-6700, WM5.0 on Sprint

2) My profile on the exchange server has me enabled to sync via OMA

3) We tried temporarially disabling certificate checking on the server. With cert checking disabled I was able to sync sucessfully! But of course, the admin can't leave this feature disabled due to potentially security issues. This leads me to belive I have a certificate issue

4) With cert checking enabled as default on the server, when I attempt to sync, I get an error "Your account in Microsoft Exchange Server does not have permission to sync with your settings..."

5) I have a Root Cert (generated by my company) and personal cert (also generated by my company) listed under certs on my phone

6) I can access our OWA page with no problems on my phone via pocket internet explorer and I can access my account with no problems. It prompts me to select a cert below to log on with (standard stuff, just like on the laptop) and I can sign in no prob. This leads me to believe that my cert is valid since I can log on with OWA

7) When I try to access https://companyname.com/oma, I get right in - it does not prompt me to select a cert, user name, or password. Just takes me right to my inbox.

So what do you think is causing this problem? My IT guys are stumped. I read somewhere that this may be because my root cert is "home brewed" and not a verisign, etc.. One other thing to keep in mind - In order to get a personal cert installed, I had to export my cert as a .pfx and I used a program to convert it to a .cer. My IT guys said I absolutely had to use the pfx because it contained an encrypted key that was required to log into the server.

Please help me on this one. I can't wait to get my sync going! Thank you very much for your help.

Posted by: MobileGonzo

Quote:

Originally Posted by mariog7

So what do you think is causing this problem? My IT guys are stumped. I read somewhere that this may be because my root cert is "home brewed" and not a verisign, etc.. One other thing to keep in mind - In order to get a personal cert installed, I had to export my cert as a .pfx and I used a program to convert it to a .cer. My IT guys said I absolutely had to use the pfx because it contained an encrypted key that was required to log into the server.

I can tell you that I am using a "Home Brewed" root cert, and don't have a personal cert installed on my K-Jam, and I'm able to synch without issue. I just recently repeated the process after updating the ROM on the device. Perhaps your device is having "Cert confusion".

Posted by: whtrbt7

Here are the instructions for manual certificate installation again.

Manual Certificate Installation:
To install the cert in your device you simply need to export it from your server and run the cert in your PPC. My HTC device recognizes the .cer file format and automatically imported the root cert without having to install any additional software. Anyway, assuming you know enough about Exchange and CA, here are the simplified steps.

1. Open IE and go to your OWA interface. Double click on the "lock" icon on the bottom to see the detail of your current cert, and go to "Certification Path". If more then one cert is listed on the path, write down the top item which is the root CA your server is using. It might be something like www.YourCompany.com or server.YourCompany.com depends on how you set Exchange and your CA up.

2. Go to either your exchange or GC box, open MMC (Start -> Run -> "MMC" -> Ok) and add the Certificates Snap-in (not Certificate Authority snap-in) for your "computer account" / "local computer". Alternatively you can run the MMC from your desktop and remotely open your Exchange box's computer account... but to be safe I'd terminal-service to the Exchange box and do it from there.

3. Open up the "Trusted Root Certificate Authorities" tree, and under "Certificates" look for one that is named exactly like the one you found on #1. Right click, All Task, Export and export it as a DER Encoded X.509 cert.

4. Copy the exported cert onto your HTC Device.

5. Open up File Explorer in your HTC Device, find that file, and double click to execute. It should automatically imported the cert.

6. Now try sync again. Good luck.

Posted by: robdes

I have scanned this thread and have not found an answer to my question...

What do i need to do on my KJam to enable push? i have the new ROM and I have the push email button in comm manager but it is always greyed out. how do I enable push on the device?

Posted by: whtrbt7

Push is enabled on the device automatically. You need to have the AKU2.0 ROM installed on your KJAM and you also need to have Exchange Server 2003 SP2 with the Microsoft Exchange Server Activesync Web Administration Tool installed. Once you have all of that, Push is automatic on the KJAM. You will get prompted to secure your device with a password and all contacts, calendar, tasks, and e-mails will get pushed directly to the device.

Posted by: RedRoller

Quote:

Originally Posted by mariog7

I have been trying to sync with our corporate Exchange 2003 SP2 server via wireless Activesync for a couple of months, and after a visit to my company IT Dept, we have narrowed it town to a certificate issue. I could really use an experts help, PLEASE! Here are some facts:

I am the exchange admin for a hospital system and just got through dealing with this exact same problem. First of all the cert HAS to be in the .cer format. You can export this cert from internet explorer. Here is a link on how to do that.

http://office.microsoft.com/en-us/a...1647831033.aspx

Next copy the .cer file to your palm device and tap. This should install it on the device.

Now here is the tricky part. Our company uses a self-issued certificate from a local certificate server. While I was messing with the encryption settings on the exchange server IIS area, specifically OWA, under default website properties on the directory security tab there is a button called Server Certificates. Clicking this will run the certificate wizard. I saw an option to "REPLACE SERVER CERTIFICATE" I ran that option and then all activesyncing came alive. I was able to select "Use 128 bit encryption" on the device and it
worked great.

USE this at your OWN RISK. It fixed it in my case, but I cant verify that it wont hose something up in your case. If it works, let us all know.

Posted by: Radiodave

Hi. I have a K-jam (they're new in South Africa) and I seem to be having a problem that no-one else can help me with. GPRS is set up and rocking, certs issued and installed, ActiveSync is syncing email/contacts fine EXCEPT for one small glitch: calendar entries that are created on the device sync to exchange no problem. I can edit these, delete, in outlook and all these changes find their way back to the device. But all calendar entries created through exchange won't sync to the phone at all, even though ActiveSync tells me it's syncing all 1000 odd calendar entries; they just don't appear. I'm using ActiveSync 4.1 and I upgraded the device's ROM to WM5 2.16. Is this a config error in my exchange or am I missing something?

Any help would be greatly appreciated, it's driving me mad!
Thanks

Posted by: tgq8

Hi,

Do I have enter the Text messaging address for the device in order enable direct push mail?

Thanks
TG

Posted by: whtrbt7

The text message address is only for AUTD, not the new HTTP push system.

Posted by: politby

Okay,

I'm about to upgrade my Qtek 9100 to the latest ROM that has the new http based push functionality. My question is - how does the Exchange server keep track of the IP address of the client? Is that what the heartbeat is for?

I travel frequently and the IP of my device changes frequently; in addition the Exchange server is in the U.S (Mailstreet) and I'm located in Europe.

regards
/POL

Posted by: politby

Greetings,

Is there anyone who's using Mailstreet's hosted Exchange service and has tried out the new direct push features available with AKU2.0 on their 9100 or K-jam?

If an operator is using AUTD, can I automatically assume that the new http based feature will be operational?

/POL

Posted by: whtrbt7

@Politby
Push via HTTP doesn't track an IP. Since all GPRS, EDGE, and EVDO networks are dynamic, what gets tracked is a device address. Regarding AUTD, it has been in place since SP1. SP2 has the push feature enabled. I would call Mailstreet to see if they have SP2 installed on their systems.

Posted by: politby

Quote:

Originally Posted by whtrbt7

@Politby
Push via HTTP doesn't track an IP. Since all GPRS, EDGE, and EVDO networks are dynamic, what gets tracked is a device address. Regarding AUTD, it has been in place since SP1. SP2 has the push feature enabled. I would call Mailstreet to see if they have SP2 installed on their systems.

Aha. I somehow believed that AUTD was an SP2 feature. Mailstreet has replied to me that they have the push feature enabled - and I guess, therefore SP2 - on some of their servers but not the one where I have my account. I've asked them if they can move me to their SP2 domain...

/POL

Posted by: floepie

As far as 1and1 goes, can the "group functionality" allow another member of the family enter calendar/contact data w/o access to the email?

Also, can the 1and1 hosted exchange server be setup to retrieve POP3 email from another account? (There isn't a way to forward one of my accounts.)

Posted by: 808e46m3

Hi Folks,

I'm trying to get my treo 700 to sync wirelessly with my company's exchange server. I was able to export the certificate (it's a home brewed cert) and install it to the treo ok following the instructions in the earlier posts, except for the part about "go to your exchange box or GC". What does that mean? I exported the certificate via control panel/internet options/certificates/export file. I can open Pocket IE on the treo and login without any messages or boxes popping up, which leads me to believe the certificate is ok, but when I try and sync via AES, I get an error code 0x85010014 "Activesync encountered a problem on the server"

I can sync with my outlook on my desktop fine via the usb cradle. It's listed in Activesync below the exchange server as "windows PC 3." Do I need to delete my Windows PC sync on the treo and leave the exchange server? Does it matter if I'm connected via Outlook on my desktop at the same time I'm trying to sync?

Oops, forgot to mention - I'm using ActiveSync 4.1 on the desktop. I'm pretty sure we're running Exchange 2003, not sure about SP2 though.

Help! Thanks!

Posted by: whtrbt7

@floepi
Yes, you can set delegation on 1and1 if you are on the same exchange account. Within a single Exchange account, you can have multiple users. As for retrieving POP, you can't really pull e-mails from another account but you can take the entire account and have a forwarder set by making that e-mail your main account. It's in the admin console.

@808e46m3
Way too many problems with the Treo 700w so far. You are having authentication errors. Follow these steps below:

1. To enable Integrated Windows Authentication on the Exchange virtual root

2. Re-enable Kerberos on the Exchange server by following the instructions in the KB Article 215383. HOW TO: Configure IIS to Support Both Kerberos and NTLM Authentication

3. If you are using Exchange 2003 on Windows 2000, obtain the hot fix outlined in KB 329938 by calling Microsoft Product Support Services.

4. Attempt sync later.

5. Reduce the group membership or obtain the QFE fix outlined in KB 818526 by calling Microsoft Product Support Services.

6. Add a registry key. Use Regedt32 and locate
HKLM\System\CurrentControlSet\Services\MasSync\Par ameters. Under the Parameters key create a Reg_SZ value called SMTPProxy. Set the value to the domain defined by the default recipient policy. For example, Microsoft.com. Restart the IIS Admin service. If you are using a front-end/back-end configuration this registry key needs to be added on the front-end server.

7. To configure the Exchange virtual directory to not require SSL

8. Configure Windows SharePoint to use Kerberos authentication by following the steps in KB 832769 HOW TO: Configure Windows SharePoint Services to Use Kerberos Authentication

9. Try to delete items in your mailbox to bring it within limits or contact your Exchange administrator to change the limits on your mailbox.

10. Uncheck anonymous authentication on the Microsoft-Server-ActiveSync virtual directory on the server. Basic authentication should be enabled.

Posted by: floepie

Quote:

Originally Posted by whtrbt7

@floepi
Yes, you can set delegation on 1and1 if you are on the same exchange account. Within a single Exchange account, you can have multiple users. As for retrieving POP, you can't really pull e-mails from another account but you can take the entire account and have a forwarder set by making that e-mail your main account. It's in the admin console.

OK, that can be a really powerful feature for someone who can use it. It should be noted that 4smartphone's plan does *not* allow for user access rights with their $6.99 Exchange account. However, what they do allow for is POP3 retrieval. I am definately going to sign up for 1and1 now...Thanks...

Posted by: 808e46m3

Whtrbt -

Wow, that's a lot of things to do and most of them require that I have access to the exchange server, which I don't. Do I need to do all of them? Is there a way I can tell exactly what the error is? Doesn't seem like other devices have these problems - is this unique to the treo?

Thanks for the help!

Posted by: whtrbt7

The steps are for your specific error code because you are not authenticating into the server. If you don't have access to the server, that is a big problem. I have found that with the Treo, it has many more errors than the QTEK9100 or the QTEK9000. If you want my personal $0.02, you should get rid of the treo and pick up something else.

Posted by: floepie

Sorry, going back to this "group functionality" thing that 4smartphone supposedly does not offer, I'm now re-reading this on 1and1's page, and it seems that in order for others to access my calendar and/or contacts and be able to modify them without seeing my email, they would also need an account. Is this correct?

Or, can I simply dole out some aliases of my account to others with specific rights. If so, this is an incredible deal!

Posted by: korval

I am having an issue 'activesync'ing a Cingular 8125 with our SBS 2003.

I am required to use SSL, and I have manually imported the CER certificate onto the mobile device after exported it from the SBS. It is listed under the root certificates on the phone.

OMA over SSL works fine through pocket IE on the device, but when I try to sync pocket outlook with activesync I get the error "The certificate on the server is invalid." I'm assuming OMA is using the same SSL certificate as activesync is. Both virtual directories have identical directory security settings.

I am using a homebrewed certificate, but something tells me the certificate is not the issue. Everything is enabled and properly configured as far as I can tell. Just wondering if it is indeed an issue with the certificate, and if so what type of certificate would I create (and hopefully not have to pay for).

Posted by: Radiodave

Hi.
I posted a little while ago and I'm still really battling to fix this. All that's happening is that activesync is not displaying calendar items that are created through exchange on my K-Jam. Email, tasks, contacts all sync fine. Calendar items created on the phone sync to exchange no problem, but not the other way around. As a workaround I can get activesync to sync the calendar through the pc, but to do so the device need to be connected via usb, and I need it to sync through gprs. Does anyone have any suggestions?
Much appreciated.

Posted by: whtrbt7

@floepi
If everyone in your company or group has an exchange account, you can set delegation rules to allow them access to a specific person's exchange calendar, or contacts, or notes, etc.... They could then change items through delegation. If you only have 1 account, you just give the login information to someone else so they have access to your entire account and then they can log in using another computer or use OWA. Simple setup.

@korval
Tell me what error code you are getting and I can get you a solution. A lot of times, the homebrew cert is the issue because people don't know how to install a homebrew cert. Instructions have been posted on this thread so take a look back for those instructions.

@Radiodave
Honestly speaking, I think you should export your account to PST and then re-setup your exchange account. I believe that there is an error in your calendar within the database. The other option is to export the calendar into Excel and then deleting everything in the calendar before synchronizing. Import the Excel (do NOT use PST) spreadsheet and then you should be fine to resynchronize one more time. It's a quick fix for the calendar if you have corruption.

Posted by: korval

whtrbt7: The security certificate on the server is invalid. Contact your system administrator or ISP to install a valid certificate on the server and try again.

Support Code:
0x80072F0D

is the error I am getting. I'm new to this forum, I looked through I thought all the pages of the thread but I didn't see homebrew cert instructions.

Posted by: Ishimaru

i'm getting that error as well, but my cert is from Verisign, which i don't understand...

Posted by: whtrbt7

For cert installation, please refer to page 22 of this thread. It's possible you aren't installing the right cert onto the device.

Posted by: jodyo819

I have the same error every once in a while. My sync was working fine then all of a sudden this error showed up. What is aggravating is that it sets my scheduled sync back to manual. I have to keep checking it. Help!

Posted by: floepie

Hi, I'm looking to have my mail from my work/school consolidated into my hosted 1and1 Exchange account. The IT dep't refuses forward to external email addresses, so I need a service that can poll my account (POP3) *and* forward to my Exchange email account *and* remove the email from the server once forwarded.

I know I can setup Outlook 2003 to use both the Exchange and a POP3 account, but when all email clients are shut down, I won't be able to access emails using ActiveSync on a mobile device after all the desktop clients are shut down.

My Yahoo Plus email account can poll a POP3 account, but doesn't do it automatically. Is there such a service that can do this?

Posted by: autigers20

4smartphone's service has this feature built-in. i have found their service to be as good as 1and1's with more features, better website, and MUCH quicker/more helpful support.

Posted by: jayfrost

I am having similar problems and have had no luck with our IT department. I have searched this thread and almost overwhelmend by the amount of info. I seached and found my error code, but there were no specific directions on fixing it. Any help would be great.

I can access Outlook Web access fine using https://webmail.domain.com/oma on my Verizon Vx6700 but when I try to active sync I get the following error.

Your account in Microsoft Exchange Server does not have permission to synchonize with your current settings.

Support code 0x8501001

I also cannot get activesync working thru my pc to the exchange server. It works fine with the local pc but not thru the network to exchange.

I am still running the wireless sync program that came with the Verizon VX6700. We are running Exchange 2003 with SP2.

Any help would be great.

Posted by: jayfrost

Well after some adventures with my IT group, we have gotten to the point now where the error we are receiving is Activesync encounter an error with the server: support code 85010014.

I re-read the thread and tried all the suggestions. I am still getting the same error.

I have found multiple answers to the error code when it happens to the desktop, but mine is on the server. Any suggestions.

Thanks again

Posted by: davidkklim

look like certificate validation for Activesync is on.
Make sure your you have a valid certificates on server. Then make sure the root certificates on your device is trusted by your server certificate.

Posted by: whtrbt7

Page 22 people, page 22. If you get an error 0x85010014, it is an authentication error so follow the directions on page 22 of this thread. Also import the certificate manually because it won't work straight out of the box for many CDMA devices. They just aren't configured correctly for certs. Just because you can access OMA, doesn't mean the certs are correct. Also make sure that you enter the FQDN, NOT the OMA address or the OWA address in the server field.

Posted by: seaneraz

I previously had activesync setup correctly without Push Email, using activesync over GPRS and WiFi.
I recently upgraded the ROM and Exchange SP2 and I am attempting to get them to activesync, but no dice. I have created and installed the nself signed cert with out issue. Whenever I attempt to activesync i get an error about obtaining the network certificate w/ the support code 0x85030027.
I have verified the FQDN on the cert, I have verified the access to the OWA and OMA websites, I have verified that those site are using the specified cert. Can anyone bring clarity to this error?

Thanks a ton!

Posted by: finster869

I have 2 questions, that may or may not be related:

1. We have direct push working with our exchange server 2003. However, when reviewing the log files, we received the following error message indicating that something might not be optimized perfectly:

warning message:

source: server activesync
event id: 3033

description: The average of the most recent [200] heartbeat intervals used by clients is less than or equal to [540]. Make sure that your firewall configuration is set to work correctly with Exchange ActiveSync and direct push technology. Specifically, make sure that your firewall is configured so that requests to Exchange ActiveSync do not expire before they have the opportunity to be processed. For more information about how to configure firewall settings when using Exchange ActiveSync, see Microsoft Knowledge Base article 905013, "Enterprise Firewall Configuration for Exchange ActiveSync Direct Push Technology" (http://go.microsoft.com/fwlink/?link...2&kbid=905013).

We are using a Sonicwall SOHO3 as our firewall.

The Network Connection Inactivity Timeout is set to 30 mins. WE have no other connection timeout settings available with the firewall.

Any suggestions?

2. The majority of the time I receive messages within 5 seconds of them hitting exchange server. However, sometimes I do not receive them until 4 to 8 minutes later. Perhaps these "late messages" are being received in conjunction with a new connection caused by the heartbeat interval? As noted earlier, our firewall only has one timeout connection setting which is set at 30 minutes. Any idea why direct push will sometimes not directly push? Am I losing a connection, and then getting the connection back when a pulse is sent?

Thanks.

Posted by: finster869

As a follow-up, it appears as though my connection is disconnecting at the 5 minute mark....(i.e.) if there is no activity, and I get an email at 7 minutes after the last ping, it will wait until the 9 minute mark before pushing. Anything that happens in the first 1-5 minutes gets pushed immediately.

Posted by: finster869

Ok, I think we figured this out. Under rules on our router there are seperate settings for connection timeouts. We changed the HTTPS and LAN timeout settings from 5 minutes to 30 minutes as well. It appears to now be working. I'll report back if it does not.

Posted by: sbspeed

Hello,

I've been trying to get my Audiovox xv6700 talking to my exchange server 2k3 for the last few days and no luck - I seem to be making progress but can't quite get to the finish line.

Here is what I have:

Audiovox XV6700 w/Windows Mobile 5.0 Build 14354.0.1.1
Windows SBS 2003 w/SP2
I've exported the server cert to the phone

The situation:
I can get to OWA and OMA from outside the network on a PC as well as on the phone - no problems

When I try to sync either wirelessly or via a USB cable on a PC on the network I get the following error:

Your account in Microsoft Exchange Server does not have permission to synchronize with your current settings. Contact your Exchange Server administrator. (which is me)

Support Code:8501000c

If I try to sync wirelessly I get:
Sync could not be completed. Try again later.

Support Code:0x80070002

It syncs with the PC fine, just not the Exchange Server.

Another weird thing I've noticed that might be related is when I connect the phone to the PC via USB, the PC goes into offline files mode - however I'm still connected to the server ie: access file shares, printers, etc.

Any help would be greatly appreciated - I bought this phone in the hopes of getting it working so I could roll them out to a half dozen or so of my clients. I attempted this project 9 months ago with a Samsung i730 with no such luck. I was told Exchange SP2 would fix everything.... I've got 12 days left on my 15 day return period so the countdown has begun.

Thanks in advance!

Posted by: whtrbt7

@sbspeed
I would try to deactivate synchronization through the PC and just use direct synchronization to the Exchange server. Your error code doesn't make any sense because it's not something that is server related. Your other error code 8501000c means that you either have the wrong FQDN for your exchange server setup or your server is rejecting the request to synchronize. I would check the exchange server to see if you have it set up correctly. Regarding your Outlook functionality, your firewall is blocking the request for information by the PPCPE and shutting down active RPC over HTTP to prevent a security breach.

Posted by: sbspeed

Thanks for the quick response.

In activesync on the pc I changed the server source from servername.domain.com to servername.domain.local and was able to get it to sync with exchange. However, that'll never work once outside the network. I changed the server source on the phone to servername.domain.com and I now get this:

You have an incorrect SSL certificate common name in the Host Name field. For example, you may have entered www.tailspintoys.com when the common name on the certificate is actually www.wingtiptoys.com. Make sure the server name is entered correctly.

Support code: 0x80072F06

If I disable SSL I get this:

Your account in Exhange does not have permission to sync with your current settings. Support code:0x8501004

Thanks in advance for any suggestions!

Posted by: finster869

sbpspeed:

1. You need to make sure that the server address is correct. It must be accessible from the internet (i.e. secure.xxxxxx.com).

2. You most likely have a certificate issue as well. Are you using a 3rd party cert? If so, you need to make sure that the name on the cert matches the FQDN listed in my number 1 above.

3. If using a 3rd party certificate, you may actually need to install 2 certificates on the device (the trusted root certificate and the regular certificate).

FYI, it is worth the hassle getting this this to work. Direct Push is amazing once it works.

Posted by: sbspeed

Thanks - that makes sense.

I am under the assumption that mobile carriers only trust certain 3rd party cert issuers? If so, which issuer should I go with?

Posted by: Eagle117

Quote:

Originally Posted by whtrbt7

Push is enabled on the device automatically. You need to have the AKU2.0 ROM installed on your KJAM and you also need to have Exchange Server 2003 SP2 with the Microsoft Exchange Server Activesync Web Administration Tool installed. Once you have all of that, Push is automatic on the KJAM. You will get prompted to secure your device with a password and all contacts, calendar, tasks, and e-mails will get pushed directly to the device.

Does this mean there will not be a way to turn off Push? I have 14 Treo 700w units (which I'm really loving) and half of them have unlimited data plans that we plan on using with DirectPush and half of them we have not purchased data plans for and plan on still having the users sync with USB cables although they are set to use EAS so they could roam to other computers and just use the USB as a network connection. We need to make sure they are not using Push but still able to use EAS. Are there any screenshots of what this config woudl look like?

I'm anxiously awaiting the Treo 700w update for MSFP.

Posted by: sbspeed

Quote:

Originally Posted by sbspeed

Thanks - that makes sense.

I am under the assumption that mobile carriers only trust certain 3rd party cert issuers? If so, which issuer should I go with?

The certificate I'm using was generated by the server. Is this going to cause a problem?

I created a host of server.domain.com that is accesible outside the network.

Any help is appreciated - I am down to a little over a week left before I either get this working or return the phone.

Thanks in advance for the help!!

Posted by: finster869

Quote:

Originally Posted by sbspeed

I believe your theory is incorrect about mobile companies blocking certain certificates. Our company is less than 50 employees and we use our own self-created third-party certificate. I am the only person in my company that has a Sprint phone (everyone else has Verizon), so Sprint doesn't even know my company exists.

You need to make sure that 2 certificates make it to your phone. The first will be for server.domain.com and must match the name perfectly. The second certificate is the trusted "root" certificate for that one, which is the issuer's certificate. I'm not sure if it is the case on all self-created certificates, but our server.domain.com certificate expires in 08, whereas the root certificate (company's name) expires in 16. The differing expiration dates might help you confirm that you have 2 different certificates. The key for us getting this to work was definitely exporting 2 certificates to phone.

Let me know if I can be of any further help.

Posted by: ascssmith

I have active synce setup and working with wi-fi for my corporate email, works flawless.

How do I set it up to use dial-up? i'm sure we don't have a dial-up link to our exchange 2003 server?

Any help would be GREATLY appreciated...

AL

Posted by: AlexC

Quote:

Originally Posted by sbspeed

Thanks for the quick response.

In activesync on the pc I changed the server source from servername.domain.com to servername.domain.local and was able to get it to sync with exchange. However, that'll never work once outside the network. I changed the server source on the phone to servername.domain.com and I now get this:

You have an incorrect SSL certificate common name in the Host Name field. For example, you may have entered www.tailspintoys.com when the common name on the certificate is actually www.wingtiptoys.com. Make sure the server name is entered correctly.

Support code: 0x80072F06

If I disable SSL I get this:

Your account in Exhange does not have permission to sync with your current settings. Support code:0x8501004

Thanks in advance for any suggestions!

I have been having this problem as well. I have 100% exchange admin access to the server, and have verified the settings.

I completed the instructions online in one of the KB's on Microsoft's website, and created a second-nonsecure oma access vhost, and still am running in to this problem. I've restarted the services, restarted treo, etc.

I've been poking around - but it's not worth the $9 to find out on experts-exchange when I put in the 0x8501004 error.

I delted the ActiveSync profile, and added it again on the treo as well...

-Alex

Posted by: Eagle117

I only saw that error code in one Experts Exchange question and this was the accepted answer:

Is the certificate in question a home grown certificate or a certificate that you have purchased? If it is the former, have you imported the certificate to the device? If it is the latter, who issued the certificate.
Exchange Active Sync uses the same web site as OWA, ActiveSync is a sub folder of the OMA folder. Odd that you get the OWA login page - you should get a user name and password prompt then a text based version of OWA suitable for display on a small screen.

The original asker then said they installed a Verisign certificate and everything started working.

Posted by: sbspeed

Quote:

Originally Posted by finster869

Thanks for your help - I think this is my problem as I've only imported one cert onto the phone.

I got this cert from going to the server, opening IE, tools/options/content/certificates - and exported the server.domain.com certificate

Where can I find the other certificate?

thanks for all the help - I feel like I'm "that" close...

Posted by: finster869

Quote:

Originally Posted by sbspeed

1. OK, when you go to OWA via your PC, does the login prompt come up automatically, or do you get a certificate warning?

2. Go to OWA on your PC, and after login click on the lock (secured web page icon). Click on the "Certification Path" tab......does it show 2 certificates (1 a subcategory of the other???) You need for there to be 2 there, and for both of them to be installed on the phone.

If you are getting a certificate warning when accessing owa via ie, then you should click on the lock icon and hit "install" under the general tab. Click "next", then check the box for "plac all certificates in this store" and browse to . Install certificate into "Trusted Publishers". Repeate the installation to "Third-Party root certificates" (you only need to do it to one of these, but I don't remember which one!!). Log out of OWA, close the browser, reopen the browser to go back to OWA and this time there should be no error message. Click on the lock lock icon and under the "certification path" tab there should now be 2 certificates. Go to Options under IE Browser, content, and "Trusted Root Certification Authorites" should have the 2nd certificate. Export and install on the phone. That should do it! Good luck, and please let me know if this helped.

Posted by: sbspeed

Quote:

Originally Posted by finster869

OK - I followed your directions and got the 2nd certificate onto the phone.

However, the browser doesn't show the 2 certificates as a subset. The first cert I'm getting is actually from our cisco router - it's cisco.domain.com and the other cert is server.domain.com - does this seem right?

Both of those certs are on the phone but it's not working - same error about me not having permission.

I do have a question regarding Exchange though. I have setup the mobile services under global settings to my providers sms domain which is @vtext.com - I'm wondering just HOW the exchange server knows where to send the sms message to? I assume it would need to send it to myphonenumber@vtext.com, correct? If so, how does the server get this information - the users phone number? And could the fact that this isn't setup correctly be causing me to have these issues? Or does this just automagically work and I shouldn't worry about that.

Thanks again for all the help. T-minus 7 days and counting....

Posted by: Eagle117

Quote:

Originally Posted by sbspeed

I'm wondering just HOW the exchange server knows where to send the sms message to?

After your first successfull manual sync with the Exchange server it will say you can now set it up to sync as items arrive. You can then go to your ActiveSync properties under the "Schedule" tab and there will be a list of syncing manually, every 5 minutes, every 10 minutes, etc, and then a new items of "As items arrive" You can set AS to sync "As Items Arrive" off and on peak times and there is another link on the same page to setup this feature. From there you select which carrier (as setup on your Exchange Server) and it fills in your cell phone number. Verify this is correct and away you go. You will need to sync one more time after setting these and then it should be automatic.

Posted by: whtrbt7

Ugh, I'm currently bushed with work and in asia to boot. Q&A time for Exchange Server lovers.

@Eagle117
You asked if Direct Push can be turned off. The answer is yes, it can. You just need to go to Activesync Options and go to schedule. Where it says As New Items Arrive... you set to interval syncs or even manual. This is a great option for those of us with GSM devices since we can lower GPRS and EDGE costs using this method.

Regarding the Treo 700w units, I still don't like them as much since I belong to the World Traveler crowd that needs their information extremely mobile everywhere they go. The AKU2.0 update for it will be great but there is a workaround to install AKU2.0 with a pre-released module to make the Treo 700w direct Push now. Those of us with WiFi on our devices can activesync manually via the 802.11G connection and be able to get all of our data very quickly. This is a great cost reducer when traveling.

@ascssmith
You want to dial-up to your Exchange server??? That's a new one since the speed is going to be extremely slow and the costs are going to be astronomical. It's your funeral though so here's what you need to do: You need to go into the AD and have your user be allowed dial-up access to the server. The Authentication for dial-up connection will be the same when you dial in. Make sure that you have an active modem connected to the server and when you dial-in, the server should prompt you for username and password. Voila! Instant dial-up for Exchange. Just watch you telephone charges soar as you download your information at a blazing 56kbps.

@AlexC
Some of the Treo 700w units I have encountered just aren't willing to connect with the exchange server correctly. It could be a possible flash error when flashing the ROM onto the device. Don't be discouraged by faulty merchandise.

@Certificate questions on this thread
I have posted the certificate installation instructions at least 2-3 times on this thread. You guys should really spend some time to read through the thread because you probably have other questions which I have answered here as well. I post answers on Experts Exchange and I can tell you that everything that I post here is very similar to what you get on Experts Exchange. I do this for a living so if you want answers and are willing to do the grunt work yourselves, I have created this resource here for you guys specifically.

Posted by: OSoAmazin

Okay, I had syncing working fine on my MDA for about a week. Then suddenly, I stopped getting messages. When I sync, AS4.1 looks like it is syncing with the server and finding messages but none of them show on my device. I have even removed the association with the server and reinstalled it and I can see all of my folders but I cant see any messages in any of them even though I know they are there. Any ideas for this one?

G.