ActiveSync SSL cert problems - PDA2, XDA IIi, 2020i General

Hi,
I've recently brought an O2 XDAIIi and am just getting it set up now. All is well other than an INTERNET_55 error in activesync when trying to sync with my exchange server (actually an SBS 2003 box). I understand this is an SSL cert error and that my device requires my server root cert.
I've copied addrootcert.exe onto the device and what I thought was the correct cert from the server. I can install it fine but continue to get the same error so I'm assuming I've added the wrong cert? I'm obviously not as up to speed with SSL as I should be so here's how I got the cert I installed:
From mmc with certificates (local computer) snap in loaded, expand personal then certificates. Here I have 2 certs. FFDOM01 (the name of the server) and thesofa.homeip.net (my dyndns address). It's the second of these that I exported then installed on the device.
I'm sure that people must have come across this loads of times before but I can't find instructions on this site as to which cert I'm meant to use. I appreciate this is a bit of a noobie question but any step by step info would be greatly appreciated.
Thanks

Assuming that Certificate services is installed on your SBS server ( Not really played with SBS ) go to http(s)://<SBS Server>/Certsrv and from the Select a task menu select
'Download a CA certificate, certificate chain, or CRL' followed by 'Download CA certificate'
Its the root CA certificate that is required so that your XDA2i will trust your internal PKI (public key infrastructure).

Related

Treo750, WM6 won't sync with server

Hi,
I just upgraded my Treo 750 with the AT&T WM6 build today. Everything seems to be working fine, except that I cannot sync with my company's OWA server. Activesync says that it's synching, but this goes on for a long time, then it stops and the message "Waiting For Network" appears at the bottom of the screen.
Others on the same server can sync fine with their devices, so it's not a server issue. I can download my GMail just fine so it's not an issue with internet settings.
Any ideas, or anyone having the same problem? I haven't been able to find related posts.
Thanks
Kevin
This may be of some help...
http://discussion.treocentral.com/showthread.php?t=151190
Please disregard this thread. I got it working. Thanks!
Same with me.
I Just upgrade my 750v to WM6.
But, now I cannot sync the with my exchange server 2003 SP3. (In WM5, I always sync successfully)
I always got an error : The security certificate on the server is not valid. Contact your Exchange Server administrator or ISP to install a valid certificate on the server.
I even add the Secure DWord key (0) into HKCU/Software/Microsoft/ActiveSync/Partners registry. But error still shown every time I tried to sync.
Anyone can help me ?

Unable to access windows shares over WiFi

Hi,
Im trying to access windows shares on my windows 2003 server, but no matter what I do Im unable to get through.
Im using Resco File Explorer, and I can see the server and even access the FTP server on it, but for some reason the windows shares dont work. I get different error messages, but basically they say "Cannot connect shared path : Unknown error.".
Im able to connect to the shares from PCs across the network, so the server config should be ok.
Please advise.
Your Win2k3 Server is certainly a domain controler. Domain controler require SMB Signing to get someon authentificated. As Windows mobile doesn't support SMB signing, the only way is to have it disabled on the server through GPO
Thanks m8.. With your hint and google I was able to find the following, which did the trick:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters
Value Name: EnableSecuritySignature
Data Type: REG_DWORD
Data: 0 (disable), 1 (enable)

Exchange Sync Problem on Dutty's Newest 6.1

I installed Dutty's newest 6.1 last night and cannot get Exchange to sync. I used the bundled connection setup tool to set for AT&T. When I start the sync, it comes to a screen that asks me for my Exchange password, but it won't accept it and keeps asking for it. I know I am using the correct password and I reset it just to make sure. I don't have this problem on my Treo when I set up Exchange sync. I tried changing the advanced connection settings from MEdia Net to My ISP and that hasn't worked either. Any ideas anyone?
ActiveSync Results:
Result: Access was denied. Choose Configure Server on the ActiveSync menu to check your server username and password.
Support code: 0x85010002
Halp? Please?
double check your exchange server settings, sometime or most the time you need ssl checked.Your domain correct as well.Also too u prob need the server cert installed to your device.
Google the support code

Diamond 3G Sync error

Hi all,
I'm having an issue when trying to synchronize two diamonds and a cruise (all of them running wm6.1 FRE) with an Exchange Server 2003 SP2. Each time I try to synchronise through GPRS/3G , i'm getting an error (n° 0x80072EE2, wich means server not available).
Below is my initial situation :
Synchronization is ok using USB on all device. ActiveSync 4.5 is configured to use server "mail.mydomain.com", refering to a different IP address depending on whether synchronization is initiated from outside or inside local network. From outside, a redirection from gandi.net transfers mail.mydomain.com to https://xxx.xxx.xxx.xxx/exchange, "xxx.xxx..." being my exchange server's public IP.
After spending days looking for a workaround, here's what I've tried :
- Disabling WM DNS cache (tried with both DnsCacheEnable and DnsCacheEnabled registry entries) and soft reseting the device, as suggested here : http://forum.soft32.com/pda/Wireless-Attempt-results-Error-0x80072EE2-ftopict76576.html ;
- Unchecking the "use proxy" box in my connection's advanced properties ;
- Placing the OWA redirection (https://xxx.xxx.xxx.xxx/exchange) on a new subdomain : webmail.mydomain.com, in order to have mail.mydomain.com pointing the same public IP address inside and outside the network.
Now I have :
mail.mydomain.com --> public_ip
webmail.mydomain.com --> https://public_ip/exchange
So, theorically, putting my public IP address or mail.mydomain.com inside ActiveSync server's configuration should be exactly the same (except for certificates). Here is my problem : When using directly my IP address, I can see the request going through the firewall, to port 443 of my exchange server (but getting a certificate error, since i'm supposed to be connecting using mail.mydomain.com). When using mail.mydomain.com, I still get the 0x80072EE2 error, and nothing goes through my firewall..........
Looks like there is no DNS lookup during wireless synchronization when using a domain name in activesync configuration...
Thanks for reading, any help would be great.

[Q] Monitoring SSL data from my proxy

I have a need to see all of the traffic from my Android (sent/received via WiFi). I have a squid proxy with ssl bump working. However, for that traffic which is does not originate with a browser, I cannot get the device to accept the certificate which squid provides (this is an untrusted cert). I can root the phone if necessary. It appears to me that I either need to turn off cert validation at a very low level, or make my cert a look like a valid one. I have added my cert to the exception list on the phone and that didn't change anything. I am not interested in packets from email or most apps. Only from the OS itself.
Any ideas?

Categories

Resources