Thanks to the articles etc I have read here I have got my ISA 2006 server publishing with FBA and currently Web Access, Active Sync and OMA are all working as expected. We have a few new devices that are using RoadSync but these don't seem to work. Im told they only use over the air sync rather than a client (a la active sync). The ISA logs show anonymous connections like this:
The normal ActiveSync ones do work. I would rather not open https completely to test the device without ISA. Does anyone know what I may be doing wrong?
Further Info: There is currently no other firewall apart from ISA. The Cert is home grown and I have copied the root and mail certs to the devices (same as the active sync ones). Let me know if i've missed anything.
Thanks for the reply. Yes its HTTPS. We have a Ent CA so I created a cert for the mailserver and then imported the root and mail certs onto the device. It all works for the Active Sync phones. I have tried 3 different types of RoadSync based phone but the only logs I get are the errors from ISA. When the AS ones work they show the username rather than anonymous. I was guessing it was something to do with ISA and its FBA but if thats not the case then im stumped. Did you have to do anything noticeably different for the RoadSync ones?
I´ve got it to work! (But without FBA ). I had the same problem as you and when we changed it from FBA to ordinary HTTPS, it worked. Unfortunaly we want to run FBA so this is not the solution though. Have you got any new feedback?
Hi, everybody. I have got it to work finally!!!! Try to disable "Require users to authenticate" in the listener for the EAS rule on the ISA server. Then add "Anonymous" users to the Microsoft-Server-ActiveSync virtual directory in IIS on the mailserver(s). I dont know if this is a security issue or not but the EAS with FBA, for Erisccon phones works!
From: United Kingdom
If you want to use RoadSync and also need FBA then I don't really see any option apart from maybe creating new listeners/rules specifically for RoadSync and accepting the fact that anonymous connections are permitted for this service only.
I appreciate it is not an ideal solution, but just wanted to point out what is lost without FBA.
Hi, I recently spoke the Ericsson support and they are aware of the problem but doesnt have a solution. Its more of a RoadSync issue because SE OEM the product from Dataviz. I have spoken to Dataviz directly but they refer to SE. (Moment 22.)