"Fredly" wrote:

> Hello-
>
> We tried to set up a couple Treos using activesync.  We had trouble making
> this work with SSL enabled.  Unchecking SSL enables the sync to happen right
> away.  There are quite a few threads on this topic and I think we may start
> fighting with this again next week.  We are a small company and are only
> moderately worried about security.  Cost vs. risk...  Here is my question:
> How much danger are we in running this without SSL?
>
> Is my email being transmitted in clear text?
>
> Is my server address as well as my user's username and password being
> transmitted in clear text?
>
> How do malicious peolpe 'sniff' this traffic anyways?
>
> Thank you in advance for your time!!
>
>
>
>

"Andrew" <And***@discussions.microsoft.com> wrote in message
news:AE81C4A9-CDF2-452F-99E7-98AE0F449B30@microsoft.com...
> I've got a number of clients, including myself, that use the TREO 650 on
> both
> Sprint and Verizon's network, connecting to both SBS Standard and Premium,
> without any issues using the default settings including SSL.
>
> What are your specific problems?
>
> As long as you can connect to https://mydomain.com/exchange or
> https://mydomain.com/oma (need to authenticate) the TREO 650 and VersaMail
> should work just fine.  Make sure that you use the VersaMail setup wizard
> and
> launch it from Hotsync Manager to configure the settings to access your
> server.
>
> Also make sure that you have enabled Outlook Mobile Access in the Internet
> Connection Wizard from the To Do List in Server Management.
> "Fredly" wrote:
>
>> Hello-
>>
>> We tried to set up a couple Treos using activesync.  We had trouble
>> making
>> this work with SSL enabled.  Unchecking SSL enables the sync to happen
>> right
>> away.  There are quite a few threads on this topic and I think we may
>> start
>> fighting with this again next week.  We are a small company and are only
>> moderately worried about security.  Cost vs. risk...  Here is my
>> question:
>> How much danger are we in running this without SSL?
>>
>> Is my email being transmitted in clear text?
>>
>> Is my server address as well as my user's username and password being
>> transmitted in clear text?
>>
>> How do malicious peolpe 'sniff' this traffic anyways?
>>
>> Thank you in advance for your time!!
>>
>>
>>
>>

"Fredly" wrote:

> Hello-
>
> We tried to set up a couple Treos using activesync.  We had trouble making
> this work with SSL enabled.  Unchecking SSL enables the sync to happen right
> away.  There are quite a few threads on this topic and I think we may start
> fighting with this again next week.  We are a small company and are only
> moderately worried about security.  Cost vs. risk...  Here is my question:
> How much danger are we in running this without SSL?
>
> Is my email being transmitted in clear text?
>
> Is my server address as well as my user's username and password being
> transmitted in clear text?
>
> How do malicious peolpe 'sniff' this traffic anyways?
>
> Thank you in advance for your time!!
>
>
>
>

"j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com> wrote in
message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
>I was able to synch just fine using ssl, over a verizon network with my
>treo
> 650. The biggest problem with this is the server certificate. I use a self
> signed cert, issued by the server running exchange 2003, which has a
> public
> IP address associated with the fully qualified domain name of the server.
> MS
> says you have to have a certificate authority and or a verisign type
> certificate; this is wrong. The key is to have the fully qualified domain
> name such as mail.microsoft.com which can be reached via a public IP
> address.
> Set the treo to go to https://mail.microsoft.com/exchange. When you do it
> this way, the browser in the treo recognizes the certificate as coming
> from
> the domain name as typed in.
>
> "Fredly" wrote:
>
>> Hello-
>>
>> We tried to set up a couple Treos using activesync.  We had trouble
>> making
>> this work with SSL enabled.  Unchecking SSL enables the sync to happen
>> right
>> away.  There are quite a few threads on this topic and I think we may
>> start
>> fighting with this again next week.  We are a small company and are only
>> moderately worried about security.  Cost vs. risk...  Here is my
>> question:
>> How much danger are we in running this without SSL?
>>
>> Is my email being transmitted in clear text?
>>
>> Is my server address as well as my user's username and password being
>> transmitted in clear text?
>>
>> How do malicious peolpe 'sniff' this traffic anyways?
>>
>> Thank you in advance for your time!!
>>
>>
>>
>>

"Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
> Actually that has nothing to do with Exchange ActiveSync but when you use
> the Blazer browser instead. In VersaMail you would just use as in your
> example: mail.microsoft.com. The Treo with EAS does SSL by default.
>
> I have a public IP with a FQDN associated to it and when I do use Blazer
to
> use OMA, it still prompts about the certificate but it lets you go on. I
> don't think I would try to use OWA with the Treo unless you had the WiFi
> adapter and accessing it at high-speeds. OMA works fine (well it could be
> faster) for the normal Internet access.
>
> --
> Rick Faria - MCSE / A+
> RDF Technical Services - www.rdfts.com
> Email: support at rdfts dot com
>
>
> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com> wrote
in
> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
> >I was able to synch just fine using ssl, over a verizon network with my
> >treo
> > 650. The biggest problem with this is the server certificate. I use a
self
> > signed cert, issued by the server running exchange 2003, which has a
> > public
> > IP address associated with the fully qualified domain name of the
server.
> > MS
> > says you have to have a certificate authority and or a verisign type
> > certificate; this is wrong. The key is to have the fully qualified
domain
> > name such as mail.microsoft.com which can be reached via a public IP
> > address.
> > Set the treo to go to https://mail.microsoft.com/exchange. When you do
it
> > this way, the browser in the treo recognizes the certificate as coming
> > from
> > the domain name as typed in.
> >
> > "Fredly" wrote:
> >
> >> Hello-
> >>
> >> We tried to set up a couple Treos using activesync.  We had trouble
> >> making
> >> this work with SSL enabled.  Unchecking SSL enables the sync to happen
> >> right
> >> away.  There are quite a few threads on this topic and I think we may
> >> start
> >> fighting with this again next week.  We are a small company and are
only
> >> moderately worried about security.  Cost vs. risk...  Here is my
> >> question:
> >> How much danger are we in running this without SSL?
> >>
> >> Is my email being transmitted in clear text?
> >>
> >> Is my server address as well as my user's username and password being
> >> transmitted in clear text?
> >>
> >> How do malicious peolpe 'sniff' this traffic anyways?
> >>
> >> Thank you in advance for your time!!
> >>
> >>
> >>
> >>
>
>

"Fredly" <a**@email.com> wrote in message
news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
> Thank you for all of the replies!!
>
> I am talking about Activesync over TCP / IP (or whatever that is
> considered
> when it's wireless, GPRS?), not OMA or OWA.  We have a public IP only, no
> FQDN.  This is what was used during the initial setup and the Server
> created
> certificate works great for OWA, OMA, RWW, Etc...
>
> SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on Sprint.
>
> I was a little lost on Andrews's comment of "Make sure that you use the
> VersaMail setup wizard and launch it from Hotsync Manager to configure the
> settings to access your server."  We did not do this.  We simply ran the
> VersaMail setup on the device.  With SSL checked on the server, it gives
> an
> error on the Treo.  Without SSL checked on the server, it works great.  My
> client does not want to put a bunch of time into troubleshooting this.  We
> are only running one Treo now for testing.  We would like to set up
> several
> more.  I need to give him a responsible answer as to whether or not we
> "MUST" figure out the SSL thing.  I've seen so many references to issues
> with this on the newsgroups, I don't want to go to the mat to authorize
> the
> time to fix this and then discover that it's a black hole of time with no
> resolution.  Anyone have experience with this trouble and find a
> resolution?
> Anybody running without SSL and not worried about it?  Here's why I'm so
> against it, am I passing my IP, username and password in clear text?  Need
> I
> say more.
>
> Thank you in advance for your time and attention!
>
>
> "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
> news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
>> Actually that has nothing to do with Exchange ActiveSync but when you use
>> the Blazer browser instead. In VersaMail you would just use as in your
>> example: mail.microsoft.com. The Treo with EAS does SSL by default.
>>
>> I have a public IP with a FQDN associated to it and when I do use Blazer
> to
>> use OMA, it still prompts about the certificate but it lets you go on. I
>> don't think I would try to use OWA with the Treo unless you had the WiFi
>> adapter and accessing it at high-speeds. OMA works fine (well it could be
>> faster) for the normal Internet access.
>>
>> --
>> Rick Faria - MCSE / A+
>> RDF Technical Services - www.rdfts.com
>> Email: support at rdfts dot com
>>
>>
>> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com> wrote
> in
>> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
>> >I was able to synch just fine using ssl, over a verizon network with my
>> >treo
>> > 650. The biggest problem with this is the server certificate. I use a
> self
>> > signed cert, issued by the server running exchange 2003, which has a
>> > public
>> > IP address associated with the fully qualified domain name of the
> server.
>> > MS
>> > says you have to have a certificate authority and or a verisign type
>> > certificate; this is wrong. The key is to have the fully qualified
> domain
>> > name such as mail.microsoft.com which can be reached via a public IP
>> > address.
>> > Set the treo to go to https://mail.microsoft.com/exchange. When you do
> it
>> > this way, the browser in the treo recognizes the certificate as coming
>> > from
>> > the domain name as typed in.
>> >
>> > "Fredly" wrote:
>> >
>> >> Hello-
>> >>
>> >> We tried to set up a couple Treos using activesync.  We had trouble
>> >> making
>> >> this work with SSL enabled.  Unchecking SSL enables the sync to happen
>> >> right
>> >> away.  There are quite a few threads on this topic and I think we may
>> >> start
>> >> fighting with this again next week.  We are a small company and are
> only
>> >> moderately worried about security.  Cost vs. risk...  Here is my
>> >> question:
>> >> How much danger are we in running this without SSL?
>> >>
>> >> Is my email being transmitted in clear text?
>> >>
>> >> Is my server address as well as my user's username and password being
>> >> transmitted in clear text?
>> >>
>> >> How do malicious peolpe 'sniff' this traffic anyways?
>> >>
>> >> Thank you in advance for your time!!
>> >>
>> >>
>> >>
>> >>
>>
>>
>
>

"John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
news:e50b56P9FHA.636@TK2MSFTNGP10.phx.gbl...
> Fred, instead of waiting for answer from me or anyone else since time is
> critical, I would put a call into Microsoft PSS to see if they can resolve
> the issue.  As I stated before, this is not OMA issue as some have
> suggested, its ActiveSync as we both know.  I will still troubleshooting
> this but have not resolved it yet without disabling SSL.
>
> --
> John Oliver, Jr.
> MCSE, MCT, CCNA, Exchange MVP
> Microsoft Certified Partner
>
> "Fredly" <a**@email.com> wrote in message
> news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
> > Thank you for all of the replies!!
> >
> > I am talking about Activesync over TCP / IP (or whatever that is
> > considered
> > when it's wireless, GPRS?), not OMA or OWA.  We have a public IP only,
no
> > FQDN.  This is what was used during the initial setup and the Server
> > created
> > certificate works great for OWA, OMA, RWW, Etc...
> >
> > SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on Sprint.
> >
> > I was a little lost on Andrews's comment of "Make sure that you use the
> > VersaMail setup wizard and launch it from Hotsync Manager to configure
the
> > settings to access your server."  We did not do this.  We simply ran the
> > VersaMail setup on the device.  With SSL checked on the server, it gives
> > an
> > error on the Treo.  Without SSL checked on the server, it works great.
My
> > client does not want to put a bunch of time into troubleshooting this.
We
> > are only running one Treo now for testing.  We would like to set up
> > several
> > more.  I need to give him a responsible answer as to whether or not we
> > "MUST" figure out the SSL thing.  I've seen so many references to issues
> > with this on the newsgroups, I don't want to go to the mat to authorize
> > the
> > time to fix this and then discover that it's a black hole of time with
no
> > resolution.  Anyone have experience with this trouble and find a
> > resolution?
> > Anybody running without SSL and not worried about it?  Here's why I'm so
> > against it, am I passing my IP, username and password in clear text?
Need
> > I
> > say more.
> >
> > Thank you in advance for your time and attention!
> >
> >
> > "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
> > news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
> >> Actually that has nothing to do with Exchange ActiveSync but when you
use
> >> the Blazer browser instead. In VersaMail you would just use as in your
> >> example: mail.microsoft.com. The Treo with EAS does SSL by default.
> >>
> >> I have a public IP with a FQDN associated to it and when I do use
Blazer
> > to
> >> use OMA, it still prompts about the certificate but it lets you go on.
I
> >> don't think I would try to use OWA with the Treo unless you had the
WiFi
> >> adapter and accessing it at high-speeds. OMA works fine (well it could
be
> >> faster) for the normal Internet access.
> >>
> >> --
> >> Rick Faria - MCSE / A+
> >> RDF Technical Services - www.rdfts.com
> >> Email: support at rdfts dot com
> >>
> >>
> >> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com>
wrote
> > in
> >> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
> >> >I was able to synch just fine using ssl, over a verizon network with
my
> >> >treo
> >> > 650. The biggest problem with this is the server certificate. I use a
> > self
> >> > signed cert, issued by the server running exchange 2003, which has a
> >> > public
> >> > IP address associated with the fully qualified domain name of the
> > server.
> >> > MS
> >> > says you have to have a certificate authority and or a verisign type
> >> > certificate; this is wrong. The key is to have the fully qualified
> > domain
> >> > name such as mail.microsoft.com which can be reached via a public IP
> >> > address.
> >> > Set the treo to go to https://mail.microsoft.com/exchange. When you
do
> > it
> >> > this way, the browser in the treo recognizes the certificate as
coming
> >> > from
> >> > the domain name as typed in.
> >> >
> >> > "Fredly" wrote:
> >> >
> >> >> Hello-
> >> >>
> >> >> We tried to set up a couple Treos using activesync.  We had trouble
> >> >> making
> >> >> this work with SSL enabled.  Unchecking SSL enables the sync to
happen
> >> >> right
> >> >> away.  There are quite a few threads on this topic and I think we
may
> >> >> start
> >> >> fighting with this again next week.  We are a small company and are
> > only
> >> >> moderately worried about security.  Cost vs. risk...  Here is my
> >> >> question:
> >> >> How much danger are we in running this without SSL?
> >> >>
> >> >> Is my email being transmitted in clear text?
> >> >>
> >> >> Is my server address as well as my user's username and password
being
> >> >> transmitted in clear text?
> >> >>
> >> >> How do malicious peolpe 'sniff' this traffic anyways?
> >> >>
> >> >> Thank you in advance for your time!!
> >> >>
> >> >>
> >> >>
> >> >>
> >>
> >>
> >
> >
>
>

"Fredly" <a**@email.com> wrote in message
news:OFbivXQ9FHA.600@tk2msftngp13.phx.gbl...
> John-
>
> Thank you for the advice!
>
> I'm not quite ready to drop the coin for that one.  Let me know if you
> ever
> do:)  I take it you have some users accessing Activesync via Treos or
> equivalent without SSL?  Do you mind if I ask how many, approximately?  I
> take it you are comfortable with this?  I hope I don't sound at all
> abrasive
> with that cause I'm not.  Honestly, I can't see where the danger of being
> sniffed is.  I guess I don't know enough about it.
>
>
> "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> news:e50b56P9FHA.636@TK2MSFTNGP10.phx.gbl...
>> Fred, instead of waiting for answer from me or anyone else since time is
>> critical, I would put a call into Microsoft PSS to see if they can
>> resolve
>> the issue.  As I stated before, this is not OMA issue as some have
>> suggested, its ActiveSync as we both know.  I will still troubleshooting
>> this but have not resolved it yet without disabling SSL.
>>
>> --
>> John Oliver, Jr.
>> MCSE, MCT, CCNA, Exchange MVP
>> Microsoft Certified Partner
>>
>> "Fredly" <a**@email.com> wrote in message
>> news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
>> > Thank you for all of the replies!!
>> >
>> > I am talking about Activesync over TCP / IP (or whatever that is
>> > considered
>> > when it's wireless, GPRS?), not OMA or OWA.  We have a public IP only,
> no
>> > FQDN.  This is what was used during the initial setup and the Server
>> > created
>> > certificate works great for OWA, OMA, RWW, Etc...
>> >
>> > SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on Sprint.
>> >
>> > I was a little lost on Andrews's comment of "Make sure that you use the
>> > VersaMail setup wizard and launch it from Hotsync Manager to configure
> the
>> > settings to access your server."  We did not do this.  We simply ran
>> > the
>> > VersaMail setup on the device.  With SSL checked on the server, it
>> > gives
>> > an
>> > error on the Treo.  Without SSL checked on the server, it works great.
> My
>> > client does not want to put a bunch of time into troubleshooting this.
> We
>> > are only running one Treo now for testing.  We would like to set up
>> > several
>> > more.  I need to give him a responsible answer as to whether or not we
>> > "MUST" figure out the SSL thing.  I've seen so many references to
>> > issues
>> > with this on the newsgroups, I don't want to go to the mat to authorize
>> > the
>> > time to fix this and then discover that it's a black hole of time with
> no
>> > resolution.  Anyone have experience with this trouble and find a
>> > resolution?
>> > Anybody running without SSL and not worried about it?  Here's why I'm
>> > so
>> > against it, am I passing my IP, username and password in clear text?
> Need
>> > I
>> > say more.
>> >
>> > Thank you in advance for your time and attention!
>> >
>> >
>> > "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
>> > news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
>> >> Actually that has nothing to do with Exchange ActiveSync but when you
> use
>> >> the Blazer browser instead. In VersaMail you would just use as in your
>> >> example: mail.microsoft.com. The Treo with EAS does SSL by default.
>> >>
>> >> I have a public IP with a FQDN associated to it and when I do use
> Blazer
>> > to
>> >> use OMA, it still prompts about the certificate but it lets you go on.
> I
>> >> don't think I would try to use OWA with the Treo unless you had the
> WiFi
>> >> adapter and accessing it at high-speeds. OMA works fine (well it could
> be
>> >> faster) for the normal Internet access.
>> >>
>> >> --
>> >> Rick Faria - MCSE / A+
>> >> RDF Technical Services - www.rdfts.com
>> >> Email: support at rdfts dot com
>> >>
>> >>
>> >> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com>
> wrote
>> > in
>> >> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
>> >> >I was able to synch just fine using ssl, over a verizon network with
> my
>> >> >treo
>> >> > 650. The biggest problem with this is the server certificate. I use
>> >> > a
>> > self
>> >> > signed cert, issued by the server running exchange 2003, which has a
>> >> > public
>> >> > IP address associated with the fully qualified domain name of the
>> > server.
>> >> > MS
>> >> > says you have to have a certificate authority and or a verisign type
>> >> > certificate; this is wrong. The key is to have the fully qualified
>> > domain
>> >> > name such as mail.microsoft.com which can be reached via a public IP
>> >> > address.
>> >> > Set the treo to go to https://mail.microsoft.com/exchange. When you
> do
>> > it
>> >> > this way, the browser in the treo recognizes the certificate as
> coming
>> >> > from
>> >> > the domain name as typed in.
>> >> >
>> >> > "Fredly" wrote:
>> >> >
>> >> >> Hello-
>> >> >>
>> >> >> We tried to set up a couple Treos using activesync.  We had trouble
>> >> >> making
>> >> >> this work with SSL enabled.  Unchecking SSL enables the sync to
> happen
>> >> >> right
>> >> >> away.  There are quite a few threads on this topic and I think we
> may
>> >> >> start
>> >> >> fighting with this again next week.  We are a small company and are
>> > only
>> >> >> moderately worried about security.  Cost vs. risk...  Here is my
>> >> >> question:
>> >> >> How much danger are we in running this without SSL?
>> >> >>
>> >> >> Is my email being transmitted in clear text?
>> >> >>
>> >> >> Is my server address as well as my user's username and password
> being
>> >> >> transmitted in clear text?
>> >> >>
>> >> >> How do malicious peolpe 'sniff' this traffic anyways?
>> >> >>
>> >> >> Thank you in advance for your time!!
>> >> >>
>> >> >>
>> >> >>
>> >> >>
>> >>
>> >>
>> >
>> >
>>
>>
>
>

"John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
news:#QOyQjQ9FHA.744@TK2MSFTNGP10.phx.gbl...
> I have two clients with about 10 Treos each using Versamail but with SSL
> enabled.  They have SBS 2003 which works fine with SSL enabled using
> Activesync.  This is what I am troubleshooting as to why it works with SBS
> but not regular exchange server.  My understanding so far is that the
> Exchange Server must be a GC for this to work correctly.  This is what I
am
> testing and why this is the case.
>
> --
> John Oliver, Jr.
> MCSE, MCT, CCNA, Exchange MVP
> Microsoft Certified Partner
>
> "Fredly" <a**@email.com> wrote in message
> news:OFbivXQ9FHA.600@tk2msftngp13.phx.gbl...
> > John-
> >
> > Thank you for the advice!
> >
> > I'm not quite ready to drop the coin for that one.  Let me know if you
> > ever
> > do:)  I take it you have some users accessing Activesync via Treos or
> > equivalent without SSL?  Do you mind if I ask how many, approximately?
I
> > take it you are comfortable with this?  I hope I don't sound at all
> > abrasive
> > with that cause I'm not.  Honestly, I can't see where the danger of
being
> > sniffed is.  I guess I don't know enough about it.
> >
> >
> > "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> > news:e50b56P9FHA.636@TK2MSFTNGP10.phx.gbl...
> >> Fred, instead of waiting for answer from me or anyone else since time
is
> >> critical, I would put a call into Microsoft PSS to see if they can
> >> resolve
> >> the issue.  As I stated before, this is not OMA issue as some have
> >> suggested, its ActiveSync as we both know.  I will still
troubleshooting
> >> this but have not resolved it yet without disabling SSL.
> >>
> >> --
> >> John Oliver, Jr.
> >> MCSE, MCT, CCNA, Exchange MVP
> >> Microsoft Certified Partner
> >>
> >> "Fredly" <a**@email.com> wrote in message
> >> news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
> >> > Thank you for all of the replies!!
> >> >
> >> > I am talking about Activesync over TCP / IP (or whatever that is
> >> > considered
> >> > when it's wireless, GPRS?), not OMA or OWA.  We have a public IP
only,
> > no
> >> > FQDN.  This is what was used during the initial setup and the Server
> >> > created
> >> > certificate works great for OWA, OMA, RWW, Etc...
> >> >
> >> > SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on Sprint.
> >> >
> >> > I was a little lost on Andrews's comment of "Make sure that you use
the
> >> > VersaMail setup wizard and launch it from Hotsync Manager to
configure
> > the
> >> > settings to access your server."  We did not do this.  We simply ran
> >> > the
> >> > VersaMail setup on the device.  With SSL checked on the server, it
> >> > gives
> >> > an
> >> > error on the Treo.  Without SSL checked on the server, it works
great.
> > My
> >> > client does not want to put a bunch of time into troubleshooting
this.
> > We
> >> > are only running one Treo now for testing.  We would like to set up
> >> > several
> >> > more.  I need to give him a responsible answer as to whether or not
we
> >> > "MUST" figure out the SSL thing.  I've seen so many references to
> >> > issues
> >> > with this on the newsgroups, I don't want to go to the mat to
authorize
> >> > the
> >> > time to fix this and then discover that it's a black hole of time
with
> > no
> >> > resolution.  Anyone have experience with this trouble and find a
> >> > resolution?
> >> > Anybody running without SSL and not worried about it?  Here's why I'm
> >> > so
> >> > against it, am I passing my IP, username and password in clear text?
> > Need
> >> > I
> >> > say more.
> >> >
> >> > Thank you in advance for your time and attention!
> >> >
> >> >
> >> > "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
> >> > news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
> >> >> Actually that has nothing to do with Exchange ActiveSync but when
you
> > use
> >> >> the Blazer browser instead. In VersaMail you would just use as in
your
> >> >> example: mail.microsoft.com. The Treo with EAS does SSL by default.
> >> >>
> >> >> I have a public IP with a FQDN associated to it and when I do use
> > Blazer
> >> > to
> >> >> use OMA, it still prompts about the certificate but it lets you go
on.
> > I
> >> >> don't think I would try to use OWA with the Treo unless you had the
> > WiFi
> >> >> adapter and accessing it at high-speeds. OMA works fine (well it
could
> > be
> >> >> faster) for the normal Internet access.
> >> >>
> >> >> --
> >> >> Rick Faria - MCSE / A+
> >> >> RDF Technical Services - www.rdfts.com
> >> >> Email: support at rdfts dot com
> >> >>
> >> >>
> >> >> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com>
> > wrote
> >> > in
> >> >> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
> >> >> >I was able to synch just fine using ssl, over a verizon network
with
> > my
> >> >> >treo
> >> >> > 650. The biggest problem with this is the server certificate. I
use
> >> >> > a
> >> > self
> >> >> > signed cert, issued by the server running exchange 2003, which has
a
> >> >> > public
> >> >> > IP address associated with the fully qualified domain name of the
> >> > server.
> >> >> > MS
> >> >> > says you have to have a certificate authority and or a verisign
type
> >> >> > certificate; this is wrong. The key is to have the fully qualified
> >> > domain
> >> >> > name such as mail.microsoft.com which can be reached via a public
IP
> >> >> > address.
> >> >> > Set the treo to go to https://mail.microsoft.com/exchange. When
you
> > do
> >> > it
> >> >> > this way, the browser in the treo recognizes the certificate as
> > coming
> >> >> > from
> >> >> > the domain name as typed in.
> >> >> >
> >> >> > "Fredly" wrote:
> >> >> >
> >> >> >> Hello-
> >> >> >>
> >> >> >> We tried to set up a couple Treos using activesync.  We had
trouble
> >> >> >> making
> >> >> >> this work with SSL enabled.  Unchecking SSL enables the sync to
> > happen
> >> >> >> right
> >> >> >> away.  There are quite a few threads on this topic and I think we
> > may
> >> >> >> start
> >> >> >> fighting with this again next week.  We are a small company and
are
> >> > only
> >> >> >> moderately worried about security.  Cost vs. risk...  Here is my
> >> >> >> question:
> >> >> >> How much danger are we in running this without SSL?
> >> >> >>
> >> >> >> Is my email being transmitted in clear text?
> >> >> >>
> >> >> >> Is my server address as well as my user's username and password
> > being
> >> >> >> transmitted in clear text?
> >> >> >>
> >> >> >> How do malicious peolpe 'sniff' this traffic anyways?
> >> >> >>
> >> >> >> Thank you in advance for your time!!
> >> >> >>
> >> >> >>
> >> >> >>
> >> >> >>
> >> >>
> >> >>
> >> >
> >> >
> >>
> >>
> >
> >
>
>

"Fredly" <a**@email.com> wrote in message
news:e7mxoVS9FHA.2176@TK2MSFTNGP14.phx.gbl...
> Huh?  I've got SBS.  This makes me happy to know you've got it working.
> Good luck with yours...
>
>
> "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> news:#QOyQjQ9FHA.744@TK2MSFTNGP10.phx.gbl...
>> I have two clients with about 10 Treos each using Versamail but with SSL
>> enabled.  They have SBS 2003 which works fine with SSL enabled using
>> Activesync.  This is what I am troubleshooting as to why it works with
>> SBS
>> but not regular exchange server.  My understanding so far is that the
>> Exchange Server must be a GC for this to work correctly.  This is what I
> am
>> testing and why this is the case.
>>
>> --
>> John Oliver, Jr.
>> MCSE, MCT, CCNA, Exchange MVP
>> Microsoft Certified Partner
>>
>> "Fredly" <a**@email.com> wrote in message
>> news:OFbivXQ9FHA.600@tk2msftngp13.phx.gbl...
>> > John-
>> >
>> > Thank you for the advice!
>> >
>> > I'm not quite ready to drop the coin for that one.  Let me know if you
>> > ever
>> > do:)  I take it you have some users accessing Activesync via Treos or
>> > equivalent without SSL?  Do you mind if I ask how many, approximately?
> I
>> > take it you are comfortable with this?  I hope I don't sound at all
>> > abrasive
>> > with that cause I'm not.  Honestly, I can't see where the danger of
> being
>> > sniffed is.  I guess I don't know enough about it.
>> >
>> >
>> > "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
>> > news:e50b56P9FHA.636@TK2MSFTNGP10.phx.gbl...
>> >> Fred, instead of waiting for answer from me or anyone else since time
> is
>> >> critical, I would put a call into Microsoft PSS to see if they can
>> >> resolve
>> >> the issue.  As I stated before, this is not OMA issue as some have
>> >> suggested, its ActiveSync as we both know.  I will still
> troubleshooting
>> >> this but have not resolved it yet without disabling SSL.
>> >>
>> >> --
>> >> John Oliver, Jr.
>> >> MCSE, MCT, CCNA, Exchange MVP
>> >> Microsoft Certified Partner
>> >>
>> >> "Fredly" <a**@email.com> wrote in message
>> >> news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
>> >> > Thank you for all of the replies!!
>> >> >
>> >> > I am talking about Activesync over TCP / IP (or whatever that is
>> >> > considered
>> >> > when it's wireless, GPRS?), not OMA or OWA.  We have a public IP
> only,
>> > no
>> >> > FQDN.  This is what was used during the initial setup and the Server
>> >> > created
>> >> > certificate works great for OWA, OMA, RWW, Etc...
>> >> >
>> >> > SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on
>> >> > Sprint.
>> >> >
>> >> > I was a little lost on Andrews's comment of "Make sure that you use
> the
>> >> > VersaMail setup wizard and launch it from Hotsync Manager to
> configure
>> > the
>> >> > settings to access your server."  We did not do this.  We simply ran
>> >> > the
>> >> > VersaMail setup on the device.  With SSL checked on the server, it
>> >> > gives
>> >> > an
>> >> > error on the Treo.  Without SSL checked on the server, it works
> great.
>> > My
>> >> > client does not want to put a bunch of time into troubleshooting
> this.
>> > We
>> >> > are only running one Treo now for testing.  We would like to set up
>> >> > several
>> >> > more.  I need to give him a responsible answer as to whether or not
> we
>> >> > "MUST" figure out the SSL thing.  I've seen so many references to
>> >> > issues
>> >> > with this on the newsgroups, I don't want to go to the mat to
> authorize
>> >> > the
>> >> > time to fix this and then discover that it's a black hole of time
> with
>> > no
>> >> > resolution.  Anyone have experience with this trouble and find a
>> >> > resolution?
>> >> > Anybody running without SSL and not worried about it?  Here's why
>> >> > I'm
>> >> > so
>> >> > against it, am I passing my IP, username and password in clear text?
>> > Need
>> >> > I
>> >> > say more.
>> >> >
>> >> > Thank you in advance for your time and attention!
>> >> >
>> >> >
>> >> > "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
>> >> > news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
>> >> >> Actually that has nothing to do with Exchange ActiveSync but when
> you
>> > use
>> >> >> the Blazer browser instead. In VersaMail you would just use as in
> your
>> >> >> example: mail.microsoft.com. The Treo with EAS does SSL by default.
>> >> >>
>> >> >> I have a public IP with a FQDN associated to it and when I do use
>> > Blazer
>> >> > to
>> >> >> use OMA, it still prompts about the certificate but it lets you go
> on.
>> > I
>> >> >> don't think I would try to use OWA with the Treo unless you had the
>> > WiFi
>> >> >> adapter and accessing it at high-speeds. OMA works fine (well it
> could
>> > be
>> >> >> faster) for the normal Internet access.
>> >> >>
>> >> >> --
>> >> >> Rick Faria - MCSE / A+
>> >> >> RDF Technical Services - www.rdfts.com
>> >> >> Email: support at rdfts dot com
>> >> >>
>> >> >>
>> >> >> "j**@stoltenberg.com" <jaystoltenberg***@discussions.microsoft.com>
>> > wrote
>> >> > in
>> >> >> message news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
>> >> >> >I was able to synch just fine using ssl, over a verizon network
> with
>> > my
>> >> >> >treo
>> >> >> > 650. The biggest problem with this is the server certificate. I
> use
>> >> >> > a
>> >> > self
>> >> >> > signed cert, issued by the server running exchange 2003, which
>> >> >> > has
> a
>> >> >> > public
>> >> >> > IP address associated with the fully qualified domain name of the
>> >> > server.
>> >> >> > MS
>> >> >> > says you have to have a certificate authority and or a verisign
> type
>> >> >> > certificate; this is wrong. The key is to have the fully
>> >> >> > qualified
>> >> > domain
>> >> >> > name such as mail.microsoft.com which can be reached via a public
> IP
>> >> >> > address.
>> >> >> > Set the treo to go to https://mail.microsoft.com/exchange. When
> you
>> > do
>> >> > it
>> >> >> > this way, the browser in the treo recognizes the certificate as
>> > coming
>> >> >> > from
>> >> >> > the domain name as typed in.
>> >> >> >
>> >> >> > "Fredly" wrote:
>> >> >> >
>> >> >> >> Hello-
>> >> >> >>
>> >> >> >> We tried to set up a couple Treos using activesync.  We had
> trouble
>> >> >> >> making
>> >> >> >> this work with SSL enabled.  Unchecking SSL enables the sync to
>> > happen
>> >> >> >> right
>> >> >> >> away.  There are quite a few threads on this topic and I think
>> >> >> >> we
>> > may
>> >> >> >> start
>> >> >> >> fighting with this again next week.  We are a small company and
> are
>> >> > only
>> >> >> >> moderately worried about security.  Cost vs. risk...  Here is my
>> >> >> >> question:
>> >> >> >> How much danger are we in running this without SSL?
>> >> >> >>
>> >> >> >> Is my email being transmitted in clear text?
>> >> >> >>
>> >> >> >> Is my server address as well as my user's username and password
>> > being
>> >> >> >> transmitted in clear text?
>> >> >> >>
>> >> >> >> How do malicious peolpe 'sniff' this traffic anyways?
>> >> >> >>
>> >> >> >> Thank you in advance for your time!!
>> >> >> >>
>> >> >> >>
>> >> >> >>
>> >> >> >>
>> >> >>
>> >> >>
>> >> >
>> >> >
>> >>
>> >>
>> >
>> >
>>
>>
>
>

"John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
news:uHtsh5V9FHA.2364@TK2MSFTNGP12.phx.gbl...
> I thought you had Standard Exchange Server.  Well, in your case this
should
> work.  I have not had any issues with Activesync with Treos on the SBS.
Do
> you a Root Certificate from Verisign or such?  This should work for you so
I
> am little confused now.  Just for kicks, try leaving SSL enabled and
disable
> Forms Authentication.  Also check your Event Viewer for any related
> Activesync errors when this happens.
>
> --
> John Oliver, Jr.
> MCSE, MCT, CCNA, Exchange MVP
> Microsoft Certified Partner
> "Fredly" <a**@email.com> wrote in message
> news:e7mxoVS9FHA.2176@TK2MSFTNGP14.phx.gbl...
> > Huh?  I've got SBS.  This makes me happy to know you've got it working.
> > Good luck with yours...
> >
> >
> > "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> > news:#QOyQjQ9FHA.744@TK2MSFTNGP10.phx.gbl...
> >> I have two clients with about 10 Treos each using Versamail but with
SSL
> >> enabled.  They have SBS 2003 which works fine with SSL enabled using
> >> Activesync.  This is what I am troubleshooting as to why it works with
> >> SBS
> >> but not regular exchange server.  My understanding so far is that the
> >> Exchange Server must be a GC for this to work correctly.  This is what
I
> > am
> >> testing and why this is the case.
> >>
> >> --
> >> John Oliver, Jr.
> >> MCSE, MCT, CCNA, Exchange MVP
> >> Microsoft Certified Partner
> >>
> >> "Fredly" <a**@email.com> wrote in message
> >> news:OFbivXQ9FHA.600@tk2msftngp13.phx.gbl...
> >> > John-
> >> >
> >> > Thank you for the advice!
> >> >
> >> > I'm not quite ready to drop the coin for that one.  Let me know if
you
> >> > ever
> >> > do:)  I take it you have some users accessing Activesync via Treos or
> >> > equivalent without SSL?  Do you mind if I ask how many,
approximately?
> > I
> >> > take it you are comfortable with this?  I hope I don't sound at all
> >> > abrasive
> >> > with that cause I'm not.  Honestly, I can't see where the danger of
> > being
> >> > sniffed is.  I guess I don't know enough about it.
> >> >
> >> >
> >> > "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> >> > news:e50b56P9FHA.636@TK2MSFTNGP10.phx.gbl...
> >> >> Fred, instead of waiting for answer from me or anyone else since
time
> > is
> >> >> critical, I would put a call into Microsoft PSS to see if they can
> >> >> resolve
> >> >> the issue.  As I stated before, this is not OMA issue as some have
> >> >> suggested, its ActiveSync as we both know.  I will still
> > troubleshooting
> >> >> this but have not resolved it yet without disabling SSL.
> >> >>
> >> >> --
> >> >> John Oliver, Jr.
> >> >> MCSE, MCT, CCNA, Exchange MVP
> >> >> Microsoft Certified Partner
> >> >>
> >> >> "Fredly" <a**@email.com> wrote in message
> >> >> news:ODUR8WP9FHA.4076@tk2msftngp13.phx.gbl...
> >> >> > Thank you for all of the replies!!
> >> >> >
> >> >> > I am talking about Activesync over TCP / IP (or whatever that is
> >> >> > considered
> >> >> > when it's wireless, GPRS?), not OMA or OWA.  We have a public IP
> > only,
> >> > no
> >> >> > FQDN.  This is what was used during the initial setup and the
Server
> >> >> > created
> >> >> > certificate works great for OWA, OMA, RWW, Etc...
> >> >> >
> >> >> > SBS 2003 no SP / Exchange 2003 no SP / ISA 2000 / Treo 650 on
> >> >> > Sprint.
> >> >> >
> >> >> > I was a little lost on Andrews's comment of "Make sure that you
use
> > the
> >> >> > VersaMail setup wizard and launch it from Hotsync Manager to
> > configure
> >> > the
> >> >> > settings to access your server."  We did not do this.  We simply
ran
> >> >> > the
> >> >> > VersaMail setup on the device.  With SSL checked on the server, it
> >> >> > gives
> >> >> > an
> >> >> > error on the Treo.  Without SSL checked on the server, it works
> > great.
> >> > My
> >> >> > client does not want to put a bunch of time into troubleshooting
> > this.
> >> > We
> >> >> > are only running one Treo now for testing.  We would like to set
up
> >> >> > several
> >> >> > more.  I need to give him a responsible answer as to whether or
not
> > we
> >> >> > "MUST" figure out the SSL thing.  I've seen so many references to
> >> >> > issues
> >> >> > with this on the newsgroups, I don't want to go to the mat to
> > authorize
> >> >> > the
> >> >> > time to fix this and then discover that it's a black hole of time
> > with
> >> > no
> >> >> > resolution.  Anyone have experience with this trouble and find a
> >> >> > resolution?
> >> >> > Anybody running without SSL and not worried about it?  Here's why
> >> >> > I'm
> >> >> > so
> >> >> > against it, am I passing my IP, username and password in clear
text?
> >> > Need
> >> >> > I
> >> >> > say more.
> >> >> >
> >> >> > Thank you in advance for your time and attention!
> >> >> >
> >> >> >
> >> >> > "Rick F" <support.REM***@rdfts.REMOVE.com> wrote in message
> >> >> > news:OAVyGtL9FHA.3880@TK2MSFTNGP12.phx.gbl...
> >> >> >> Actually that has nothing to do with Exchange ActiveSync but when
> > you
> >> > use
> >> >> >> the Blazer browser instead. In VersaMail you would just use as in
> > your
> >> >> >> example: mail.microsoft.com. The Treo with EAS does SSL by
default.
> >> >> >>
> >> >> >> I have a public IP with a FQDN associated to it and when I do use
> >> > Blazer
> >> >> > to
> >> >> >> use OMA, it still prompts about the certificate but it lets you
go
> > on.
> >> > I
> >> >> >> don't think I would try to use OWA with the Treo unless you had
the
> >> > WiFi
> >> >> >> adapter and accessing it at high-speeds. OMA works fine (well it
> > could
> >> > be
> >> >> >> faster) for the normal Internet access.
> >> >> >>
> >> >> >> --
> >> >> >> Rick Faria - MCSE / A+
> >> >> >> RDF Technical Services - www.rdfts.com
> >> >> >> Email: support at rdfts dot com
> >> >> >>
> >> >> >>
> >> >> >> "j**@stoltenberg.com"

> >> > wrote
> >> >> > in
> >> >> >> message
news:5E999FD7-99A6-4EA4-BD71-C4BFDD8FECD7@microsoft.com...
> >> >> >> >I was able to synch just fine using ssl, over a verizon network
> > with
> >> > my
> >> >> >> >treo
> >> >> >> > 650. The biggest problem with this is the server certificate. I
> > use
> >> >> >> > a
> >> >> > self
> >> >> >> > signed cert, issued by the server running exchange 2003, which
> >> >> >> > has
> > a
> >> >> >> > public
> >> >> >> > IP address associated with the fully qualified domain name of
the
> >> >> > server.
> >> >> >> > MS
> >> >> >> > says you have to have a certificate authority and or a verisign
> > type
> >> >> >> > certificate; this is wrong. The key is to have the fully
> >> >> >> > qualified
> >> >> > domain
> >> >> >> > name such as mail.microsoft.com which can be reached via a
public
> > IP
> >> >> >> > address.
> >> >> >> > Set the treo to go to https://mail.microsoft.com/exchange. When
> > you
> >> > do
> >> >> > it
> >> >> >> > this way, the browser in the treo recognizes the certificate as
> >> > coming
> >> >> >> > from
> >> >> >> > the domain name as typed in.
> >> >> >> >
> >> >> >> > "Fredly" wrote:
> >> >> >> >
> >> >> >> >> Hello-
> >> >> >> >>
> >> >> >> >> We tried to set up a couple Treos using activesync.  We had
> > trouble
> >> >> >> >> making
> >> >> >> >> this work with SSL enabled.  Unchecking SSL enables the sync
to
> >> > happen
> >> >> >> >> right
> >> >> >> >> away.  There are quite a few threads on this topic and I think
> >> >> >> >> we
> >> > may
> >> >> >> >> start
> >> >> >> >> fighting with this again next week.  We are a small company
and
> > are
> >> >> > only
> >> >> >> >> moderately worried about security.  Cost vs. risk...  Here is
my
> >> >> >> >> question:
> >> >> >> >> How much danger are we in running this without SSL?
> >> >> >> >>
> >> >> >> >> Is my email being transmitted in clear text?
> >> >> >> >>
> >> >> >> >> Is my server address as well as my user's username and
password
> >> > being
> >> >> >> >> transmitted in clear text?
> >> >> >> >>
> >> >> >> >> How do malicious peolpe 'sniff' this traffic anyways?
> >> >> >> >>
> >> >> >> >> Thank you in advance for your time!!
> >> >> >> >>
> >> >> >> >>
> >> >> >> >>
> >> >> >> >>
> >> >> >>
> >> >> >>
> >> >> >
> >> >> >
> >> >>
> >> >>
> >> >
> >> >
> >>
> >>
> >
> >
>
>

> I have two clients with about 10 Treos each using Versamail but with SSL
> enabled.  They have SBS 2003 which works fine with SSL enabled using
> Activesync.  This is what I am troubleshooting as to why it works with SBS
> but not regular exchange server.  My understanding so far is that the
> Exchange Server must be a GC for this to work correctly.  This is what I am
> testing and why this is the case.
>
> --
> John Oliver, Jr.
> MCSE, MCT, CCNA, Exchange MVP
> Microsoft Certified Partner

news:1135129915.053982.64300@g14g2000cwa.googlegroups.com...
> Hi John,
>
> I'm trying to set up a few Treo650 devices to work with SBS2003 SP2
> (push technology). I have a self signed cert, issued by the server
> running exchange 2003. I want to use SSL (nobody should try without)
> but I can't figure out how to put my cert on devices. I know how to do
> it with PocketPC but not with Palm. My carrier tech support doesn't
> know and Palm tech support doesn't want to tell.
> Please would you be so kind and share with me how you did it?
>
> Thank you and have a Merry Christmas.
>
> John Oliver, Jr. [MVP] wrote:
>> I have two clients with about 10 Treos each using Versamail but with SSL
>> enabled.  They have SBS 2003 which works fine with SSL enabled using
>> Activesync.  This is what I am troubleshooting as to why it works with
>> SBS
>> but not regular exchange server.  My understanding so far is that the
>> Exchange Server must be a GC for this to work correctly.  This is what I
>> am
>> testing and why this is the case.
>>
>> --
>> John Oliver, Jr.
>> MCSE, MCT, CCNA, Exchange MVP
>> Microsoft Certified Partner
>

"John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
news:eVRqmGeBGHA.3496@TK2MSFTNGP11.phx.gbl...
> My understanding is the Push Technology feature will not work with current
> Palm Treo 650's.  We will have to wait for the Treo 700 due out next year
> that will run Windows Mobile 5.0 on it.  As for the self signed cert, you
> will need to a Root Cert from either Comod, Verisign, etc. for this to
> work properly.  That is unless you can get the Phone Provider to install
> your Personal Cert which is very unlikely.  I used Comodo at
> www.instantssl.com for all my clients, very inexpensive and tested on over
> 60 Treo 650's.
>
> --
> John Oliver, Jr.
> MCSE, MCT, CCNA, Exchange MVP
> Microsoft Certified Partner
>
> <hraz***@gmail.com> wrote in message
> news:1135129915.053982.64300@g14g2000cwa.googlegroups.com...
>> Hi John,
>>
>> I'm trying to set up a few Treo650 devices to work with SBS2003 SP2
>> (push technology). I have a self signed cert, issued by the server
>> running exchange 2003. I want to use SSL (nobody should try without)
>> but I can't figure out how to put my cert on devices. I know how to do
>> it with PocketPC but not with Palm. My carrier tech support doesn't
>> know and Palm tech support doesn't want to tell.
>> Please would you be so kind and share with me how you did it?
>>
>> Thank you and have a Merry Christmas.
>>
>> John Oliver, Jr. [MVP] wrote:
>>> I have two clients with about 10 Treos each using Versamail but with SSL
>>> enabled.  They have SBS 2003 which works fine with SSL enabled using
>>> Activesync.  This is what I am troubleshooting as to why it works with
>>> SBS
>>> but not regular exchange server.  My understanding so far is that the
>>> Exchange Server must be a GC for this to work correctly.  This is what I
>>> am
>>> testing and why this is the case.
>>>
>>> --
>>> John Oliver, Jr.
>>> MCSE, MCT, CCNA, Exchange MVP
>>> Microsoft Certified Partner
>>
>
>

"mitch" <mitch@newsgroups.stuff> wrote in message
news:e6R%23f6kBGHA.2704@TK2MSFTNGP15.phx.gbl...
> Actually you can do it with your own cert server the treo 650's do not
> look for certs by default they just use the cert and always use it.
>
> We have many of them set up with private cert server and all work well. On
> the windows devices you have an import tool that comes with the PDA to
> import your corporate cert. It works very well.
>
>
> "John Oliver, Jr. [MVP]" <jcolive***@hotmail.com> wrote in message
> news:eVRqmGeBGHA.3496@TK2MSFTNGP11.phx.gbl...
>> My understanding is the Push Technology feature will not work with
>> current Palm Treo 650's.  We will have to wait for the Treo 700 due out
>> next year that will run Windows Mobile 5.0 on it.  As for the self signed
>> cert, you will need to a Root Cert from either Comod, Verisign, etc. for
>> this to work properly.  That is unless you can get the Phone Provider to
>> install your Personal Cert which is very unlikely.  I used Comodo at
>> www.instantssl.com for all my clients, very inexpensive and tested on
>> over 60 Treo 650's.
>>
>> --
>> John Oliver, Jr.
>> MCSE, MCT, CCNA, Exchange MVP
>> Microsoft Certified Partner
>>
>> <hraz***@gmail.com> wrote in message
>> news:1135129915.053982.64300@g14g2000cwa.googlegroups.com...
>>> Hi John,
>>>
>>> I'm trying to set up a few Treo650 devices to work with SBS2003 SP2
>>> (push technology). I have a self signed cert, issued by the server
>>> running exchange 2003. I want to use SSL (nobody should try without)
>>> but I can't figure out how to put my cert on devices. I know how to do
>>> it with PocketPC but not with Palm. My carrier tech support doesn't
>>> know and Palm tech support doesn't want to tell.
>>> Please would you be so kind and share with me how you did it?
>>>
>>> Thank you and have a Merry Christmas.
>>>
>>> John Oliver, Jr. [MVP] wrote:
>>>> I have two clients with about 10 Treos each using Versamail but with
>>>> SSL
>>>> enabled.  They have SBS 2003 which works fine with SSL enabled using
>>>> Activesync.  This is what I am troubleshooting as to why it works with
>>>> SBS
>>>> but not regular exchange server.  My understanding so far is that the
>>>> Exchange Server must be a GC for this to work correctly.  This is what
>>>> I am
>>>> testing and why this is the case.
>>>>
>>>> --
>>>> John Oliver, Jr.
>>>> MCSE, MCT, CCNA, Exchange MVP
>>>> Microsoft Certified Partner
>>>
>>
>>
>
>