In this section, you will test the new Exchange publishing rule that you just created.
Test Exchange ActiveSync
Configure a mobile device to connect to your Exchange server using Microsoft Exchange ActiveSync, and make sure that ISA Server and Exchange ActiveSync are working properly. When configuring your mobile device and you are prompted to enter a name for the server name field, type the name of the Exchange ActiveSync server that was just published, such as https://mail.contoso.com/oma.
You can also test Exchange ActiveSync using Internet Explorer. Open Internet Explorer, and in Address, type the URL https://published_server_name/Microsoft-Server-Activesync, where published_server_name is the published name of the Outlook Web Access server (the name a user would use to access Outlook Web Access). After you authenticate yourself, if you receive an Error 501/505 – Not implemented or not supported, ISA Server and Exchange ActiveSync are working together properly.
With the Microsoft Exchange Server 2003 SP2 installation, Exchange ActiveSync features are enabled for all client mobile devices at the organizational level. If your security setup accepts the trusted certificates that are shipped on the mobile devices, all you need to do is instruct your users who have Windows Mobile 5.0-based devices sign in using the pre-installed ActiveSync software.
If you want to establish a central security policy, you should use the Exchange System Manager to configure it for all users; follow the instructions in "Configuring Security Settings for Mobile Devices" later in this chapter.
For more information about setting security policies, see "Best Practice: Determine and Deploy a Device Password Policy" in Best Practices for Deploying a Mobile Messaging Solution.
For more information about managing and configuring mobile devices, see "Setting Up a Mobile Device Connection to Exchange Server" in Step 8: Manage and Configure Mobile Devices.
The management capabilities that are in Exchange Server 2003 SP2 and the security and configuration protocols that are included in Windows Mobile 5.0 with MSFP, most of the administration of the mobile devices takes place on the Exchange server or on the Mobile Administration Web tool.
You can do the following actions on your Exchange server:
Configure mobile access.
Configure security policy settings for mobile devices.
During a default installation, all Exchange ActiveSync features are enabled. You can modify the feature settings at the Exchange server level with Exchange Server System Manager, and enable or disable the Exchange ActiveSync features for individual users or groups by using Active Directory.
When managing access to Exchange ActiveSync features, you can do the following:
1. Configure Exchange ActiveSync features for your organization
2. Disable user-initiated synchronization for users or groups (if desired)
3. Enable or disable up-to-date notifications (Optional)
Configuring Exchange ActiveSync Features for Your Organization
Exchange ActiveSync allows users to synchronize their Exchange information with a mobile device. At the organizational level on your Exchange server, you can enable or disable the following Exchange ActiveSync features:
Enable user-initiated synchronization
Enables users to synchronize their Exchange information with their mobile device.
Enable up-to-date notifications via SMTP and Text Messaging
Allows users to receive notifications through SMTP in order to keep their device up to date with information on their Exchange server. This should be left enabled to accommodate users who have Windows Mobile-based devices without MSFP.
Enable notifications to user-specified SMTP addresses
Allows users to use their own wireless service provider.
Enable Direct Push over HTTP(s)
Enables users with Windows Mobile-based devices with MSFP to receive notifications through HTTP to keep their mobile device up to date with the information that is on their Exchange server.
In the console tree, double-click Global Settings, right-click Mobile Services and then click Properties. The following illustration shows the Mobile Services Properties dialog box.
In Mobile Services Properties, under Exchange ActiveSync, select the check boxes for the options you wish to enable for your organization. You can then use Active Directory Users and Computers to enable or disable specific users or groups, if desired.
Click OK to save your settings.
Exchange ActiveSync can also be disabled for individual users or groups by using Active Directory Users and Computers.
Disabling User-Initiated Synchronization for Users or Groups
With User-Initiated Synchronization enabled on the organizational level, you can control the capability of individual users or groups to use Exchange ActiveSync to synchronize with their Exchange mailbox by using mobile devices. Use the Active Directory Exchange Features tab to disable this functionality for individual users or for groups.
To disable user-initiated synchronization
On the Start menu, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
In the console tree, expand the domain. Double-click Users, or double-click the node that contains the recipient information that you want to modify.
In the details pane, double-click the user or users for whom you want to disable user initiated synchronization to open the Properties dialog box. The following illustration shows the Mobile Services Properties dialog box.
On the Exchange Features tab, under Mobile Services, select User Initiated Synchronization, and then click Disable.
Enable or Disable Up-to-date Notifications
The Enable Up-to-date Notifications feature is on by default in Exchange ActiveSync at the organizational level. If your mobile messaging solution includes mobile devices that do not support direct push technology, make sure to enable this feature for users or for groups that have Windows Mobile-based devices without MSFP. You can enable or disable Up-to-date Notifications by using Active Directory Users and Computers.
To use up-to-date notifications, you must also enable user-initiated synchronization.
To enable or to disable up-to-date notifications
1. On the Start menu, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
2. In the console tree, expand the domain. Double-click Users, or double-click the node that contains the recipient information that you want to modify.
3. In the details pane, double-click the user name of the user for whom you want to enable or disable up-to-date notifications.
4. On the Exchange Features tab, under Mobile Services, select User Initiated Synchronization, and then click Enable or Disable.
When User Initiated Synchronization is disabled, Up-to-date Notifications is automatically disabled.
5. If you want to enable Up-to-date Notifications, on the Exchange Features tab, under Mobile Services, select Up-to-date Notifications, and then click Enable.