|
|
|
date: Fri, 11 Apr 2008 16:38:38 +0200,
group: microsoft.public.exchange.mobility
back
Re: activeSync cert + login/password
No, I would like to achieve this with activesync on mobile 5, 6, 6.1:
connect over HTTPS with client certificate to an ISA server (and
authenticate there with the certificate).
then, once ISA authenticates the client by using the certificate, it will
pass the request further to the CAS.
There, the CAS will have to authenticate the client by using a windows/basic
authentication.
The reason for this setup is, the ISA server is in a different domain/forest
without a trust relationship with the CAS server.
ondra.
"John Oliver, Jr. [MVP]" wrote in message
news:OIxpg$xnIHA.3572@TK2MSFTNGP02.phx.gbl...
> Why are you wanting the user to Authenticate manually everytime the phone
> sync's.
>
> --
> John Oliver, Jr
> MCSE, MCT, CCNA
> Exchange MVP 2008
> Microsoft Certified Partner
>
>
> "Ondrej Sevecek" <ondra at sevecek.com> wrote in message
> news:e%23fn8G%23mIHA.4664@TK2MSFTNGP06.phx.gbl...
>> hello,
>>
>> I would like to setup ActiveSync to use both, the client certficate and
>> login and password. But there is no configuration for the login and
>> password once the application determines it is required to use
>> certificate.
>>
>> How you achieve the goal?
>>
>> ondra.
>>
>
>
date: Wed, 16 Apr 2008 06:53:14 +0200
author: Ondrej Sevecek ondra at sevecek.com
Re: activeSync cert + login/password
Understand that part regarding EAS. I don't think this will be possible
with the setup you have stated.
--
John Oliver, Jr
MCSE, MCT, CCNA
Exchange MVP 2008
Microsoft Certified Partner
"Ondrej Sevecek" <ondra at sevecek.com> wrote in message
news:u5oY033nIHA.1580@TK2MSFTNGP06.phx.gbl...
> No, I would like to achieve this with activesync on mobile 5, 6, 6.1:
>
> connect over HTTPS with client certificate to an ISA server (and
> authenticate there with the certificate).
> then, once ISA authenticates the client by using the certificate, it will
> pass the request further to the CAS.
> There, the CAS will have to authenticate the client by using a
> windows/basic authentication.
>
> The reason for this setup is, the ISA server is in a different
> domain/forest without a trust relationship with the CAS server.
>
> ondra.
>
>
> "John Oliver, Jr. [MVP]" wrote in message
> news:OIxpg$xnIHA.3572@TK2MSFTNGP02.phx.gbl...
>> Why are you wanting the user to Authenticate manually everytime the phone
>> sync's.
>>
>> --
>> John Oliver, Jr
>> MCSE, MCT, CCNA
>> Exchange MVP 2008
>> Microsoft Certified Partner
>>
>>
>> "Ondrej Sevecek" <ondra at sevecek.com> wrote in message
>> news:e%23fn8G%23mIHA.4664@TK2MSFTNGP06.phx.gbl...
>>> hello,
>>>
>>> I would like to setup ActiveSync to use both, the client certficate and
>>> login and password. But there is no configuration for the login and
>>> password once the application determines it is required to use
>>> certificate.
>>>
>>> How you achieve the goal?
>>>
>>> ondra.
>>>
>>
>>
>
date: Wed, 16 Apr 2008 01:14:09 -0400
author: John Oliver, Jr. [MVP]
Re: activeSync cert + login/password
yes, the problem is, ActiveSync is not willing to use both methods. It
either uses the login/password or, when the client certificate is requested
by ISA, it is not willing to ask for login/password later although the
login/password is stored on device and IE uses them correctly.
ondra.
"John Oliver, Jr. [MVP]" wrote in message
news:%23WdY1C4nIHA.4492@TK2MSFTNGP02.phx.gbl...
> Understand that part regarding EAS. I don't think this will be possible
> with the setup you have stated.
>
> --
> John Oliver, Jr
> MCSE, MCT, CCNA
> Exchange MVP 2008
> Microsoft Certified Partner
>
>
> "Ondrej Sevecek" <ondra at sevecek.com> wrote in message
> news:u5oY033nIHA.1580@TK2MSFTNGP06.phx.gbl...
>> No, I would like to achieve this with activesync on mobile 5, 6, 6.1:
>>
>> connect over HTTPS with client certificate to an ISA server (and
>> authenticate there with the certificate).
>> then, once ISA authenticates the client by using the certificate, it will
>> pass the request further to the CAS.
>> There, the CAS will have to authenticate the client by using a
>> windows/basic authentication.
>>
>> The reason for this setup is, the ISA server is in a different
>> domain/forest without a trust relationship with the CAS server.
>>
>> ondra.
>>
>>
>> "John Oliver, Jr. [MVP]" wrote in message
>> news:OIxpg$xnIHA.3572@TK2MSFTNGP02.phx.gbl...
>>> Why are you wanting the user to Authenticate manually everytime the
>>> phone sync's.
>>>
>>> --
>>> John Oliver, Jr
>>> MCSE, MCT, CCNA
>>> Exchange MVP 2008
>>> Microsoft Certified Partner
>>>
>>>
>>> "Ondrej Sevecek" <ondra at sevecek.com> wrote in message
>>> news:e%23fn8G%23mIHA.4664@TK2MSFTNGP06.phx.gbl...
>>>> hello,
>>>>
>>>> I would like to setup ActiveSync to use both, the client certficate and
>>>> login and password. But there is no configuration for the login and
>>>> password once the application determines it is required to use
>>>> certificate.
>>>>
>>>> How you achieve the goal?
>>>>
>>>> ondra.
>>>>
>>>
>>>
>>
>
>
date: Wed, 16 Apr 2008 07:33:22 +0200
author: Ondrej Sevecek ondra at sevecek.com
|
|
