Question : HOW TO Troubleshoot iPhone to Exchange 2003 authentication failure

I'm stuck and would appreciate your expertise.

I'm configuring a 3Gs iPhone against Exchange 2003 (SBS Standard) and failing to authenticate.

I've verified the following

0. Running Exchange 2003 SP2.
1. SSL 443 is open to Exchange server. OWA works great!
2. DNS entry matches CN of SSL Certificate.
3. I've tested using https://testexchangeconnectivity.com/ , all test pass with exception of the "trust chain" (I have no problem w/that and have this phone working against another SBS 2003 box w/a signed cert.)
4. I've verified all authentication settings are correct on the server that it fails to connect to - both in IIS and ESM.
5. I've used more than 1 user account on the domain to rule out any user account issues.
6. I tested the Active Sync on the local wireless w/no problems.  The iPhone syncs up in about 1 min showing all folders - looks great!
7. I tested with two different routers - no joy - problem persists.


I'm at a loss and would like to see some type of authentication failure error in the Exchange Logs.  Can you please assists with how I can enable the logging of authentication failures - involoving Active Sync?

Thank you for your time and consideration,
Tim

Answer : HOW TO Troubleshoot iPhone to Exchange 2003 authentication failure

Hello again,

I figured it out.  It was an IP restriction issue on the IIS directories.

My hints were:

1. I could use ActiveSync just fine on the WLAN.
2. I verified the ip access restrictions on the various components but then remembered the IIS will propagate down these changes to sub  dir's - including all the OMA, Exchange, ActiveSync...  So I reset the IP address restriction on the default web site to "Allow all" and then propagated the changes down.

Joy!  The iPhone connected on first try.

Now, I need to make sure I didn't open up a security hole by doing this to the default web site.  
Anyone suggest a better way to manage IP restrictions in this case?

Thank you,
Tim
1:

HTTP Error 403.6 - Forbidden: IP address of the client has been rejected.
Internet Information Services (IIS)
Open in New Window
Select All
Random Solutions  
 
programming4us programming4us