Category Archives: How-to’s

/CertSrv vs Mobile Devices

January 31st, 2012 | Posted in Android, Device Management, How-to's, iOS, iPad, iPhone, Windows Phone

I mentioned in my last blog about Android Ice Cream Sandwich that it is now possible, (actually from Android 3.x Honeycomb), to enroll certificates directly from the /CertSrv web site onto your mobile device. (If you’re running a Microsoft CA of course.)

This is all nice and dandy, but it’s not like Android devices are the only devices you’re likely to be supporting. With the tablet varieties the split is something like 90/10 iPad vs “the rest”. However if you ever tried loading up /CertSrv on your iOS device or your Windows Phone you’ll have noticed that it’s not working.

I find this slightly annoying, and decided to look into this further. Those pesky ActiveX controls can’t be the only reason right? :)

There’s two things to sort out here really; is it anything with the web pages themselves and the server, or something on the browser side. Turns out there’s a bit of both involved actually.
(…)
I go through how it works and how it doesn’t work – and some of the why’s.

0 Comments

Exchange ActiveSync Building Blocks – Remote Wipe

September 28th, 2011 | Posted in ActiveSync, Coding, Exchange, How-to's

In the previous installment in this series we looked at how security policies are pushed down to our Exchange ActiveSync clients, and how to deal with them, or for that matter circumvent them. Thus I thought that it would be suitable to cover a topic highly related to implementation of security policies – how to handle remote wipe

When dealing with the “wipe” concept there are two kinds of wipes we need to be aware of; local wipe and remote wipe.
(…)
I take a look at the low level details of the remote wipe process, along with some sample C# code that will get you started on your own.

0 Comments

Exchange ActiveSync Building Blocks – Provisioning

September 20th, 2011 | Posted in ActiveSync, Coding, Exchange, How-to's

I hope you’ve all been following along and gained a deeper understanding of the Exchange ActiveSync protocol, and possibly had time to play with coding something yourself if you are so inclined. We should at this time be able to do the initial FolderSync with Exchange, and handle most errors thrown at us.

There are of course tons of things ActiveSync I haven’t covered yet, and it is a “one step at a time” journey.

If you’re testing against an Exchange Server where you do not have direct access to the admin console, and it is under the control of an Exchange admin who doesn’t permit just about anyone to sync you might have run into issues related to provisioning already, so the next step for us is to cover this very topic.

Provisioning is the mechanism which ensures that ActiveSync clients implement a given set of security policies. If necessary; Exchange Server will block devices that don’t implement the policy set.

(…)

Follow along as I show in code how to perform the provisioning process, or bypass it for that matter :)

4 Comments
RSS for Posts RSS for Comments