6700 Push Email ... Ready to give up!!!

[jer1989]

I am having a lot of trouble getting push email to work on my ppc-6700. I have searched and tried many of the helpful hints but still can't get this thing to work.

I think I have everything setup correctly and have updated my SSL certificates. I still get the 0x80072f06 error message saying that my SSL common name does not match. Just to be certain I am getting the correct certificate, do I just access our corporate Outlook on the internet and double click the padlock to get the certificate? I did this and made sure I had the root certificate. I also made sure the dates of the certificates matched up when I installed them on the 6700.


If I turn off the SSL, I get the 0x85010014 error message saying that a problem has been encountered with the server.

Are there settings that could need changed on the Exchange server? Since I am not the admin, I do not have access to those settings.

Any help you could provide would be much appreciated.

Thanks,

Jerry

[juan.villa]

Hey Jerry,

I know it's been a while. I just wanted to let you know that you are not the only one. I am having the exact same problems. I went to a webpage in the microsoft website that talked about the SSL providers that were supported on Windows Mobile 5. Amongst these was GoDaddy. I bought a GoDaddy SSL (for $19.95) and set it up on my server with exchange 2007. My cellphone can't do SSL push mail no matter what. I have browsed around a little and there are some hacks for this, but the information is confusing and I can't find an explicit article.

My problem used to be that I was using SSL certificates (free and trials) from companies who's CA Server was not trusted under Windows Mobile 5. GoDaddy IS supported, according to Microsoft, according to GoDaddy, and according the the "Certificate" program under Settings on my PPC.

Anybody know how to fix this? Help will be GREATLY appreciated (I have been at this for days) THANKS!

[jed]

Easier way: If you have access to Outlook Web Access over SSL, navigate to that web site, click on the lock icon, click View Certificates, then Details. Choose the Subject field, and Copy to file. Save it as DER encoded binary. Copy that certificate to your device, and click on it to install it. This should give you permission to get your direct push email (so long as everything is set up properly server-side).

[juan.villa]

Thanks for the reply jer1989. I am still having problems. Last night I browsed around a couple of forums and a temporary solution for the problem is to disable the check that ActiveSync does. You can do this by adding an entry on your registry under the appropriate folder [Secure(DWORD) = 0]. This fixed it for ONE sync. After that it would complain asking for a client certificate. I never found a way to fix this.

I tried your approach, I installed the certificate on my device, and it still complains that it's an invalid certificate and it does not want to sync.

[boe]

It is possible that your IT administrator did not create a valid certificate for your server. If you browse a web page that requires a certificate on the server, and you haven't already installed the certificate (or you remove the certificate) and it tells you there is a problem, the issue is with a certificate. You may not get this message if you browse to the page from within your network. Try it on a friend's PC if you don't know how to remove the certificate from your home PC.

Also if you just flashed your ROM, most of them will change the date to about a year ago in which case the certificate won't work unless you set your date and time correctly.

[juan.villa]

Boe. I own the server and I installed everything myself. It runs Windows 2003 64-bits with Exchange 2007. The certificate I bought through GoDaddy (since accordin the microsoft, godaddy, and my ppc it is compatible). The SSL is not a wildcard SSL (I know those don't work, and on top of that I dont have the money ). My PPC's ROM is NOT flashed, it is the original updated firmware from Sprint. What should I do? Anybody got any ideas. Thank you!