Configuring Certificate-Based Authentication for Exchange 2010 ActiveSync (Part 2)

imageIn part one of this article, we configured our certificate authority to allow an Administrative user to request certificates on behalf of users, then configured ActiveSync on Exchange 2010 to accept certificate-based authentication from users.

Next, in this final part of the series, we’ll examine how to request and issue certificates on behalf of end-users, then look at how to configure two common mobile devices – iOS devices from Apple and Android devices using NitroDesk’s Touchdown for certificate-based authentication.

Read part two of the article over at and if you missed part one, check it out here.

5 thoughts on “Configuring Certificate-Based Authentication for Exchange 2010 ActiveSync (Part 2)

  1. Hi Steve,
    Great article.
    I am looking to implement this solution for a customer, and I was wondering how this would integrate with a hardware loadbalancer, such as a Citrix Netscaler.
    Would this solution work if I perform SSL offloading to the Netscaler?

  2. Hey Steve,
    very interesting article, good job!
    Actually I deal with exactly the same implementation here. But my problem is, that we use windows phone 7.5 smartphones here. Can you explain how to deal with this kind of devices.
    I know how to get the certificate to the phone but I cannot find an option to enable certificate auth for the mail client

    Kind regards


    • Hi Chris!

      I would have loved to but sadly I don’t have a Windows Phone 7.5 device. I’ll see what I can do though as I would naturally liked to have included these devices…


  3. Pingback: Configuring Certificate-Based Authentication for Exchange 2010 ActiveSync (Part 2) | Steve Goodman’s Exchange Blog « JC’s Blog-O-Gibberish

Leave a Reply

Your email address will not be published. Required fields are marked *