Hopefully I can shed a little light on this for everyone.
There are Three different types of connections that people are talking about in this post:
1. OWA, or outlook web access.
2. Activesync, or OTA (over the air) sync to outlook
3. Imap
I'll go over the different types below.
1. OWA, This type of connection is a lot like a gmail or hotmail account. To connect to it, you go to
https://yourserverswebmailaddress.com/exchange. For my situation, this is just
https://mydomain.com/exchange but for some it may be
https://mail.mydomain.com/exchange.
To trouble shoot this, go to one of those addresses on a pc or mac until you get either one of two responses. A. the outlook box with a username and password (good) or B. the warning about the ssl cert not being valid (bad)
If you get the second one, you have the right address, but you will not be able to use OWA on your iphone until the ssl cert is "fixed". (I think, can you just ignore the ssl warning? maybe) Many times this just means using a real cert from a real company (directnic works, and inexpensive) instead of self signed cert that the pc pda phones were ok with (if you imported them to the phone)
2. OTA sync. The main thing most of us bought the iPhone for this time around.
OTA sync is dependant on OWA working correctly, meaning that if OWA works with no certificate errors on a computer that you've never installed the certificate on, and you have SP2 for EXCHANGE, (not just SP2 for Windows Server) then you should be able to put your email address, username and password into the exchange part of the iPhone and have it do a couple of things. It will give you an error about autodiscover.yourdomain.com and then when you ignore that, it will say it's setup exchange(null) or something to that effect and sync nothing.
I've also found that you need to uncheck the box that says "require secure channel (ssl) under your virtual directory for exchange OMA, which should be there if OWA works correctly. if not, there are posts on this board about the kb article and how to create a virtual directory, but that makes me nervous that something else was wrong before...
To check that the box is unchecked, go into your IIS snap in, or manangement console, drill down to the websites>default website>exchange-oma and choose properties, in there, click on the Directory Security tab and click on the edit button under Secure Communications. uncheck the box that says require secure channel (ssl) and you should be set.
I'm pretty sure I've undone all the other tweaks over the last few days that i did trying to make this work, but if it still doesn't work, post and i'll try to find something I need to change.
Shawn
4byte4.com