Administering the Messaging and Security Feature Pack

  • Article

Send Feedback

Safeguards like password policies and remote wipe capabilities provide Enterprise administrators with the security features to help them protect their organization's data. With the combination of the management capabilities built into Exchange Server 2003 SP2 and the security and configuration protocols included in the Windows Mobile 5.0-based devices that have the Messaging and Security Feature pack (MSFP), control over mobile devices has been streamlined. Most of the administration of the security features for the mobile device happens on the Exchange Server or on the Exchange ActiveSync Mobile Administration Web tool.

The following table summarizes the features and the settings required on the Exchange Server or on the mobile device.

Feature Exchange Server Setting Mobile Device Setting
Exchange Direct Push technology Enabled by default with Exchange Server 2003 SP2
  • Protected configuration with firewall or ISA Server
  • Set session timeout time to 30 minutes
 No device setup required; user steps thru ActiveSync wizard upon login to Exchange server.
Exchange ActiveSync Enabled by default with Exchange Server 2003 SP2

Set parameters by using Exchange System Manager's Mobile Services Properties

 No device setup required; user steps thru ActiveSync wizard upon login to Exchange server.
Wireless access to global address list (GAL) Default Exchange Server setup

Requires Outlook Web Access published on Exchange Server

 No device setup required

Trusted devices have automatic access to GAL
Remotely enforced IT policy Enable Direct Push technology in Exchange ActiveSync

Use Exchange System Manager's Mobile Services Properties to apply policies

 No device setup required; user steps thru ActiveSync wizard upon login to Exchange server.
Remote Wipe Enable Direct Push technology in Exchange ActiveSync

Use Mobile Administration Web tool to initiate, track, and cancel the remote wipe

 No device setup required; user steps thru ActiveSync wizard upon login to Exchange server.
Certificate-based authentication
  • Install certificate on Exchange Servers
  • Deploy ActiveSync 4.1 to desktops
  • Use the Certificate Enrollment tool to configure the devices through ActiveSync
 Initial certificate enrollment using Desktop ActiveSync is required
S/MIME mobile device support Deploy an Exchange Server 2003 messaging system with PKI security Install certificate enrollment protocol and key on the device

See Also

Messaging and Security Feature Pack Overview

Send Feedback on this topic to the authors

Feedback FAQs

© 2006 Microsoft Corporation. All rights reserved.