- 11-12-2012, 10:59 AM #1
Anyone connecting their WP8 to a corporate Exchange environment? Looks like there is one major issue I have found. My company enforces "Require encryption on device" and "Require encryption on storage card". The device encryption works great though it requires that you are logged into a Microsoft Live account which we all are anyway.
The problem is with the storage card option. WP8 seems to not support this option at all. This testing was done on a Nokia 920 which doesn't even have a storage card option. Has anyone tested with a Nokia 820 or HTC?
BTW, this same issue is also affecting the Microsoft Surface which does have a storage card option. This is a huge issue since my company might not be able to allow any Windows phones to connect to ActiveSync. I am sure a lot of other companies use this exact same policy and could really damage WP8 ability to be used by large companies.
- 11-22-2012, 07:49 AM #2
I have an 8X by HTC and I am running into a problem with EAS Policies as well. I am on an Exchange 2010 server/Active Sync 14.
I have only found info on what policies WP7 supports. Can't find anything for WP8 yet. I believe WP8 supports "device encryption" which WP7 could not. I'm leaning towards the policy "require encryption on storage card". I've also read that it could be the number of number of emails it allows to be set on the device. There was a user who reported once they changed it to "unlimited" their WP8 was able to apply EAS policies.
I'll be able to look into these more when I'm back at work on Monday. Until then...enjoy your Thanksgiving!
- 11-22-2012, 08:22 PM #6
I connect to my corporate exchange server for Outlook mail and I've had no problems at all. I don't know about the encryption requirements though. But I am friendly with the IT guys at work so I can ask them for details.
11-23-2012, 07:30 AM #8
- 410 Posts
The SD card in WP8 is read-only. It can't be encrypted because it can't be written to. Likewise, since it can't be written to, it can't be a means of moving unencrypted corporate content off of the device. See Writing to SD card in WP8 for confirmation from Microsoft.
I realize that this probably doesn't help you, but it might convince your IT security guys.
- 11-24-2012, 07:41 AM #11
- 11-27-2012, 11:46 AM #12
I checked our EAS Policy and I can't think of anything in there that would prevent my 8X from being able to apply those policies.
Enable Password recoveryAllow simple password
Minimum password length: 4
Password expiration: 60
Enforce password history: 12
Include past calendar items: AllInclude past e-mail items: All
Allow synchronization when roaming
Allow HTML formatted email
Allow attachments to be downloaded to the device
The only way I was able to get it to sync was to Allow non-provisionable devices. Will keep checking various things and report back.
- 11-30-2012, 09:26 AM #14
By process of elimination I determined that my issue was that "Allow Direct Push when roaming" needed to be checked. This is not enabled on our default policy.
Back to OP: I was NOT able to sync my email on my 8X if I had "Require encryption on storage card" enabled. I could if I only set "Require encryption on device" Neither of these are required in our environment so it's not part of either of our EAS policies.
Thanks for providing that PDF Alan. I couldn't find something when I looked earlier this month.
Last edited by Edwin4NOH8; 11-30-2012 at 11:32 AM. Reason: Corrected my findings for OP
12-03-2012, 07:56 AM #15
- 1 Posts
@Edwin4NOH8: Did I understand you correctly that you are saying that you have a WP8-Phone without a SD card slot and you are able to sync with your corporate EAS? And the conditions for that are turning off "Require encryption on storage card" and turning on "Allow Direct Push when roaming" in the policies? So there's hope for my lumia 920.
- 12-03-2012, 06:38 PM #16
03-25-2014, 10:18 AM #17
- 33 Posts
I know this is a longtime dead thread, but I did want to post an update for people that stumble onto it.
My company requires Device Encryption and Storage Card Encryption. Using GDR2 and GDR3, my Nokia Lumia 920 will work fine. The phone becomes encrypted and because there is no storage card it responds appropriately.
For devices that support storage cards, like my Lumia 1520, that will still fail. Running the latest GDR3 update the phone will fail to encrypt the card so this brand new Lumia 1520 is worthless and unusable for me.
Fingers crossed for WP8.1 fixing this.
Sent from my Nokia Lumia 920 using Tapatalk
03-25-2014, 06:34 PM #18
- 410 Posts
It is expected that WP8.1 will make greater use of the SD card. It isn't yet public knowledge if that includes letting messages be saved to the card. If it does, you should tell your firm that the need for a special WP8 EAS policy group will disappear later in the year.
My firm (a university) is establishing at least three policy groups with differing levels of encryption to accommodate different devices. We'll pages out the two lower levels at the end of 2014 so that owners of older Android, iOS, and WP devices that can't encrypt have fair warning that they'll need to upgrade to maintain access to email.