11-12-2012, 11:59 AM #1
- 41 Posts
Anyone connecting their WP8 to a corporate Exchange environment? Looks like there is one major issue I have found. My company enforces "Require encryption on device" and "Require encryption on storage card". The device encryption works great though it requires that you are logged into a Microsoft Live account which we all are anyway.
The problem is with the storage card option. WP8 seems to not support this option at all. This testing was done on a Nokia 920 which doesn't even have a storage card option. Has anyone tested with a Nokia 820 or HTC?
BTW, this same issue is also affecting the Microsoft Surface which does have a storage card option. This is a huge issue since my company might not be able to allow any Windows phones to connect to ActiveSync. I am sure a lot of other companies use this exact same policy and could really damage WP8 ability to be used by large companies.
- 11-22-2012, 08:49 AM #2
I have an 8X by HTC and I am running into a problem with EAS Policies as well. I am on an Exchange 2010 server/Active Sync 14.
I have only found info on what policies WP7 supports. Can't find anything for WP8 yet. I believe WP8 supports "device encryption" which WP7 could not. I'm leaning towards the policy "require encryption on storage card". I've also read that it could be the number of number of emails it allows to be set on the device. There was a user who reported once they changed it to "unlimited" their WP8 was able to apply EAS policies.
I'll be able to look into these more when I'm back at work on Monday. Until then...enjoy your Thanksgiving!
11-23-2012, 08:30 AM #8
- 236 Posts
The SD card in WP8 is read-only. It can't be encrypted because it can't be written to. Likewise, since it can't be written to, it can't be a means of moving unencrypted corporate content off of the device. See Writing to SD card in WP8 for confirmation from Microsoft.
I realize that this probably doesn't help you, but it might convince your IT security guys.
- 11-24-2012, 08:41 AM #11
- 11-27-2012, 12:46 PM #12
I checked our EAS Policy and I can't think of anything in there that would prevent my 8X from being able to apply those policies.
Enable Password recoveryAllow simple password
Minimum password length: 4
Password expiration: 60
Enforce password history: 12
Include past calendar items: AllInclude past e-mail items: All
Allow synchronization when roaming
Allow HTML formatted email
Allow attachments to be downloaded to the device
The only way I was able to get it to sync was to Allow non-provisionable devices. Will keep checking various things and report back.
- 11-30-2012, 10:26 AM #14
By process of elimination I determined that my issue was that "Allow Direct Push when roaming" needed to be checked. This is not enabled on our default policy.
Back to OP: I was NOT able to sync my email on my 8X if I had "Require encryption on storage card" enabled. I could if I only set "Require encryption on device" Neither of these are required in our environment so it's not part of either of our EAS policies.
Thanks for providing that PDF Alan. I couldn't find something when I looked earlier this month.
Last edited by Edwin4NOH8; 11-30-2012 at 12:32 PM. Reason: Corrected my findings for OP
12-03-2012, 08:56 AM #15
- 1 Posts
@Edwin4NOH8: Did I understand you correctly that you are saying that you have a WP8-Phone without a SD card slot and you are able to sync with your corporate EAS? And the conditions for that are turning off "Require encryption on storage card" and turning on "Allow Direct Push when roaming" in the policies? So there's hope for my lumia 920.
- 12-03-2012, 07:38 PM #16