Is there any reason not to undertake the guidance found at https://kc.mcafee.com/corporate/index/index?page=content&id=KB72201 for enabling ip restrictions on the Microsoft-Server-ActiveSync directory in IIS? (Single Exchange 2010 server on Server 2008 R2 - IIS 7)
I need to restrict our users to using ActiveSync through our MDM solution's proxy. I am not ready to disable access to our single Exchange server on 443 at the firewall since I need to keep OWA available for the time being. --- paraphrased instructions from the Symantec link above --- 1) Open IIS and expand the Default Website. 2) Under the Default Website, select (highlight) Microsoft-Server-Activesync. 3) Double-click the IPv4 Address and Domain Restriction icon. In the right hand column, select Edit Feature Settings. Under Access for unspecified clients, change the drop-down menu to Deny and then click OK. This denies all incoming ActiveSync traffic to this server. 4) In this same window, click Add Allow Entry. 5) Under Specific IPv4 address, add the IP address of your EMM proxy server and then click O Thanks, RS
