It's what we did. I didn't see any untoward side effects. We have the same versions of software in effect.
Kurt On Mon, Oct 12, 2015 at 12:13 PM, Richard Stovall <[email protected]> wrote: > Is there any reason not to undertake the guidance found at > https://kc.mcafee.com/corporate/index/index?page=content&id=KB72201 for > enabling ip restrictions on the Microsoft-Server-ActiveSync directory in > IIS? (Single Exchange 2010 server on Server 2008 R2 - IIS 7) > > I need to restrict our users to using ActiveSync through our MDM solution's > proxy. I am not ready to disable access to our single Exchange server on > 443 at the firewall since I need to keep OWA available for the time being. > > --- paraphrased instructions from the Symantec link above --- > > 1) Open IIS and expand the Default Website. > 2) Under the Default Website, select (highlight) > Microsoft-Server-Activesync. > 3) Double-click the IPv4 Address and Domain Restriction icon. In the right > hand column, select Edit Feature Settings. Under Access for unspecified > clients, change the drop-down menu to Deny and then click OK. This denies > all incoming ActiveSync traffic to this server. > 4) In this same window, click Add Allow Entry. > 5) Under Specific IPv4 address, add the IP address of your EMM proxy server > and then click O > > Thanks, > RS
