on-premise activesync not working with iPhone

Question

on-premise activesync not working with iPhone

Bill Leuze 1

This is a new on-premise exchange install. Still in the testing phase wanting make active soon. At this point everything is working except iPhone integration. I would appreciate any help in locating and correcting the problem

Exchange 2016 CU20 in small 3 server DAG
Desktop outlook clients work for any users I have tested for both internal and external email.
Latest HealthChecker.ps1 reports everything clean.
As recommended external URLs are the same as internal and made to work in DNS
External email, in and out goes through a spam checking proxy (MailCleaner).

As far as ActiveSync is concerned it does not go through the above proxy, I have port 443 forwarded from the mailcleaner DMZ to the exchange server and this seems to work for everything except iPhone.

what works with activesync:

OWA webmail (including on iPhones) to send and receive internal and external email
Autodiscover works
activesync test work on https://testconnectivity.microsoft.com/tests/exchange, so does the SSL server test
Android mail apps work on all accounts tested
iPhone mail app works initially to connect to server and populate inbox with all current messages
Once iPhone account is set up any new incoming messages automatically pop into inbox display
in both iPhone and Android the "Outlook for ios and android" app can connect to server to create the new mail account on the app.

what does not work:

in iPhone, clicking on a message in the inbox to try to read it just displays the message headers and where the message body should be is text saying "This message has not been downloaded from the server"
In iPhone attempting to send mail fails
in both iPhone and Android the "Outlook for ios and android" app does not populate the inbox with any existing or new messages
in both iPhone and Android the "Outlook for ios and android" app fails on sending mail

This in not specific to any user or device, it is the same with all users and devices tested.

Exchange Mobile Device Access and Mobile Device Mailbox policies are still at the defaults for the new exchange install

2 answers

Your answer

Answer 1

Hi @Bill Leuze ,

I think you could test ActiveSync with the follow cmdlet:

$credential = Get-Credential  
Test-ActiveSyncConnectivity -MailboxCredential $credential

Note you should use Domain\User and the password to sync, if you use the UPN or email address to authentication, you may result in a Ping Failure.
If the result is failure, please use this cmdlet to check if there are any useful information in the Error blank.

Test-ActiveSyncConnectivity -MailboxCredential $credential | FL

For the error, you can refer to this article:
This message has not been downloaded from the server error, fix

In addition, are the accounts you used administrator accounts? Such as Organization management, Enterprise Admins or others? If so, please try with a normal account.

Best regards,
Lou

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

Bill Leuze 1

Hi ZhengqiLou-MSFT

Well that is interesting, the ActiveSyncConnectivity test fails:

Well, OK, I see it fails with a certificate error and of course it will because I am not passing it a server name that is on my SAN certificate. If instead I test with:

Test-ActiveSyncConnectivity -MailboxCredential $credential -URL https://my.exchange.servername.ca/Microsoft-Server-ActiveSync | fl

then It passes. I see it does 7 different tests and each one results in "Success"

As for your link to the article on fixing the iphone. I have tried all of those suggestions already except for deleting and then re-installing the mail app. I will do this though just to be complete but I don't expect it will change. I have been testing on new phones (old phones that I have done factory reset) and I have repeatedly deleted the mail accounts on these phones, removed the mobile devices from exchange server accounts and then set them all up again.

None of my test users are administrators, they are simple "Domain Users"

Anonymous

2021-06-11T05:47:28.897+00:00

Hi @Bill Leuze ,

What confusing me is that you could use Android mail app without any problem, right? But the iPhone mail app and Outlook app have some errors.

I think you could login OWA and see if the device has been verified

Best regards,
Lou
Anonymous

2021-06-15T08:51:09.777+00:00

Hi @Bill Leuze ,

Do the suggestions above help? If the issue has been resolved, please click “Accept as answer” to mark helpful reply as an answer, this will make answer searching in the forum easier and be beneficial to other community members as well.

Regards,
Lou

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Anonymous

2021-06-22T08:54:36.887+00:00

Hi @Bill Leuze ,

It has been a long time since last reply, did these suggestions help you? If the above suggestion helps, please click “Accept as answer” to mark helpful reply as an answer.Your action would be helpful to other users who encounter the same issue and read this thread.

Regards,
Lou

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Share via

on-premise activesync not working with iPhone

2 answers

Your answer