tags:

views:

6

answers:

1
Q: 

How come IPhone and WinCE based smart phone mail still works with Exchange?

Hi

We have a device that uses Exchange web services to download mail and calendar information. It uses active directory credentials to authenticate itself with Exchange. The device stores user id and password. When user changes password from his PC (as IT enforce password expiration), the device mail stops working until the password on the device is changed as well. While looking into this, we found that Windows CE based smart phone as well as IPhone doesn't prompt for password when its password for Exchange is out of sync. They still work.

How is that possible?

Is there some special Exchange configuration for it to work?

That looks like a security hole to me.

I am not Exchange expert.

I appreciate any pointers.

Thanks

Joe

A: 

I found that they do prompt for new password several hours later. Its just that cached credentials in Exchange cloud let iPhone and other smart phones go through for some time before they get password prompt when the cloud's credentials get updated from active directory.

videoguy  2010-04-13 18:44:54

related questions

How do I change a windows password through asp?
Can I log into a web application automatically using a users windows logon?
How do I setup IIS 6 with anonymous access for local asp.net webforms development ?
ASP.NET -> WCF Service requires Windows authentication
ASP.Net: Ignore Windows Auth
Partial trust XBAP & Windows Integrated Authenitcation - Fiddler hides problem
ASP.Net: How to properly implement this Authentication flow
B2B web service using windows credentials?
IIS7: Setup Integrated Windows Authentication like in IIS6
How to set up windows authentication just for a single route in ASP.NET MVC on iis6?
How to authenticate users on one site and pass credentials to other site? ( Windows Authentication, ASP.Net)
Web application to use window domain accounts for authentication
How do I set a default role for a new user using Windows Authentication with the SqlRoleProvider?
Getting authenticate AD users objectGuid from asp.net
Integrated Security
Windows Authentication and Network Service account as a db_owner
IIS7 and Authentication problems
Using Windows Role authentication in the App.config with WCF
Passing AD authentication credentials via IE browser in C# Windows Form
ASP.NET cannot connect to SQL Server 2005
Why can't I read from .BAK files on my Desktop using SQL Express in Windows Authentication Mode
Windows authentication problems using asp.net
Windows Authentication in SQL Sever 2000 for an account not logged into Windows
.NET Windows Integrated Authentication
Using windows authentication to log on to site using c#