2

We have some user in our company is constantly locked in the Active Directory via ActiveSync. We are reading logs and doing various tests. We was found out:

  1. We see logon attempts with the wrong password from IP of mobile operator.
  2. Phone brand is Nokia.
  3. Phone isn't listed in partnership list of Exchange ActiveSync. Maybe it was there, but we clean the entire list, when try to resolve the problem.
  4. We know a phone ID, but it's impossible to block.
  5. We don't know the location of the phone.

What else can we do to resolve this problem?

We can't just turn off ActiveSync, because user have another phone synchronized.

tpml7
  • 479
Konstantin Bratulin
  • 21

1 Answers1

0
  1. You might be able to do a specific filter with a firewall rule, but that would probably require SSL inspection which could prove quite a headache.
  2. Here's an option to block ActiveSync devices (through ECP), but as far as I can tell there's no way to block a specific device, but a type.
    http://blogs.technet.com/b/exchange/archive/2010/11/15/3411539.aspx
  3. You can try contact the mobile operator, and ask their help.

If the options above have failed (or just irrelevant), then I'd go with AWippler suggestion and change the username - it's the simplest and surest option.

EDIT:
I've just found a blog that demonstrates how to block specific device by ID, but I haven't tested it myself.

EliadTech
  • 1,260