The iPhone 3GS now supports device encryption out of the box which seems to satisfy Exchange ActiveSync policies, this is great news for iPhone 3GS users.
The not so great news for Exchange Admin’s if an iPhone 2/3G is upgraded to the 3.0 OS. Even though the device does not support encryption the iPhone 3.0 OS is set to report it is enabled and cannot be changed.
This is not the fault of Exchange ActiveSync as it is up to the licence which features they implement. The software then reports which policies it has enforced.
I have also heard reports that iPhone 3.0 OS can bypass the timeout period before the PIN lock kicks in.
In recent times lots of non-WinMo ActiveSync clients for have started to appear. Maybe it is now time to start locking down ActiveSync to only approved devices/clients.
Daniel Noakes
2 comments:
Right, so the PIN issue should be fixed in iPhone OS 3.1. No word on the encryption issue yet.
Looks like 3.1 enforces encryption so non 3GS users will not be able to sync with ActiveSync if encryption is set in the policy. Time to create a separate activesync policy for non 3GS users.
George
Post a Comment