Disable Cert Check on WM5

Disable Cert Check on WM5

• mtwinkles

  I am having the same problem. Have setup lots of PPC's to access Server Active Sync with either SBS or non-authorative root certifcates.
  
  Usually the "certchk off" util works fine, until I received a new K-Jam and Windows Mobile Ver.5, and now this command just reports a registry error. Looks like the util will not work with Activesync ver. 4.0.
  
  I also cannot getr SpAddCert.exe to work either, leaving a very nice device without the main reason to getting it.
  
  Any help gratefully received.
  

• Gordi

  Oh sorry. ActiveSync for Exchange over SSL, not ActiveSync in cradle fashion.

  
  

• MeDaN00b

  Can you expand a little more on what you are trying to do what you currently have working. Can you cradle the emulator under normal circumstances (using DeviceEmulator manager) and have ActiveSync find it and connect to it The connection between ActiveSync and emulator is done via a COM interface and a plugin DLL in the ActiveSync process. I am not sure how SSL gets involved - maybe you are using a device and not emulator
  
  Thanks,
  
  Vladimir
  
  

• Mohammad Al Husseiny

  Sorry, this forum is for questions related to the DeviceEmulator. You might want to try a PocketPC forum instead.
  
  Barry
  

• Valkrye

  I have a PPC 6700. I was having your exact problem. I kept on getting your certificate is invalid. I even called up Geotrust and they told me the Quick SSL I have does not work with WM5 and I would have to purchase a Power Server ID SSL which is designed for mobile devices.

  I thought this was nonsense because the Quick SSL should work. My OWA and OMA work perfectly. So after reading this forum I double clicked on the 'Yellow Padlock' and saw what kind of certifciate I had. I then went to

  http://www.geotrust.com/resources/root_certificates/index.asp#MicrosoftSmartphone

  I then download the .der certificate into my documents on my PPC-6700. I then ran that file from my PDA. I installed the certificate on my device. I then deleted the partnership ID and re-synched. Voila!!! it worked like a charm.

  I hope this helps buddy.

  - Site Defense

  
  

• Gabe Halsmer

  In your post you mentiont that you "deleted the partnership id" What is the partnership id and how do you delete it.

  Thanks

  Tim

  
  

• Lars-Inge

  Thanks for the hint. I got .crt files when I got my "cheap" certificate for the server. It seems that these were the wrong format. Exported from Windows Server as .der format and all seems to work fine now.
  
  Thanks
  
  Graham
  

• Tom Trenka

  Find out what cert root you use.. You can goto your OWA over SSL on a desktop PC, then double click the yellow lock icon on the bottom right corner of the IE window. Under certification path, it will show the cert authority. Get the proper cert matching the name at http://www.geotrust.com/resources/root_certificates/index.asp, and download the *.cer file. Get the file on your PPC, and run it.

  
  

• Mehdi Moshtaghi

  When we built the SBS server it did a self cert. Did you remove the cert and install the certificate from StartCom

  Currently OWA works. ActiveSync on a Pocket PC 6700 is not working and I want to avoid breaking OWA while trying to fix Pocket PC if thats possible.

   

  
  

• TomYip

  I try to log on to https://owa.socom.mil and get the following message.."The page you are looking for cannot be found due to unknown error 0x80070300" What do you recommend
  

• Jamil Afza

  We are using GeoTrust and I do not understand from the instructions above how to get the certificate onto my PPC.  I keep getting the 'Certificate not valid' error whenever I try to sync.  If I access through the OWA site, there is no option for downloading the certificate.  Does anyone have more detailed instruction for a Windows Mobile 5.0 device   (PPC 6700 ). 
  
  I find it ironic that all of my coworkers easily set up their Treo's to get their mail and I am the lone PPC user making all the trouble for my IT guy.  Not good.

  
  

• hberenson

  Glad it worked (in a round about way).
  
  And I think you gave me the solution to my initial problem which I could never fix (hence my move to the free cert).
  
  So thanks. Funny how that worked.
  

• Tommerenia

  Who is the provider of your SSL certificate I changed my cert on my Exchange server to a free  one via StartCom (http://cert.startcom.org/index.php lang=en). I then followed the instructions here to add to my trusted Root Cert Authorities on my server. Lastly, I added the Certification Authority Cert. (http://cert.startcom.org/ app=109). On the PPC device, this webpage will bring up a dialog box to download a *.der certificate. Download this on the PPC, rename with a .CER extension, and double click that to add the auhority to the PPC device. It should work then. more info here: http://www.msexchange.org/tutorials/SSL-Enabling-OWA-2003-Using-Free-3rdParty-Certificate.html
  
  My guess is that if you installed the certification authority certification from your SSL provider, it should work, not just your certificate on the PPC device.
  
  Let me know if this works out for you.
  

• R Zare

  Yes, I got rid of the self cert.
  
• Disable Cert Check on WM5