I have a Sprint Mogul, which obviously lacks Remote Desktop. So I downloaded the WM6RDP.cab. I then tried connecting to my Vista laptop. Horray - it worked! Then I tried connecting to one of my servers. This server requires TLS to connect (this is the security feature introduced with Server 2003 SP1 that prevents man-in-the-middle attacks by encapsulating all RDP traffic within TLS 1.0 - Vista supports it also, but it's disabled by default). I tried connecting and got "An internal error has occurred." Is TLS supported at all on Remote Desktop for WM6, or is this some problem introduced because I installed RDP after the fact? Sigh, this is truly frustrating.
Related
Hi,
I'm having a mare trying to get more info anywhere on the web.
I have an Intranet based web app running on latest version of IIS with .NET & SQL Server 2000 (on different boxes) using Integrated Windows Authentication (the IIS is trusted to the SQL Server box)
It runs fine on IE v6 provided the Enable Integrated Windows Authentication checkbox is ticked.
However on the XDA using Pocket IE (ROM 3.17.03 ENG) it gives Login failed for user 'NT AUTHORITY \ANONYMOUS LOGON' which usually means no Integrated Windows Authentication.
I can't find any docos on whether Integrated Windows Authentication is supported in Pocket PC 2002 - has anyone else come accross this or got any pointers they could help me with?
Thanks
As far as I know, Integrated Windows Authentication means that IIS will use the user's Windows login to authenticate the user. This is normally using your DomainName\Username for windows. When you are on your xda, you are not authenticated by Windows as the xda is not on the domain and you are logging into "Windows" using the same DomainName\Username on your xda. Try changing the IIS setting to use simple authentication so that users are prompted for a username and password to access the website.
I hope this helps
Thanks Illwil.
I can't allow simple authentication on the IIS as it will then screw the security for PC users (ie 99%)
I'm already logging onto the Domain via a dial up connection so it should all be OK
I think its something to do with Pocket IE declaring itself as IE version 4 to the Web Server rather than as Pocket IE
IE v4 doesn't support NTLM authentication (ie Windows Integrated Authentication) whereas I think Pocket IE should.
Also I've got 2002 which means that ByPass proxy server for local sites is automatic so its not that.
Still scrabbling - any help still gratefully received!
An answer after 3 months!
Bit of a dull one I know but just in case anyone was interested (!) I've used some mobile web forms instead of normal web forms - they only support ObjectList as opposed to DataGrid but seem to allow the windows integrated seciruty to work.
Thanks to anyone that gave this some thought.
John
I've just set up a small wireless network at home through which I intend to use several devices to connect to the internet through my LAN!
The LAN gateway is running ISA 2004 and my home computer is running the necessary Firewall client (a completely secure connection with username and password)!
Now everything's working fine... the pocket pc hooks up just right and i can browse the network and do what I could probably do using my own personal computer BUT the internet doesn't work!
It keeps asking me for a username and password (which like i usually provide in internet explorer on my personal computer) which i do supply... three times in a row after which it gives me an error saying that ISA cannot authenticate me!
The home computer doesn;t run the internet without the firewall client, and i'm supposing the pocket pc is facing the same dilemma! is there any way to circumvent this issue? perhaps a mobile version of the isa firewall client?
Please help. Thanks!
afaik there isn't a mobile version of the firewall client.
I set my ISA server to allow anonymous internet access ,and set all my machines up as secure nat clients (set isa servers ip as default gateway, I use a dhcp scope to do this). There is lots of info on this on microsofts ISA server website, I'd suggest a look there first, or try a google for secure nat.
Good luck, works well for me but ymmv.
Hello!
I have a Universal in german from T-Mobile Austria and a BlueAngel also from T-Mobile Austria. As we all know the Universal has the new OS Windows Mobile 5.0, the BlueAngel has Windows Mobile 2003.
So and there is a BIG difference between these two OS (OR A BIG BUG, I don't know).
The problem is: With the file-explorer (or Total Commander 2.0, which i prefer) you can connect with WLAN to a share on a computer. Enter the UNC-path under path in the file-explorer, the device asks for a login and it works. So it is unter Windows Mobile 2003 with the BlueAngel. And it doesn't matter to which computer I will connect: to my server with Windows Server 2003 or to my workstation with Windows XP. I enter my domain account and it works.
On the Universal it doesn't work when I will connect to my server with Windows Server 2003. It's absolutely impossible to connect to a share on my server. BUT I CAN connect to a share an my workstation with Windows XP WITH MY DOMAIN ACCOUNT. So what I see in the moment: The NTLM-authentication works because I can connect to any Windows XP with a domain account, but the connection to a share on a server with Windows Server 2003 fails. And this only with the Universal, because in the same time with my BlueAngel it works.
My question is: Has somebody the same ugly problem or maybe I do somethimg wrong, I don't know.
And that's the reason why I can't change my device in this moment and why I love my BlueAngel.
Best regards, Peter
i to have this issue, i can map to xp shares no probs but win2003server shares just loops on the password screen.
big issue for me this
w2k3 issues
Click to expand...
Click to collapse
I had the same issues on w2k3-server before installing the latest updates.
After new W2K3 installation and newest updates: no problems.
The problem could be active directory.
Have a look to "NetBIOS over IP" at IP-settings. Resco Explorer can't map UNCs, only NetBIOS-names, it's my monitoring.
Greetings, Gerd Dubrand
that dosent fix the problem, just tried it, it worked fine on my BA but not on JJ.
I also cannot connect to my Win2003 server via jasjar, but I can connect to my win2000 advanced server. Win2003 server is sbs2003 with all updates applied. Can connect to both via my pda2k. Interesting?
IS the server a DC? you may need to disable the 'Microsoft network server: Digitally sign communications (always)' setting the default DC GPO - http://support.microsoft.com/kb/823659. This is enabled by default for DC's and acan cuase issues when talking to downlevel clients (I've had this problem with samba clients.
It mayalso be set in the local secuirty policy.
But then again this might not be anything to do with it...
Anything in the logs on the server?
GOOD IDEA, TINTOY!!!
Thank you for your samba server and your idea, tintoy. Your hint works!
For all others aigan the solution:
On a Windows Server 2003 domain controller you have to disable 'Microsoft network server: Digitally sign communications (always)'. I haven't this done by Active Directory, i have this done by 'Security settings for domain controller' -> 'Security Options' in 'Management'.
Note: Please excuse when I don't have used the correct names, because I have only a german version of the Windows Server 2003 and I don't know the exact names of the program groups of the english version. But I hope you know, what I mean.
Thank you aigan tintoy, this problem is solved!
See you all again here,
Peter
I confirm this,
network server: Digitally sign communications (always)
change to disabled in the Default Domain Controller Security Settings.
This has just made my day. odd how wm5 is apparently newer but dosent quite work out the box like wm2003 did
np ;-)
Exchange 2003 not connect with mobile 6.1
Someone can write a detailed description ? I have the same problem.
Thanks
I just installed the Finster cab for WM6's Remote Desktop on WM5. I have an 8125. I can connect to XP desktops just fine. I can connect to Vista desktops fine as long as they do not have "require network level authentication" enabled. I get "An internal error has occurred" if that is enabled. Last, I can't connect to any of my 2003 R2 servers. The 2003 R2 servers are set up to all require TLS mutual authentication for maximum security (corporate requirement).
Two questions...
1. Is this simply a WM5 thing? For instance, the internal equivelent of "schannel" just doesn't support the necessary TLS 1.0 requirement for those features? (or something like that) If I got a WM6 device (or installed one of those WM6 ROMs on my good ol' Wizard), this would work?
2. If this does occur on WM5 and WM6 devices both, how does one fix this? If at all?
Thanks.
EDIT: The phone does have the necessary root CA installed to authenticate the remote servers via SSL/TLS. I sync to Exchange over the air over SSL to the same server I'm attempting to remote into.
Hi,
I have a HTC TyTN ll and I am having problems synchronising my work email.
The server at work has exchange 2003 SP2 and Activesync. We also have both OWA and OMA and I can access these succesfully through the PDA.
The OWA/OMA both use SSL and have a instantssl certificate installed which I have downloaded and installed onto my device.
My credentials are correct, I have recreated the data source and resetted device but..
During snychronisation on the PDA I get the following error:
"ActiveSync encountered a problem on the server" Support Code: 0x85010014.
Following a google I found that this is as a result of having the SSL port 443 defined in IIS for the webmail site. Now if I remove this port I get the message "waiting for network". I have read this is temporary, but I have tried for the past few days and it still doesnt get past this stage. I am using our wireless and the GPRS as provided by orange to connect.
Also removing the port 443 has concequences on anyone else accessing the OWA as it does not work.
Do any of you guys know any ideas on how I can get the PDA to synchronise?
Will I have to first create an activesync partnership with the server?
Many Thanks in Advance
I now recieve the following error on the server:
Exchange Server 2003" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=817379). For information about how to properly configure IIS to support Kerberos and NTLM authentication, see Microsoft Knowledge Base article 215383, "How To Configure IIS to Support Both Kerberos and NTLM Authentication" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=215383). This issue may occur after installing Windows SharePoint Services on a server running Exchange Server 2003. For information about how to properly configure a server to run both Windows SharePoint Services and Exchange Server 2003, see Microsoft Knowledge Base article 823265, "You receive a "Page not found" error message when you use Outlook Web Access (OWA) to browse the Exchange Server 2003 client after you install Windows SharePoint Services" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=823265).
Exchange is installed on an SBS 2003 and I dont believe the microsoft kb is useful for this. Even if it is, I can work around this by removing ssl. However at this point I dont get any errors on the server and all I get from the HTC is "waiting for network". As mentioned earliar.
Any suggestions would be highly appreciated.
Thanks