How can you configure an Exchange Account in Mac OS X to use a SSL client certificate?

I'm trying to connect the Mail App of Mac OS X to my company's Exchange server. For security reasons you have provide a SSL client certificate to the server. You can convince Safari to use a client certificate by putting it into your keychain and configuring a suitable "identity preference" for the URL of the related site. But the Mail App seems not to use the keychain for this part of the SSL negotiations.
Since you can configure the client certificate usage for an Exchange Account for the iPhone with the Configuration Utility there should be a way for the desktop App, too. Has someone sorted this issue out already or does the Mail App actually lack of client certificate support?

I had a nice chat with the Apple end user support which revealed that this feature falls in the responsibility of the business support group. Since I have no appropriate support contract I could ask for help for about 480€ per issue -- nice try
After more research I found the Configuration Profile Reference, where you get information about Exchange accounts too. Starting with a working iOS-Profile I changed the Exchange account part according to this documentation for OS X. All you have to do is to replace PayloadType com.apple.eas.account by com.apple.ews.account.
After importing this profile I found the expected Exchange account within the Contacts.app. But the SSL client certificate was still not used and therefore my account not usable.
You could enable Mail, Calendar & Reminders and Notes within the System Preferences, but neither of these would work due to the missing client certificate support.
I came to the conclusion that the relevant applications in OS X have no proper SSL Client support build in. Since the underlying libraries and frameworks have everything in place that is really a shame.
Would be nice, if someone would enforce the developers to do their homework there.

Similar Messages

  • TS3276 can you have multiple exchange accounts in mail in mountain lion

    can you have multiple exchange accounts in mail in mountain lion

    Just use IMAP for the accounts. I have 4 Exchange accounts in my Mail app and they are all set up that way. but yes, there can only be 1 Exchange account (which I believe has more to do with the Exchange API than Macs)
    hope this helps.
    Eric

  • How can I get my exchange account recognised by my home mac?

    How can I get my exchange account recognised by my home mac? I got absorbed into the Mac world as I was given an iPad at work. I am having problems getting my work account synced with my new iMac at home. I work with Exchange at school and gmail and yahoo at home. I'd like to have my notes, agenda, contacts and Exchange account in sync... ¿Es poslble?
    Thanks!

    Depends what OS X and Browser you are using?
    If you are on Snow Leopard (10.6) and Safari (5.1.7) then open Safari Preferences, select the General tab and make sure that:
    1. Safari opens with: A new window
    2 New windows open with: Homepage
    3. Homepage: is set to the desired https: site

  • How can you configure mail settings in process chains?

    HI Experts,
    please let me know how can you configure mail settings in process chains?

    Dear Suman,
    To initiate the mails we first need to have SMTP connection. To check the same go to so00 and try sending mails to ur ID. If is successful it states that u have the SMTP access.
    To create mails to Process chains:
    Right Click on the Process varient select the Create Message in the context menu.
    Select the type of mail i.e for successful, Error, Anyways.
    Then follow the screens.
    Note: The recipient type should be Via Internet.
    Hope this helps u.
    Regards,
    Kishore.Pulla

  • How can you delete the mail account on iCloud once you've added one.. If it were wrong...

    How can you delete the mail account on iCloud once you've added one.. If it were wrong...

    I have the same problem, someone pleeeaase help.

  • How can you change data on a SQL 2012 application database that uses availability groups from BizTalk server?

    If you use the WCF-SQL adapter it is recommend that you set UseAmbientTransaction to true if you are changing data. I think this requires MSDTC to be enabled on the SQL server that you are changing the data on. (http://msdn.microsoft.com/en-us/library/dd787981.aspx)
    I think that Availability groups does not support MSDTC. (http://msdn.microsoft.com/en-us/library/ms366279.aspx).
    How can you change data on a SQL 2012 application database that uses availability groups from BizTalk server?

    Hi,
    Yes, Availability groups doesn't support MSDTC. Please refer to the similar discusison which maybe helpfull:
    http://dba.stackexchange.com/questions/47108/alwayson-ag-dtc-with-failover
    http://stackoverflow.com/questions/17179221/msdtc-in-always-on-availability-groups

  • How do you configure 8.1.7 NT/IFS 1.1 to use Apache for IFS?

    Now that the 8.1.7 version for NT and IFS 1.1 is out how do you configure it to use Apache for IFS?
    There is no 'ifsapachesetup' file included in the download (the CDs are still not available).
    Installed 8.1.7 database on a clean (no oracle) PC running NT server 4.0 sp4.
    Installed IFS 1.1 download using default selections except I unchecked the JWS option.
    The database works fine and the IFS agents appear to be operating properly.
    IFSMGR batch file works fine but how do you access the webui? Have tried ports 80, 8080, 7777, 7070, 100 and nothing works.
    null

    Hanne ....Greetings. The Apache HTTP server is up and running. Even better, my users can get to it! The URL issue, I think, really put a damper on what was otherwise a pretty clean install. Specifically, on page 9-9 of the Oracle Internet File System Release 1.1 Setup and Administration Guide; Part No. A81197-04, 1-Sep-00, that I downloaded from technet.oracle.com, the ifsapachesetup.exe reference, the port 7777 reference and then the invalid URL sent me round and round for awhile. When I saw Rick Post's post on the iFS Forum and then Brian Ball's response, I knew there was something incomplete about the documentation. When I figured out which parts of the 'system' need to be running, I saw that the /ifs/files URL would work if Apache and ifs were up, and it did.
    Also, I think the startup/shutdown of the OracleHTTPserver service vs the Start/Programs/oracle_home/Oracle HTTP server/Start....Stop could be clarified a little more. I did find out that you could accidently shut down the Apache server by closing the NT application window it runs in, whereas, starting HTTPserver from the services Services eliminates this (this I think is in the documentation).
    In short, I'm up and running. Neat product. Need an errata in the Release Notes or Installation Guide regarding this URL deal.
    thanks
    fred

  • How can you connect your iPod touch to your Vista computer without using Apple Software

    How do you connect an iPod touch to your Vista computer without using any Apple products

    There is no other legit way to sync your iPod than using iTunes. There is 3rd party software to transfer content from the iPod to your computer, but not from the computer to your iPod.
    Disk mode is not supported.
    See also: http://www.apple.com/ipodtouch/specs.html

  • How do you make an exchange account as the default?

    I had an iphone 5 but that became bricked a few days after installing IOS 8 on it.  So I went back to an older iphone 4 until the end of October when the 6 plus is due to ship (hopefully sooner though).
    On the iPhone 4, there is no way to make my work Exchange account the default.  For mail I can only mark gmail or icloud as a default mail account.  However for Calendars, my work e-mail is the default.  On my previous phone, the 5, my work exchange email was the default.
    Currently I cannot send a photo from the photos app and make it from my work email. I can view and reply to work email messages, but its just not possible to make it the default account.  The account is pushed to the devices via MaaS360, but so was the account on the iPhone 5 (and all other devices accessing corporate credentials).

    Here is the KB 20098 article URL for setting up an Exchange Active Sync. You need to follow theses steps to set this up on your device. Remember that a certificate needs to be added to the device; either a self-signed or privately issued certificate.
    http://kb.palm.com/wps/portal/kb/na/pixi/pixi/sprint/solutions/article/20098_en.html#N100D1

  • How can you clone a admin account?

    I was trying to change the home folder name on my account but ended up moving my home folder and converting my account into a new admin account. All the default settings on the account were gone and it looked like a new mac.
    After locating my user folder with my entire mac moved into it I copied it to a external HD.
    I now need to create 1 new admin account and set my home folder to the old folder so all my original settings are restored to how I had them customized before.
    How can this be done??
    HALP D=
    Jon

    Hi figment,
    Have you tried one of the templates in
    Numbers > Menu > File > New From Template Chooser > Personal Finance ?
    Regards,
    Ian.

  • How can you create an online account for a family plan of 3?

    Hey there,
    I recently switched from T-mobile to Verizon and got a family plan(10 GB More Everything Plan with Verizon Edge) for my parents and myself at the store. Unlike T-mobile where you can see activities of all 3 phones, the Verizon online account is only for 1 phone (or I am not doing it right ?!!! ).
    And by looking at each individual account, it doesn't look like I have a family plan sharing 10 GB data ($80 montly account access fee + 3*$15/line monthly access fee=$125), but instead each phone has 10 GB ( $80 montly account access fee + $15/line monthly access fee=$95, which totals to $95*3=$285 for the family).
    Is there a way I can check to see if I have a family plan? Any help will be greatly appreciated.
    Thanks,
    Christy

    If all 3 phones are on the same More Everything plan, the account owner only would be able to see the activity of all 3 lines. The other 2 lines would only be able to see the activity from their own line. Have you tried logging into the MyVerizon account from each line? Possibly the line you have been logging in with is not the account owner line.
    Either calling CS as indicated above or stopping by a Verizon store would be able to remedy your situation if you are on separate accounts instead of just one.

  • HT1918 How can you change your security account questions

    After your account has been unlocked after eight hours how do you change the security questions answered if you have forgotten ?

    Check the AppleCare number for your country here:
    http://support.apple.com/kb/HE57
    Call them up, and let them know you would like to be transferred to the Account Security Team.

  • How can you configure Firefox to apply updates as soon as they are available?

    I have a mandate to update Firefox across every machine in my enterprise within 48 hours of a new release. I have been doing this with intranet distribution tools (SCCM, etc.) but because of the frequency of Firefox updates this has become laborious.
    I've been looking at the about:config settings in the "app.update" category (http://kb.mozillazine.org/Category:Preferences) and some of those seem promising. As a test, I set "app.update.silent" to TRUE and "app.update.interval" to 60 (seconds) on a legacy version of Firefox. I restarted the browser, let it sit for a few minutes then restarted it again expecting the latest update to apply, but nothing happened.
    How can I script or automate via Firefox's internal settings the same update process that is triggered when users manually go to Help > About?

    The Nightly versions have these values for some of the prefs because they can be updated daily more than once because of a respin
    *app.update.interval : 7200
    *app.update.promptWaitTime : 43200
    You may need to reset update timer prefs.
    *app.update.lastUpdateTime.background-update-timer
    You can have a look at the comments in the source code that handles the updating process to see if that gives some ideas.
    *http://mxr.mozilla.org/mozilla-central/source/toolkit/mozapps/update/nsUpdateService.js
    *http://mxr.mozilla.org/mozilla-release/source/toolkit/mozapps/update/nsIUpdateService.idl
    *http://mxr.mozilla.org/mozilla-release/source/toolkit/mozapps/update/nsUpdateService.js#1951

  • How can you configure such system

    hi all ,
    some Supply Chain , has 1 server oralce 8 , 50 Distributors having Win98 running Personal Orale , each Distributor have many sales persons visiting retails and at the end of the day they manually enter their invoices in the Win98 Personal Oracle ,
    Personal Oralce replicates with the server every 24 hour using dial up connection ,
    they wanted to accelerate system by using Pocket PC 2002 with the sales persons ,
    how can we use oralce lite and Mobile Server in such a configuration ?
    N.B. they are not willing to change win98 machines
    regards

    1.u can see availabilty any time in ENVIRONMENT---> Availability
    2.In case of shortages system wil give a pop up for this the followoing setting has to be done:
    in SPRO>SALES AND DISTRIBUTION->BASIC FUNCTIONS> AVAILABILITY CHECK AND TOR-> AVAILABILITY CHECK->AVAILABILITY CHECK WITH ATP LOGIC OR AGAINST PLANNING-> DEFINE DEFAULT SETTINGS
    Here for ur sales area in rule put blank which wil give dialog box in case of shortages
    anil

  • How can you manage an icloud account if you are unable to acces the email to reset password

    downloaded IOS8 to my Iphone and now it is logged to my old Icloud account. I am unable to change it to my actual account because I need my password to sign out of the old one. I no longer have access to the email on my old account . Can somebody help? I am tired of canceling the pop up window that appears on my screen urging me to log to my old icloud account every time I want to use an app or feature on my phone. please someone who can guide me through the steps please, there must be a way. good day

    http://support.apple.com/kb/TS5223
    the answer to my problem right here thanks to Ironboots
    I went to Facetime settings and provided my current Apple Id and password then went to Icloud settings and used my current password on the old account email and it accepted it. Then proceeded to delete old account and then logged in using new account. The same password worked in both accounts. Problem solved, no more annoying pop ups urging me to log in to icloud while using my iphone.

Maybe you are looking for

  • JRE.exe error in Oracle Forms 6i

    Anyone who encountered this error before and managed to solved the problem please assist me. I'm using Oracle Forms 6i Release XP taken from OTN download page installed in a Pentium 4 computer with Windows XP as an OS. Thank you

  • Can I use the Ipad3 power adapter for the Iphone5

    Can I use the Ipad3 power adapter for the Iphone5 or vice versa?

  • TS3212 HOW DO I GET TO THE A-Z SONG AREA FOR MY IPOD SHUFFLE?

    Hi there....anyone out there who can tell me where to go to just download single songs from a  to z on my ipod shuffle....? It should be simple, however I am not having any luck....thx.lisa

  • Vendor problem in Garnishments

    Hi, In my company HR is being implemented now. We were using SAP Fi for more than a year (but in a different client). Now when we are implementing HR, we are not doing 3rd party remittance, and so we did not maintain any FI vendors in our present cli

  • Best practices for connecting to DB

    Hi, I am having 3 different java classes which will contact the DB for getting the data from the table. I wrote a separate java class for DB connection like this : public class DBConnection { private Connection con; public Connection getConnection()