Forum Discussion
Solved
Skye for Business App on IOS and Android Cert based Authentication to Exchange
Our Company policy dictates that we must lock down our exchange with 2 factor authentication. So we force a pin number to our devices and configure exchange active sync to authenticate via a user certificate (Certificate based authentication).
Currently there are no options within the skype for business app to connect to exchange using a certifcate. So on launching the application we are prompted with the message (We cant connect to your exchange please try again later).
We can connect to Exchange using certificates for email on the devices using the inbuilt stock email apps.
Q) Are there any plans to implement certificate based authentication for exchange within the skype for business app ?
PLease take a look at this:
To answer your question : Yes
- Hi any updates for a solution? I have on prem sfB and Android skype clients but I need cert based authentication. How can we achieve this , any such feature over the years?
Thanks for the link but we have all on premise (no azure). We have also scrapped the rollout of skype for business on mobiles as its not fit for purpose.
Such as not be able to answer repsonse groups.
Response groups ringing on the mobile app. (if its not supported why ring).
No connection to exchange via certificates. plus many other minor issues.
Until it has basic functionality and not erroring because the app can't connect to exchange and not being able to answer the phone when it rings (response groups). its not fit for purpose so have decided to scrap it for now, We may re-visit the mobile phone side functionality in a couple of years.
- ivanja
Microsoft
Hi Matthew,
PLease watch this recording on ignite from one of our PM's.
https://myignite.microsoft.com/sessions/53262?source=sessions
It explains the roadmap for onprem customers only (it's coming)
As for SfB RGS you are correct, we should not ring if it's not supported.
Let me know if the recording answers your auth questions in any way.
Ivan
- ivanja
PLease take a look at this:
To answer your question : Yes
- I did read the blog before posting. The thread Talks about office 365 accounts (which I don't have) connecting to Skype for business using certificate based authentication. Exchange active sync already supports cert based authentication to exchange. So it wouldn't take much to update the Skype for business phone apps to support this method also. No backend changes are required it's purely an app update. I currently don't need cert based authentication for Skype business yet and again Microsoft always seems to be pushing o365. With on premise fixes coming much later
- For some reason the reply has accepted the response as a solution. (Which its not). It's not an accepted solution as we don't have Azure (we use on premise). And also add said previous no changes are needed to the backend to resolve the issue. (Although it's pointless now as we have scrapped the idea of rolling the app to users as in its current state it's not fit for purpose as the phones do not ring when in standby (on premise). (This is already raised in another thread).
