We set up an SA2000 for ActiveSync using the v7R2 firmware. You must use a different URL than the one for regular remote access, maybe an A record or a CNAME record pointing to the same public IP address as used for remote access. Apple's iOS configuration can be set to ignore SSL certificate errors. You also need to create a separate URL that the one you use for Outlook Web Access. Even though it's the same internal server, the rewrite mechanism will break OWA if you use the same URL for ActiveSync. Since we don't have an SA700, your experience may vary. For our final configuration, we used a separate public IP address because we have a web application firewall in front of the SA2000 and we wanted to keep the rules as tight as possible. We also created a new Virtual Port and set it to require a client certificate to connect to the virtual port. The client certificate is ussued by our internal certificate authority. FWIW, Ray
... View more