Exchange account configuration (iOS device policy)

With the Exchange account configuration you set up a connection to a Microsoft Exchange Server email server.

Setting

Description

Account name

The account name.

Exchange server

The Exchange server address.

If you use the Sophos Mobile EAS proxy, enter the URL of the EAS proxy server.

This field is ignored if you use OAuth without an OAuth sign-in URL.

Domain

The domain for this account.

User

The user for this account.

If you enter the variable %_USERNAME_%, the server replaces it with the actual username.

Email address

The email address of the account.

If you enter the variable %_EMAILADDRESS_%, the server replaces it with the actual email address.

Password

The password for this account.

If you leave this field empty, users must enter the password on their devices.

Turn on OAuth 2.0

The account uses the OAuth 2 authentication framework, i.e. users authenticate with their Microsoft credentials.

OAuth authorization endpoint

The URL of the OAuth endpoint handling requests for user authentication, i.e. the Microsoft sign-in page.

When you use this, the Autodiscover feature of Exchange Online and Exchange Server is not used and you must enter a server address in Exchange server.

OAuth token endpoint

The URL of the OAuth endpoint handling requests for access tokens.

Synchronization period

The time period used for synchronizing emails.

Only the emails from within the specified period are synchronized to the inbox on the managed device.

SSL/TLS

The connection to the Exchange server is secured by SSL or TLS (depending on what the server supports).

We recommend that you select this check box.

Allow move

Users can move emails from this account to another. This also allows users to use a different account when replying to or forwarding a message from this account.

Allow recent address syncing

The account is included in the syncing of recently used addresses with other devices using iCloud.

Use in Mail only

The account can only be used to send messages from the Mail app. It cannot be selected as a sending account for messages created with other apps, for example Photos or Safari.

Identity certificate

Select the identity certificate for the connection to the Exchange server.

The list includes all certificates from Client certificate configurations of the current policy.

Enable S/MIME

Users can send and receive emails that are encrypted with a S/MIME certificate.

Signing certificate

Encryption certificate

The certificates that are used for email signing and encryption.

You need to upload a certificate before you can select it. You do this in the Client certificate configuration of the current policy.

Allow user to send unencrypted emails

For each outgoing email, users can choose to encrypt it.

Synchronize calendar

Outlook calendar items (events, appointments, meetings) are synchronized with the Calendar app.

User can change calendar synchronization

The user can turn calendar synchronization on or off.

Synchronize contacts

Outlook contacts are synchronized with the Contacts app.

User can change contacts synchronization

The user can turn contacts synchronization on or off.

Synchronize mail

Outlook email is synchronized with the Mail app.

User can change mail synchronization

The user can turn email synchronization on or off.

Synchronize notes

Outlook notes are synchronized with the Notes app.

User can change notes synchronization

The user can turn notes synchronization on or off.

Synchronize tasks

Outlook tasks are synchronized with the Reminders app.

User can change tasks synchronization

The user can turn tasks synchronization on or off.