Skip to content

Exchange account configuration (iOS user policy)

The Exchange account configuration lets you add an Exchange Online or Exchange Server email account on the device.

Setting Description
Account name The account name.
Exchange server For Exchange Online, enter outlook.office365.com.

For Exchange Server, enter your server URL.

Note that outlook.office365.com applies to the worldwide Microsoft 365 cloud. If you’re using a different Microsoft 365 cloud, such as Office 365 Germany, see the Microsoft document Office 365 URLs and IP address ranges.

When you use Exchange Server with the Sophos Mobile EAS proxy, enter its URL instead.

Leave this field empty when using OAuth. The Exchange host is auto-discovered.

Domain For Exchange Online, leave this field empty.

For Exchange Server, enter the domain of the user account.

User The user's sign-in name.

For Exchange Online, this is usually the email address. Enter %_EMAILADDRESS_% to use the email address of the user assigned to the device.

For Exchange Server, enter %_USERNAME_% to use the name of the user assigned to the device.

Email address The email address of the account.

If you enter the variable %_EMAILADDRESS_%, the server replaces it with the actual email address.

Password The password for this account.

If you leave this field empty, users must enter the password on their devices.

Turn on OAuth 2.0 The account uses the OAuth 2 authentication framework, i.e. users authenticate with their Microsoft credentials.
OAuth authorization endpoint The URL of the OAuth endpoint handling requests for user authentication.

When you enter a value, the mail server isn’t auto-discovered. You must enter its URL in Exchange server.

Only enter a value if required by your authentication provider.

OAuth token endpoint The URL of the OAuth endpoint handling requests for access tokens.

Only enter a value if required by your authentication provider.

Synchronization period The time period used for synchronizing emails.

Only the emails from within the specified period are synchronized to the inbox on the managed device.

SSL/TLS The connection to the Exchange server is secured by SSL or TLS (depending on what the server supports).

We recommend that you select this check box.

Allow move Users can move emails from this account to another. This also allows users to use a different account when replying to or forwarding a message from this account.
Allow recent address syncing The account is included in the syncing of recently used addresses with other devices using iCloud.
Use in Mail only The account can only be used to send messages from the Mail app. It cannot be selected as a sending account for messages created with other apps, for example Photos or Safari.
Identity certificate Select the identity certificate for the connection to the Exchange server.

The list includes all certificates from Client certificate configurations of the current policy.

Enable S/MIME Users can send and receive emails that are encrypted with a S/MIME certificate.
Signing certificate,
Encryption certificate
The certificates that are used for email signing and encryption.

You need to upload a certificate before you can select it. You do this in the Client certificate configuration of the current policy.

Allow user to send unencrypted emails For each outgoing email, users can choose to encrypt it.
Synchronize calendar Outlook calendar items (events, appointments, meetings) are synchronized with the Calendar app.
User can change calendar synchronization The user can turn calendar synchronization on or off.
Synchronize contacts Outlook contacts are synchronized with the Contacts app.
User can change contacts synchronization The user can turn contacts synchronization on or off.
Synchronize mail Outlook email is synchronized with the Mail app.
User can change mail synchronization The user can turn email synchronization on or off.
Synchronize notes Outlook notes are synchronized with the Notes app.
User can change notes synchronization The user can turn notes synchronization on or off.
Synchronize tasks Outlook tasks are synchronized with the Reminders app.
User can change tasks synchronization The user can turn tasks synchronization on or off.