How to Configure Custom HTTP Responses for Devices


Topic Last Modified: 2005-06-02

When deploying RSA SecurID in your organization, the ActiveSync client on the Microsoft® Windows Mobile™ device must be able to distinguish between RSA SecurID authentication and Exchange ActiveSync responses. To enable this capability, you must configure custom HTTP response headers on the WebID virtual root that contains the HTML forms configured by RSA ACE/Agent.

This procedure is only one of a series of steps that you must perform when deploying RSA SecurID two-factor authentication. Before performing the steps in this procedure, read "How to Use RSA SecurID with Exchange ActiveSync" in the Exchange Server 2003 Client Access Guide.

  1. In the IIS snap-in for MMC, locate the WebID virtual directory on the front-end server. This virtual directory is created by SecurID and contains the SecurID authentication forms and responses.

  2. Right-click the WebID virtual directory, and then click Properties to open the properties for this virtual directory.

  3. Click the HTTP Headers tab, click the Add button, and then enter the following header information.

    The following value is case-sensitive and must be entered on one line.

    Custom Header Name: MSAS-TwoFactorAuth Custom Header Value: True Custom Header Name: MS-ASProtocolVersions Custom Header Value: 1.0,2.0 Custom Header Name: MS-ASProtocolCommands Custom Header Value: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse