Zimbra 8.6 - Use Port 443 only for Active Sync, but disable Webclient Access?

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
christophh
Posts: 8
Joined: Tue Jan 13, 2015 7:46 am

Zimbra 8.6 - Use Port 443 only for Active Sync, but disable Webclient Access?

Post by christophh »

Hello everybody,
in our Zimbra  8.6 Single Server Installation we opend Port 443 from external to be able to use Active Sync for Mobile Devices.
But by doing this, everybody is able to Login to Webaccess via Internet, because it is the same Port (Port 443).
Proxy is enabled, so intern we can ouse Port 8443 to Access Webmail, an from external, wie use 443.
Is there a way tu use two different ports for Active Sync and for Webmail? Active Sync is already enabled only to that kind of users, who should be able to use this.
And for webmail It souldn´t be possible for every user to remote login to his Mailaccount via internet.

Regards,
Christoph
7224jobe
Outstanding Member
Outstanding Member
Posts: 283
Joined: Sat Sep 13, 2014 1:55 am
ZCS/ZD Version: 8.8.15_FOSS Patch38

Zimbra 8.6 - Use Port 443 only for Active Sync, but disable Webclient Access?

Post by 7224jobe »

Hi Christoph,

we managed to achieve what you are asking for using a workaround. We used an external Apache reverse proxy that listens on port 443 and permits connections to /Microsoft-Server-ActiveSync URL (the one used by Active Sync devices) and blocks all other URLS (including "/"), so webmail access is blocked.
christophh
Posts: 8
Joined: Tue Jan 13, 2015 7:46 am

Zimbra 8.6 - Use Port 443 only for Active Sync, but disable Webclient Access?

Post by christophh »

Hi ,

thanks a lot.

I managed it the same way now.

Looks good!
Post Reply