Managing Exchange ActiveSync for Gmail

The Exchange ActiveSync section lets you manage Exchange ActiveSync settings for Gmail installed in Android work profile or on devices managed via the Kaspersky Endpoint Security for Android app in device owner mode.

To open the Exchange ActiveSync section:

In the console tree, in the Managed devices folder, select the administration group to which the Android devices belong.
In the workspace of the group, select the Policies tab.
Open the policy properties window by double-clicking any column.
Complete the following steps within 15 minutes. Otherwise, you may face an error when saving changes to the policy.
In the policy Properties window, select the App configuration > Exchange ActiveSync section.
Specify the following settings:
- Exchange ActiveSync server address
  The Exchange ActiveSync email server URL. You don't need to use HTTP:// or HTTPS:// in front of the URL.
- Force use of SSL
  Selecting or clearing this check box specifies whether SSL communication to the server port that you specified in the Exchange ActiveSync server address field will be used.
  
  The checkbox is selected by default.
- Disable SSL certificate verification
  Selecting or clearing this check box specifies whether validation checks on SSL certificates used on Exchange ActiveSync servers will be performed. Performing a check is useful if certificates are self-signed.
  
  The checkbox is cleared by default.
- Authentication type
  The authentication type used to verify a device user's email credential. Possible values:
  - Modern token-based authentication. Uses a token-based identity management method. This value is selected by default.
  - Basic authentication. Prompts the device user for their password and stores it for future use.
- Device ID
  A string used by Kaspersky Security Center proxy or a third-party gateway to identify the device and connect it to Exchange ActiveSync. You can either enter the value or select it from the Available macros drop-down list.
- Username
  The username that will be used to pull the username from Microsoft Active Directory. It might be different from the user's email address. You can either enter a value or select one from the Available macros drop-down list.
- Email address
  The email address that will be used to pull the user's email address from Microsoft Active Directory. You can either enter a value or select one from the Available macros drop-down list.
- Available macros
  A macro that will be used to replace values in the corresponding fields. Possible values:
  - %email%. Specifies the email address of the user to whom the device is registered. The value is retrieved from a mobile certificate.
  - %email_domain%. Specifies the email address domain of the user to whom the device is registered. The value is retrieved from a mobile certificate.
  - %email_user_name%. Specifies the username from the email address to which the device is registered. The value is retrieved from a mobile certificate.
  - %user_name%. Specifies the username under which the device is registered. The value is retrieved from a mobile certificate.
  - %device_id%. Specifies the ID of the device.
  - %group_id%. Specifies the ID of the administration group to which the device belongs to.
  - %device_platform%. Specifies the device platform.
  - %device_model%. Specifies the device model.
  - %os_version%. Specifies the operating system version on the device.
- User certificate
  The string alias that represents a certificate with a private key. The certificate can be a user certificate for authentication to the Exchange ActiveSync servers.
- Default synchronization interval
  The default time interval when the Exchange ActiveSync servers synchronize mail items to Gmail. Possible values:
  - 1 day
  - 3 days
  - 1 week (default)
  - 2 weeks
  - 1 month
- Default email signature
  The default email signature that is automatically added at the bottom of emails.
Click the Apply button to save the changes you have made.

Mobile device settings are changed after the next device synchronization with Kaspersky Security Center.

Page top