we are evaluating sophos mobile central for securing exchange active sync access to onpremise exchange server.
Question 1: Is EAS proxy in powershell mode for onpremise exchange server secure enough?
As noted in documentation in powershell mode there is direct connection to exchange server. So only authentication is controlled by EAS proxy and there is no additional security wall/shield between internet and exchange server. I think about vulnerabilities can exploited without authentication.
I think this powershell mode is secure enough with exchange 365 in microsoft cloud, but is it secure enough in connection with onpremise exchange server.
Are there some opinions? Is real proxy mode more secure at all?
Question 2: Is it possible for internal unmanaged devices to connect directly to exchange server by exchange active sync when using EAS proxy in powershell mode?
[edited by: GlennSen at 4:41 AM (GMT -7) on 2 Apr 2023]