Anand Reviews the Apple iPhone 3G
by Anand Lal Shimpi on July 16, 2008 8:00 PM EST- Posted in
- Smartphones
- Mobile
Time to Exchange?
Special Thanks to Manveer Wasson for the iPhone Exchange/Corporate VPN Testing and Analysis.
There were several pitfalls to the original iPhone firmware that left businesspeople in the dark; IPSec support, WPA2 Enterprise for WiFi, and of course Microsoft Exchange for email calendaring and contacts. When Apple announced back in March that version 2.0 of their iPhone firmware would finally add support for the aformentioned business features, we were excited to say the least. Now that the firmware is finally out, we're happy to say that Apple has delivered on it's promises. So now all you enterprise guys should ditch your BlackBerries and Blackjacks for iPhones, right? Well, not so fast...
Apple's efforts to cater to enterprise customers is definitely commendable, but it just isn't perfect for all situations. Each piece of the enterprise puzzle works well on its own. From the connectivity perspective, things are working as expected. We were able to connect to a large WPA2 Enterprise network without any issues.
The IPSec VPN however is another story. For a company that has a strict security policy, you generally will not be able to access any part of the corporate network directly through the internet (and in this case the internet would be the iPhone's 3G or Edge data connection). You would need to establish a VPN connection to your company to allow for secure communication. Configuration is quite simple. Provide your VPN server address, account name, group name and shared secret. Now go back to the Settings screen, turn on your VPN, enter your password, and you're connected! So what's the problem? Well, when we get into the world of IPSec VPN, a typical deployment is to have two-factor authentication for an extra layer of security. This basically means you need to use a special one-time use password (called a token) when authenticating to your VPN. From a computer you will generally run a software based application to generate this token based on PIN number that you would already know (for example your Domain password).
So what does all that translate to? Well it means if you want to connect using IPSec VPN on your iPhone, you'll have to generate that token from your computer. That token will also have to be generated each time you want to connect to the VPN. This pretty much defeats the purpose of being able to VPN to your corporate network from the iPhone since you probably won't have (or don't want to) fire up your computer to generate a token. This really isn't Apple's fault, but a lot of planning needs to be done on the IT side of your company before you can connect seamlessly over IPSec VPN with your iPhone. One way to remedy the problem would be for the 3rd party authentication companies to create iPhone apps that can act as software token generators. That way you can maintain the security of the two-factor authentication system without having to rely on another device to create a token. Another issue we found during testing is after locking your phone, the VPN connection is terminated. In order to re-establish the connection, a new token must be generated. Again not really a flaw with the iPhone, but another example the business experience working not-so-seamlessly.
If your IT guys are nice they may have already created a Device Configuration to do your iPhone configuration for you. Device Configuration is basically an XML script generated by the iPhone Configuration Utility that can automate typically tedious configuration tasks such as Exchange, wireless, VPN, and email settings.
In order to install the script, you simply need to browse to it from your iPhone in Safari, or open it as an email attachment. After opening the script, the user needs to click Install and they're good to go.
The last, and biggest, new business feature for the iPhone 2.0 is its support for Exchange ActiveSync. You can finally connect to your corporate Exchange servers for email, calendar, and contact syncing. Setup is again pretty straight forward. Provide your corporate email address, username, password, and the iPhone will verify your credentials. You will then be able to enter in the exchange server address. One minor issue to note here is that you are forced to enable the passcode lock. This means whenever you want to unlock your phone, you'll have to enter in the PIN. Although from a security standpoint this makes sense (if you lose your phone or if it gets stolen nobody can read the corporate email), it would be nice to at least have the option to disable it.
Now you can select which items you want to sync with Exchange: Mail, Contacts or Calendars.
Possibly the biggest flaw in Apple's Exchange integration comes into the picture when you want to sync your contacts or calendars. All of your existing contacts and calendars will be deleted if you want to sync with Exchange. If you currently sync your contacts using another method, you'll have to sacrifice that in order to use Exchange. There is no option to create a secondary contact list or calendar. It's either all or nothing folks. Hopefully Apple (or a clever 3rd party developer) will smarten up and add support for syncing multiple calendars and contact lists. Personally we like keeping our private and professional lives separate to some extent so for now we're leaving contact syncing off.
For the most part the syncing functionality worked flawlessly. Changes made on the iPhone were quickly synced to Outlook and vice versa. However the usability of having all your corporate info on your iPhone leaves much to be desired. You still cannot search or sort email on your iPhone (though you can search contacts now). Only your Inbox will have email "pushed" to it. All other subfolders have to be manually synchronized (this is done by browsing to the folder). PowerPoint attachments do show up quite nicely in Mail when they decide to work. However we should note that some slides were getting cut off from the bottom or slides with complex graphics were rendered incorrectly. On the calendaring side, you cannot create a meeting invitation but you can respond to them with either an accept, deny, or "maybe". In addition, there is no "week" view for the calendar; only list, day and month. One feature we did like is calendar invites pop up as they are received prompting you to view the details or close the notification.
Apple has definitely taken big strides in appealing to the enterprise customer with the iPhone 3G. For the business user looking to connect to your corporate network and occasionally browse through your emails, this update will be more than sufficient. Having all my corporate meetings sync'd to the iPhone's calendar is also very handy. However there are sacrifices you'll have to make for this functionality. Choosing between personal and Exchange contacts and calendaring is a tough choice to make. For the corporate power users tethered to their BlackBerries, you'll want to stick with the two-phone solution.
Facebook
Twitter
RSS
55 Comments
View All Comments
cocoviper - Thursday, July 17, 2008 - link
Well I think it depends on how we define free. Since you're paying so much for the iPhone's plan one would think they could (or should) include it at some point.The Instinct does turn-by-turn voice GPS and it's included in the phone's plan.
jcal710 - Thursday, July 17, 2008 - link
Anand,You talked about the problems with contact syncing on Exchange. How configurable is it? Does it automatically default to your top level 'Contacts' folder in your Exchange mailbox, or can your point it somewhere else? Do you have the option of choosing whether or not to sync subfolders?
Griswold - Thursday, July 17, 2008 - link
I'm glad I didnt go for the first iphone, that way I can appreciate my 3G more(besides the fact that it wasnt sold until the 11th of july in this country and I would have been forced to import one and jailbreak it).Anand, your friend with the huge lips doesnt listen to the name of S.Tyler by chance? :P
ViRGE - Thursday, July 17, 2008 - link
Anand, do you know if Apple's A-GPS implementation requires cellular network access? Some do, others can revert to traditional GPS operation if there's no cellular network to offer location assistance. I'm curious which of this it isObrut - Thursday, July 17, 2008 - link
So how is it even remotely possible that there hasn’t been a real iPhone competitor in the year since the original’s release?Nokia N95 8GB is far superior to iPhone and it was released even before the first iPhone.
It's right to say there's no competition here. Apple need at least 3-4 more years to be truly competitive to Nokia. I think iPhone is better solution for americans. In Europe you need 3.5G or 4G phone to be truly connected.
michael2k - Thursday, July 17, 2008 - link
You're serious aren't you?Let us count the ways then:
iPhone screen resolution is 2x the Nokia screen resolution
iPhone is nearly half as thick as the Nokia
CPU of nearly twice the speed
The Nokia's one physical advantage is the 5MP cammera (which is only possible because the Nokia is twice as thick).
Obrut - Friday, July 18, 2008 - link
OK, let's count, Michael...1. Screen resolution is bigger and it should be simply because the display is much bigger. The display is much bigger because it's a touchscreen, though not big enough for my fingers.
2. iPhone is thin and that's because it has merely 4 buttons and a low profile, low-end camera. By the way how do you play games without buttons?
3. Speaking of games how do you play OpenGL games? I play Quake 2 with full lighting effects and FSAA at 40 FPS. What about the JAVA games?
4. N95 8GB is a dual CPU solution (2 x ARM 11 @ 332MHz) hence no lower performance here.
5. The 5MP camera of N95 8GB is more that just megapixels - it has Carl Zeiss optics, decent flashlight and can capture movies at 640x480@30FPS. In addition - correct me if I'm wrong but I don't see the front camera which every decent 3G phone has. How can I make a video call with iPhone? After all this is one of the best 3G features.
I can continue counting the battery, office productivity and so on, but this is not the place. I don't want to engage in a Nokia vs. Apple or N9x vs. iPhone battle here. I just don't like statements like "there's no competition", "best phone ever" etc. The most accurate thing to say is that iPhone is the best touchphone to date.
Griswold - Thursday, July 17, 2008 - link
Why talk if you dont know what you're talking about? 3.5G is called HSDPA (an extension to UMTS) in europe, which is supported by the iphone 3G. 4G isnt even available yet, think 2010 for commercial use, so why mention it?Why is there no competition? Because none of the competition has a smartphone that comes with this usability. All the other phones can do the same or more, yes. But all of them feel clumsy like a brick when using them. That is why there is no competition. And this comes from somebody who truly doesnt like apple and its godfather jobs...
cocoviper - Thursday, July 17, 2008 - link
Speaking of not knowing what you're talking about...HSDPA isn't 3.5G, it's definitely AT&T's 3G and that is what the iPhone 3G supports. That's the 3G that Anand complained is not really that much faster.
If there were a "3.5G" in AT&T's portfolio it would be HUPSA (the one that they just upped the offered speeds on.) However AT&T currently doesn't offer any phones that are HUPSA capable. They only have a couple of Aircards for laptops.
And yes, 4G is available in many parts of the world besides the US my friend. WiMax alone is deployed 119 countries currently. LTE is the only 4G that's "not even available yet," and that's because it's yet to be developed. (LTE isn't even into the whitepaper stage yet.)
So don't slam other people especially since there's always someone that will know more than you.
sources -> http://www.roughlydrafted.com/RD/RDM.Tech.Q1.07/93...">http://www.roughlydrafted.com/RD/RDM.Te...A0BF6-62...
http://www.ctia.org/consumer_info/wow/index.cfm/20...">http://www.ctia.org/consumer_info/wow/index.cfm/20...
cocoviper - Thursday, July 17, 2008 - link
*HSUPA not HUPSA :-P