Outlook 开发 iOS 和 Exchange Online 中的 Android: 常见问题Outlook for iOS and Android in Exchange Online: FAQ

摘要: 本文介绍了有关与 Exchange Online 和 Office 365 中使用 Outlook 针对 iOS 和 Android 要求客户和管理员的最常见问题。Summary: This article covers the most common questions asked by customers and administrators about using Outlook for iOS and Android with Exchange Online and Office 365.

IOS 和 Android 应用 Outlook 旨在使组织中的用户进行更多来自其移动设备,通过汇集电子邮件、 日历、 联系人和其他文件。以下各节突出显示我们接收跨三个关键方面的最常见问题:The Outlook for iOS and Android app is designed to enable users in your organization to do more from their mobile devices, by bringing together email, calendar, contacts, and other files. The following sections highlight the most common questions we receive, across three key areas:

  • IOS 和 Android 体系结构和安全性的 outlookOutlook for iOS and Android architecture and security

  • 管理和后已部署 Exchange 组织中维护适用于 iOS 的 Outlook 和 AndroidManaging and maintaining Outlook for iOS and Android in your Exchange organization after it has been deployed

  • 从最终用户访问其移动设备上使用的 iOS 和 Android 应用 Outlook Exchange 组织中的信息的常见问题Common questions from end-users who access information in your Exchange organization with the Outlook for iOS and Android app on their mobile devices

体系结构和安全Architecture and security

以下问题是有关的整体体系结构适用于 iOS 的 Outlook 和 Android 在 Exchange Online,以及用户身份验证和其他安全问题。The following questions are about the overall architecture of Outlook for iOS and Android in Exchange Online, as well as user authentication and other security concerns.

问: 什么云体系结构时才存在适用于 iOS 的 Outlook 和 Office 365 帐户 Android?Q: What cloud architecture is utilized by Outlook for iOS and Android for Office 365 accounts?

IOS 和 Android 应用 Outlook 完全采用 Microsoft 云。这意味着缓存 Office 365 以外没有邮箱数据本身,支持所有 Office 365 企业版、 业务和教育帐户。数据只需将停留在其当前的 Exchange Online 邮箱,受 TLS 保护连接端到端,Office 365 和应用适用于 iOS 的 Outlook 之间和 Android 现在完全通过提供强承诺的 Microsoft 服务安全、 隐私和合规性。The Outlook for iOS and Android app is fully powered by the Microsoft Cloud. All Office 365 Enterprise, Business, and Education accounts are supported natively, which means there is no mailbox data cached outside of Office 365. Data simply stays in its current Exchange Online mailbox, and it's protected by TLS-secured connections end-to-end, between Office 365 and the app. Outlook for iOS and Android is now fully delivered through Microsoft services that provide a strong commitment to security, privacy, and compliance.

Outlook for iOS 和 Outlook for Android 体系结构

Outlook 开发 iOS 和 Android 使用构建和运行 Azure 中无状态协议 translator (英文) 组件。此组件将数据路由和转换命令,但它不缓存用户数据。应用程序是与 Outlook 设备 API,同步命令和应用 Exchange Online 数据与数据的 API 访问可公开访问 REST Api 通过专有编码。协议转换器实现 Outlook 和 Exchange Online 之间的通信。Outlook for iOS and Android uses a stateless protocol translator component that is built and run in Azure. This component routes data and translates commands, but it doesn't cache user data. The app is coded with the Outlook device API, a proprietary API that syncs commands and data to and from the app. Exchange Online data is accessed via the publicly available REST APIs. The protocol translator enables communication between Outlook and Exchange Online.

问: 所有 Office 365 企业、 业务和教育帐户都应该使用基于 Office 365 的体系结构和利用 REST API,但仍可看到某些用户通过 EAS 连接。为什么?Q: All Office 365 Enterprise, Business, and Education accounts are supposed to be using the Office 365-based architecture and utilize the REST API, but I can still see some users connected via EAS. Why is that?

时创建适用于 iOS 的 Outlook 和 Android for Office 365 中的帐户,第一个应用程序尝试连接到基于 Office 365 的体系结构,以使用 REST 是。但是,如果此首次尝试失败,应用程序失败回旧基于 AWS 基础结构 (EAS)。从开始的 2017 年 6 月,Office 365 帐户将不能回退到基于 AWS 体系结构。Upon creating an account within Outlook for iOS and Android for Office 365, the first connection attempted by the app is to the Office 365-based architecture, which uses REST. However, if this first attempt fails, the app fails back to the older AWS-based infrastructure (EAS). Beginning in June of 2017, Office 365 accounts will not be able to fall back to the AWS-based architecture.

失败由 REST 正在主动阻止的客户,使用下面列出的三个控件之一导致。请注意,使用这些控件之一阻止 REST 客户需要按年 6 月 2017年更改其安装,如果他们想要继续从适用于 iOS 的 Outlook 和 Android 访问电子邮件。Failure is caused by REST being actively blocked by the customer, who is using one of the three controls listed below. Note that customers who are using one of these controls to block REST will need to alter their setup by June 2017 if they want to continue accessing email from Outlook for iOS and Android.

  1. 措施阻止或限制的其余部分协议,客户端访问规则。Client Access rules are in place that block or restrict the REST protocol.

  2. EWS 应用程序策略 (EWS 控制对 REST API 访问) 是否在限制哪些应用程序可以连接的位置。EWS application policies (EWS controls access to the REST API) are in place that restrict which applications can connect.

  3. 客户可以禁用组织或特定邮箱的 EWS。The customer has EWS disabled for the organization or for specific mailboxes.

有关详细信息,请参阅保护 Outlook 中的 iOS 和 Exchange Online 中的 AndroidFor more information, see Securing Outlook for iOS and Android in Exchange Online.

问: 是否可以向中添加两个不同的 Office 365 帐户不同的 Office 365 区域从适用于 iOS 的 Outlook 和 Android?Q: Can I add two different Office 365 accounts from different Office 365 regions to Outlook for iOS and Android?

是的。但是,与 Office 365 政府计划的客户可能只有从单个 Office 365 区域连接到 Outlook 针对 iOS 和 Android 的帐户。这意味着 Office 365 政府客户不能具有位于欧洲 Office 365 数据中心中的邮箱和 Office 365 政府计划邮箱中同一个 Outlook iOS 和 Android 应用同一设备上。Yes. However, customers with the Office 365 Government plan may only have accounts connected to Outlook for iOS and Android from a single Office 365 region. This means that Office 365 Government customers can't have both a mailbox that is located in European Office 365 datacenters and an Office 365 Government plan mailbox within the same Outlook for iOS and Android app on the same device.

问: 什么身份验证机制用于适用于 iOS 的 Outlook 是否 Android?Office 365 中存储凭据?Q: What authentication mechanism is used for Outlook for iOS are Android? Are credentials stored in Office 365?

Active Directory 身份验证库 ADAL 基于身份验证是什么适用于 iOS 的 Outlook 和 Android 用来访问 Office 365 中的 Exchange Online 邮箱。ADAL 身份验证,使用桌面和移动设备上的 Office 应用程序需要登录到 Azure Active Directory,这是 Office 365 标识提供程序,而不是向 Outlook 中提供凭据直接的用户。Active Directory Authentication Library (ADAL)-based authentication is what Outlook for iOS and Android uses to access Exchange Online mailboxes in Office 365. ADAL authentication, used by Office apps on both desktop and mobile devices, involves users signing in directly to Azure Active Directory, which is Office 365's identity provider, instead of providing credentials to Outlook.

ADAL 基于登录 Office 365 帐户启用 OAuth,并提供适用于 iOS 的 Outlook 和 Android 安全机制访问电子邮件,而无需对用户凭据的访问。在登录时,用户直接与 Office 365 身份验证,并返回接收访问令牌。令牌授予适用于 iOS 的 Outlook 和 Android 到相应的邮箱的访问。OAuth 为 Outlook 提供安全机制访问 Office 365 和 Outlook 云服务,而不需要或存储用户的凭据。ADAL-based sign in enables OAuth for Office 365 accounts, and provides Outlook for iOS and Android a secure mechanism to access email without requiring access to user credentials. At sign in, the user authenticates directly with Office 365 and receives an access token in return. The token grants Outlook for iOS and Android access to the appropriate mailbox. OAuth provides Outlook with a secure mechanism to access Office 365 and the Outlook cloud service without needing or storing a user's credentials.

有关详细信息,请参阅 Office 博客文章为 Outlook for iOS 和 Android 的新访问和安全控件For more information, see the Office Blog post New access and security controls for Outlook for iOS and Android.

问: 是否单一登录支持的 Outlook for iOS 和 Android 和其他 Microsoft Office 移动应用程序?Q: Do Outlook for iOS and Android and other Microsoft Office mobile apps support single sign-on?

利用 Azure Active Directory 身份验证库 (ADAL) 的所有 Microsoft 应用程序都支持单一登录。此外,单一登录还支持与 Microsoft Authenticator 或 Microsoft 的公司门户的应用程序结合使用应用程序时。All Microsoft apps that leverage the Azure Active Directory Authentication Library (ADAL) support single sign-on. In addition, single sign-on is also supported when the apps are used in conjunction with either the Microsoft Authenticator or Microsoft Company Portal apps.

可以共享和其他 Microsoft 应用程序 (如 Word 移动) 在以下情况下重新使用令牌:Tokens can be shared and re-used by other Microsoft apps (such as Word mobile) under the following scenarios:

  1. 在应用程序由相同的签名证书签名,并使用相同服务终结点或访问群体的 URL (例如 Office 365 URL)。在这种情况下,该令牌存储在应用程序共享存储。When the apps are signed by the same signing certificate and use the same service endpoint or audience URL (such as the Office 365 URL). In this case, the token is stored in app shared storage.

  2. 当应用程序利用或支持使用 broker 应用程序的单一登录。存储令牌中 broker 应用 Microsoft Authenticator 是代理应用程序的示例。在代理应用程序方案中,您尝试登录到 Outlook 针对 iOS 和 Android 之后, ADAL 将启动 Microsoft Authenticator 应用程序,将向 Azure Active Directory 获取令牌进行连接。它将然后保持与令牌并重复使用它用于从其他应用程序的身份验证请求的只要配置令牌生存期允许。When the apps leverage or support single sign-on with a broker app. The tokens are stored within the broker app. Microsoft Authenticator is an example of a broker app. In the broker app scenario, after you attempt to sign in to Outlook for iOS and Android, ADAL will launch the Microsoft Authenticator app, which will make a connection to Azure Active Directory to obtain the token. It will then hold on to the token and re-use it for authentication requests from other apps, for as long as the configured token lifetime allows.

有关详细信息,请参阅如何启用跨应用程序上使用 ADAL iOS 的 SSOFor more information, see How to enable cross-app SSO on iOS using ADAL.

问: 什么是的生成和使用通过 Active Directory 身份验证库 (ADAL) 适用于 iOS 的 Outlook 和 Android 中的令牌生存期?Q: What is the lifetime of the tokens generated and used by the Active Directory Authentication Library (ADAL) in Outlook for iOS and Android?

通过 ADAL 启用像 Outlook 的 iOS 和 Android、 Authenticator 应用程序或的公司门户应用程序的应用程序的用户进行身份验证时,将生成两个标记: 获取访问令牌和刷新令牌。使用访问令牌访问的资源 (Exchange 邮件数据),而使用刷新令牌获取新的访问或当前访问时刷新令牌对令牌过期。Two tokens are generated when a user authenticates through ADAL-enabled apps like Outlook for iOS and Android, the Authenticator app, or the Company Portal app: an access token and a refresh token. The access token is used to access the resource (Exchange message data), while a refresh token is used to obtain a new access or refresh token pair when the current access token expires.

默认情况下访问令牌生存期是一小时和刷新令牌生存期是十四个天。可以调整这些值;有关详细信息,请参阅在 Azure Active Directory 中的可配置令牌生存期。请注意,是否您选择以减少这些生命周期,您还可以减少适用于 iOS 的 Outlook 和 Android 的性能,这是因为较小的生存期增加的应用程序必须获取新访问令牌的次数。By default, the access token lifetime is one hour and the refresh token lifetime is fourteen days. These values can be adjusted; for more information see Configurable token lifetimes in Azure Active Directory. Note that if you choose to reduce these lifetimes, you can also reduce the performance of Outlook for iOS and Android, because a smaller lifetime increases the number of times the application must acquire a fresh access token.

问: 会发生什么情况访问令牌到用户的密码更改时?Q: What happens to the access token when a user's password is changed?

之前授予的访问令牌是有效,直到过期。到期时,客户端将尝试使用刷新令牌获取新的访问令牌,但由于用户的密码已更改,将 (假定之间内部部署和 Azure Active directory 同步出现无效刷新令牌目录)。无效的刷新令牌将强制重新获取新的访问令牌和刷新令牌对以进行身份验证的用户。A previously granted access token is valid until it expires. Upon expiration, the client will attempt to use the refresh token to obtain a new access token, but because the user's password has changed, the refresh token will be invalidated (assuming directory synchronization has occurred between on-premises and Azure Active Directory). The invalidated refresh token will force the user to re-authenticate in order to obtain a new access token and refresh token pair.

问:? Outlook 中的 iOS 和 Android 支持基于证书的身份验证Q: Does Outlook for iOS and Android support certificate-based authentication?

是,适用于 iOS 的 Outlook 和 Android 支持基于证书的身份验证。有关详细信息,请参阅:Yes, Outlook for iOS and Android supports certificate-based authentication. For more information, see:

问: 背景同步启用什么?我请注意时使用它启用启动应用程序,, 我仍需要等待要下载,即使我已收到的这些新邮件通知的邮件。Q: What does background synchronization enable? I notice that when I launch the app with it enabled, I still have to wait for messages to download, even after I've received new mail notifications for them.

背景同步使新邮件通知、 徽章计数更新和背景的适用于 iOS 的 Outlook 和 Android 的邮箱信息同步。如果用户在 iOS 或 Android 设置禁用后台同步,则用户必须启动应用程序并将其保存在前台以便同步邮箱信息。Background synchronization enables new message notifications, badge count updates, and background synchronization of mailbox information for Outlook for iOS and Android. If background synchronization is disabled by the user in iOS or Android settings, then the user must launch the app and keep it in the foreground in order to synchronize mailbox information.

适用于 iOS 的 Outlook 和 Android 中的背景同步还可禁用通过以下操作:Background synchronization in Outlook for iOS and Android can also be disabled by the following actions:

  • 强制退出应用程序 (例如,双击主页按钮和刷应用程序以消除)。Force quitting the app (such as by double-tapping the home button and swiping the app to dismiss).

  • 重新启动移动设备。Restarting the mobile device.

  • 给定时间段的时间不打开应用程序。iOS 将自动终止 Outlook。Not opening the app for a given period of time. iOS will automatically terminate Outlook.

备注

Apple 允许进行背景没有任何上述限制刷新其本机邮件应用程序。因此,用户可能会注意到背景同步体验的应用程序之间的差异。但是,这还结果中延长的电池寿命并减少数据消耗。Apple allows its native Mail app to do background refreshes without any of the above restrictions. Therefore, users may notice a difference in the background synchronization experience between the apps. However, this also results in improved battery life and less data consumption.

问: 适用于 iOS 的 Outlook 和 Android 的每个用户的实例已基于 Office 365 的体系结构中唯一的设备 ID?与的设备 ID 生成,且不 Intune 中使用此相同的设备 ID 的方式Q: Does each user's instance of Outlook for iOS and Android have a unique device ID in the Office 365-based architecture? How is the device ID generated and is this same device ID used in Intune?

初始的帐户登录时适用于 iOS 的 Outlook 和 Android 建立到基于 Office 365 的体系结构的连接。生成唯一的设备 ID,并且此设备 ID 是 Active Directory 设备记录中显示的内容 (其中可以如检索 cmdletGet-MobileDevice在 Exchange Online Powershell 中),其显示在 HTTP 请求头中。Upon initial account login, Outlook for iOS and Android establishes a connection to the Office 365-based architecture. A unique device ID is generated, and this device ID is what appears in Active Directory device records (which can be retrieved with cmdlets such as Get-MobileDevice in Exchange Online Powershell) and which appears in HTTP request headers.

Intune 使用不同的设备 id。基于应用程序的条件访问 Intune介绍了如何 Intune 分配设备 ID 的基本工作流程。在 Intune,当设备工作场所加入所有设备条件 access 方案分配的设备 ID。这是设备 AAD 生成的唯一 ID。Intune 发送合规性信息时所使用的唯一 ID 和 ADAL 服务进行身份验证时使用的唯一 ID。Intune uses a different device ID. The basic workflow for how Intune assigns a device ID is described in App-based conditional access with Intune. In Intune, the device ID is assigned when the device workplace joins for all device-conditional access scenarios. This is an AAD-generated unique ID for the device. Intune uses that unique ID when sending compliance information, and ADAL uses that unique ID when authenticating to services.

问:? Outlook 的 iOS 和 Android 支持 RMSQ: Does Outlook for iOS and Android support RMS?

是的。Outlook 开发 iOS 和 Android 支持读取受保护的邮件。Outlook 开发 iOS 和 Android 适用于不同于桌面版本的 Outlook,当谈到 RMS。桌面版本的 Outlook 之后收到受保护的邮件并尝试访问,则 Outlook 验证用户可以读取 RM 消息, Outlook 连接 Exchange 请求加密密钥。Outlook 桌面客户端使用该加密密钥解密邮件用户 (客户端) 的前面。移动客户端操作方式不同。当 Outlook 针对 iOS 和 Android 设置与 Exchange 其初始关系时,它通知 Exchange,它支持 RMS.Exchange 解密任何受保护的邮件传递给客户端之前。换句话说,解密是执行的服务器端。Outlook 开发 iOS 和 Android 不执行任何解密本身。Yes. Outlook for iOS and Android supports reading protected messages. Outlook for iOS and Android works differently than desktop versions of Outlook when it comes to RMS. For desktop versions of Outlook, once a protected message is received and access is attempted, and Outlook verifies that the user can read RM messages, Outlook connects to Exchange to request an encryption key. The Outlook desktop client uses that encryption key to decrypt the message in front of the user (client-side). Mobile clients operate differently. When Outlook for iOS and Android sets up its initial relationship with Exchange, it notifies Exchange that it supports RMS. Exchange decrypts any protected messages before passing them to the client. In other words, decryption is performed server-side. Outlook for iOS and Android doesn't perform any decryption itself.

在其中适用于 iOS 的 Outlook 和 Android 接收受保护的邮件,并提示最终用户使用 RM 客户端打开文件的情况下,它表示 Exchange 尚未解密邮件,这是由于在 Exchange 端问题。In cases where Outlook for iOS and Android receives protected messages and prompts end-users to use an RM client to open the file, it means that Exchange hasn't decrypted the message, which is due to an issue on the Exchange side.

问: 什么端口和终结点的 iOS 和 Android 使用 Outlook?Q: What ports and end points does Outlook for iOS and Android use?

Outlook 开发 iOS 和 Android 通信通过 TCP 端口 443。应用程序访问各种终结点,具体取决于用户的活动。Office 365 ProPlus 中的网络请求中提供了完整的信息。Outlook for iOS and Android communicates via TCP port 443. The app accesses various end points, depending on the activities of the user. Complete information is available in Network Requests in Office 365 ProPlus.

问:? Outlook 中的 iOS 和 Android 支持代理服务器配置Q: Does Outlook for iOS and Android support proxy configurations?

是的适用于 iOS 的 Outlook 和 Android 支持代理配置时代理基础结构满足以下要求:Yes, Outlook for iOS and Android supports proxy configurations when the proxy infrastructure meets the following requirements:

  • 如果没有 TLS 解密和检查支持 HTTP 协议。基于 Office 365 的体系结构适用于 iOS 的 Outlook 和 Android 利用证书驻留以缓解拦截中基于的攻击。Supports HTTP protocol without TLS decryption and inspection. The Office 365-based architecture for Outlook for iOS and Android utilizes certificate pinning to mitigate man-in-the-middle based attacks.

  • 支持并启用了 SOCKS 代理功能。Outlook 中的 iOS 和 Android 的客户端使用 TCP 连接到我们基于 Office 365 的体系结构。SOCKS 连接的 IP 范围并不限制为子集 Azure IP 地址范围,这意味着客户不能定义白名单范围。Supports and has SOCKS proxy capability enabled. The Outlook for iOS and Android client utilizes TCP connections to our Office 365-based architecture. The IP ranges for the SOCKS connections are not restricted to a subset of Azure IP ranges, which means that customers cannot define a whitelist range.

  • 不执行身份验证Does not perform authentication.

IOS 和 Android 的 outlook 将使用的代理配置定义的平台操作系统。通常,通过 PAC 文件部署此配置信息。必须配置 PAC 文件而不是协议使用主机名,并返回给定主机 URL; SOCKS 代理信息不支持的任何其他自定义设置。Outlook for iOS and Android will consume the proxy configuration as defined by the platform operating system. Typically, this configuration information is deployed via a PAC file. The PAC file must be configured to use hostnames instead of protocol and return the SOCKS proxy information given the host URL; no additional custom settings are supported.

管理和监控您的组织中的 Outlook 针对 iOS 和 AndroidAdministrating and monitoring Outlook for iOS and Android in your organization

有关管理和监视 iOS 和组织内的 Android 应用 Outlook 后已部署他是以下问题。The following questions are about managing and monitoring the Outlook for iOS and Android app within your organization after his has been deployed.

问: 是否需要时我遇到的问题适用于 iOS 的 Outlook 和 Android 文件中应用程序支持票证,从而?Q: Is it necessary to file an in-app support ticket when I experience an issue with Outlook for iOS and Android?

是,如果您想要排除和解决问题,或者如果您想要通知我们的产品缺陷或限制,您将需要文件中应用程序支持票证,从而。只能通过归档中应用程序支持票证,从而可以在 Outlook 应用程序的日志获取收集和分析通过我们的产品工程师。Yes, if you want to troubleshoot and resolve the issue, or if you want to inform us of a product defect or limitation, you will need to file an in-app support ticket. Only through filing an in-app support ticket can the Outlook app's logs get collected and analyzed by our product engineers.

问: 作为 Exchange 管理员,是否有相关我确定 Outlook 客户端是否利用了基于 Office 365 的体系结构一种方法?Q: As an Exchange administrator, is there a way for me to determine if Outlook clients are utilizing the Office 365-based architecture?

从 Exchange Online PowerShell 是,执行以下命令:Yes, execute the following command from Exchange Online PowerShell:

Get-MobileDevice | where {$_.DeviceModel -eq "Outlook for iOS and Android"} | FL FriendlyName,DeviceID,DeviceOS,ClientType

ClientType属性指示是否使用客户端基于 Office 365 的体系结构 (REST) 或基于 AWS 体系结构 (EAS)。The ClientType property indicates whether the client is using the Office 365-based architecture (REST) or the AWS-based architecture (EAS).

此外,用户可以登录到 web 上的 Outlook 并,从选项中选择要查看移动设备的详细信息的移动设备。这将类似于以下:Alternatively, a user can login to Outlook on the web and, from within Options, select Mobile Devices to view the details of a mobile device. This would look similar to the following:

在 Outlook for iOS 和 Outlook for Android 中管理移动设备的图片

问: 作为 Exchange 管理员,希望部署适用于 iOS 的 Outlook 和 Android,但在我的测试我无法登录。可能有问题的什么?Q: As an Exchange administrator, I would like to deploy Outlook for iOS and Android, but in my testing I can't log in. What might be the issue?

假定身份验证不问题,有三个方面,您可以检查:Assuming authentication is not the issue, there are three areas you can check:

  1. 检查是否有放置该块 REST 协议中的客户端访问规则。Check whether you have Client Access rules in place that block the REST protocol.

  2. 检查是否有限制的客户端应用程序的 EWS 应用程序策略可以连接。Check whether you have an EWS application policy that restricts which client applications can connect.

  3. 检查是否有 EWS 启用的帐户。Check whether you have EWS enabled for the account.

有关详细信息,请参阅保护 Outlook 中的 iOS 和 Exchange Online 中的 Android。如果上述检查之一不能解决问题,请打开应用程序内支持票证,从而。For more information, see Securing Outlook for iOS and Android in Exchange Online. If one of the above checks doesn't resolve the issue, please open an in-app support ticket.

问: 将适用于 iOS 的 Outlook 和 Android 支持第三方 EMM 或 MDM 解决方案?Q: Will Outlook for iOS and Android support third-party EMM or MDM solutions?

Outlook 开发 iOS 和 Android 设备和应用程序管理支持 Intune。第三方 MDM 提供可以部署 Outlook 应用程序相同的方式将部署任何 iOS 或 Android 应用程序,使用其现有的工具。正如擦除设备 PIN,设备加密,更,所有这些都重要安全电子邮件体验,但所有这些都还适用于 iOS 的 Outlook 和 Android 完全独立于,它们也可以应用设备管理控件。若要管理应用程序本身 (例如限制与公司的数据,如剪切操作,将复制、 粘贴和"另存为") 客户需要使用 Microsoft Intune。有关详细的技术信息,请参阅 Intune 的条件的访问MAM文档。Outlook for iOS and Android supports Intune for device and applications management. Third-party MDM providers can deploy the Outlook app the same way they would deploy any iOS or Android app, using their existing tools. They can also apply device management controls like device PIN, device encryption, wipe, and more, all of which are important for a secure email experience, but all of which are also completely independent of Outlook for iOS and Android. In order to manage the app itself (such as restricting actions with corporate data like cut, copy, paste, and "save as"), customers will need to use Microsoft Intune. For detailed technical information, please see Intune's conditional access and MAM documentation.

问: 是否需要使用适用于 iOS 的 Outlook 和 Android 的许可证?Q: Is a license required to use Outlook for iOS and Android?

Outlook 开发 iOS 和 Android 是免费的使用者从 iOS 应用程序存储和 Google 播放。但是,商业用户需要包括 Office 的应用程序的 Office 365 订阅: 业务、 企业高级版、 企业版 E3、 E5、 ProPlus 或政府或教育这些计划的对应版本。如果您只有一个 Exchange Online 许可证 (没有 Office) 或 Exchange 本地 (Exchange Server) 许可证,您不允许使用应用程序。Outlook for iOS and Android is free for consumer usage from the iOS App store and from Google Play. However, commercial users require an Office 365 subscription that includes the Office applications: either Business, Business Premium, Enterprise E3, E5, ProPlus, or the corresponding versions of those plans for Government or Education. If you only have an Exchange Online license (without Office) or an Exchange on-premises (Exchange Server) license, you are not allowed to use the app.

来自最终用户的常见问题Common questions from end-users

以下问题关注您的组织中的最终用户使用 Outlook 针对 iOS 和 Android 在其设备上访问其 Exchange 邮箱。The following questions concern end-users in your organization who are using Outlook for iOS and Android on their devices to access their Exchange mailboxes.

问: 我的用户启用"保存联系人到设备"高级设置选项。但是,他们抱怨并非所有联系人已都同步其 iOS 设备上。是否有限制同步?Q: My users enabled the "Save Contacts to Device" advanced settings option. However, they are complaining that not all contacts have synchronized on their iOS devices. Are there limitations with synchronization?

由于 iOS 中存在的限制,联系人仅时同步处理的本机应用程序与 Outlook 位于前台和仅一次同步仅 100 个联系人。iOS 还将控制联系人同步发生。Due to limitations in iOS, contacts only synchronize with the native app when Outlook is in the foreground and is restricted to synchronize only one hundred contacts at a time. iOS also controls when contact synchronization occurs.

问: 为什么 Office 移动应用程序需要以呈现在 Outlook 中,附件 iOS 设备提供的在 Outlook 中的附件预览时安装在 Android 上?Q: Why are the Office mobile apps required to be installed on Android in order to render attachments in Outlook, while iOS devices provide a preview of the attachments within Outlook?

这是由于基本操作系统中的差异。iOS 提供对于已知的附件类型,适用于 iOS 的 Outlook 用来提供基本的附件呈现的本机内容呈现。Android 提供类似 nothing。Android 的用户必须安装的 Office 应用程序和/或第三方应用程序才能呈现附件内容。This is due to the differences in the base operating systems. iOS provides native content rendering for known attachment types, which Outlook for iOS uses to provide basic attachment rendering. Android provides nothing similar. Android users have to install the Office apps and/or third-party apps in order to render attachment content.

问: 新邮件包含附件,但我脱机时我无法打开附件。为什么?Q: A new message included an attachment, but while I was offline I couldn't open the attachment. Why is that?

(如其他移动客户端) 的 outlook 不会自动下载附件。这是设计使然,为了节省设备空间。在用户的请求,只会下载附件。Outlook (like other mobile clients) does not download attachments automatically. This is by design, in order to conserve device space. Attachments are only downloaded at the request of the user.

问: 周以前我访问的附件一条消息,但既然我脱机不再可以在我 iOS 设备上访问该附件。但是,可以在我 Android 设备上访问它。为什么?Q: A week ago I accessed an attachment in a message, but now that I'm offline I can no longer access that attachment on my iOS device. However, I can access it on my Android device. Why is that?

适用于 iOS 的 outlook 我们自己的数据库中存储的附件。因此,我们将下载到客户端每个附件占用大量我们数据库中的空间。若要确保客户端能够提供更快的性能并执行少量的空间,我们清除而不显示主动基于 (附件将进行缓存设置为七天) 的使用情况数据。Outlook for iOS stores attachments in our own database. As a result, every attachment we download to the client takes up a considerable amount of space in our database. To ensure the client is able to provide fast performance and take a small amount of space, we purge data rather aggressively based on usage (attachments will be cached up to seven days).

IOS,与 Android 使用访问的文件系统,因此 Outlook for Android 下载附件时,它不会发送到数据库,而是存储作为临时文件。Unlike iOS, Android uses an accessible file system, so when Outlook for Android downloads an attachment, it doesn't go into the database, rather it is stored as a temporary file.

问: 我的日历上多个会议已从 web 上的 Outlook 中的 Outlook for Windows 和 Mac 和可访问的附件,但我上找不到这些附件我的约会的适用于 iOS 的 Outlook 和 Android。为什么?Q: Several meetings on my calendar have attachments that I can access in Outlook for Windows and Mac and from Outlook on the web, but I can't locate these attachments on my appointments for Outlook for iOS and Android. Why is that?

当前的 iOS 和 Android outlook 日历约会上不支持访问附件,但我们计划在未来更新中支持这。Outlook for iOS and Android currently does not support accessing attachments on calendar appointments, but we are planning to support this in a future update.

问: 为什么 Outlook 中的 iOS 和 Android 中的数据消失,然后再次出现后我切换中心收件箱或线程设置组织?Q: Why does data within Outlook for iOS and Android disappear and then re-appear after I toggle the Focused Inbox or the Organize by Thread settings?

只要更改这些选项,适用于 iOS 的 Outlook 和 Android 执行软重置。这擦除已下载的应用程序,并且需要重新同步的现有数据。Whenever those options are changed, Outlook for iOS and Android performs a soft reset. This wipes the existing data that has been downloaded to the app and requires a re-synchronization.

问: 是否可以在适用于 iOS 的 Outlook 中查看组织结构图信息?Q: Can I view organization chart information in Outlook for iOS?

是的。适用于 iOS 的 outlook 提供了贵公司的人员的联系人卡片详细信息的一部分的组织信息。贵公司的报告结构和同事列表还提供了帮助员工与人和使用所需的团队联系。Yes. Outlook for iOS provides your company's organization information as part of a person's contact card details. Your company's reporting structure and a list of colleagues is also provided, to help employees connect with the people and teams they need to work with.

显示为下显示组织的其他同事列表的一部分的人员列表基于常见的电子邮件通讯组列表,组成员身份和度的 Azure Active Directory 中定义的组织结构中的隔离。The list of people displayed as part of the Other Colleagues list under Show Organization is based on common email distribution lists, group memberships, and degrees of separation in the Organization structure defined in Azure Active Directory.

如果您没有在应用程序中公开的组织图表数据,请咨询目录管理员。有两个主要方案,应考虑:If you do not have organization chart data exposed in the app, consult with your directory administrator. There are two main scenarios to consider:

  1. 您的公司具有其中与 Azure Active Directory 同步的本地目录的混合拓扑。您需要的组织图表信息的目录中直接或通过人力资源系统更新 Active Directory。数据将自动同步到 AAD 和都可以访问通过全局地址列表在 Exchange Online。Your company has a hybrid topology where an on-premises directory is synchronized with Azure Active Directory. You will need to update Active Directory with the organization chart information, either directly in the directory or via your Human Resources system. Data will be synchronized into AAD automatically and will be accessible via the Global Address List in Exchange Online.

  2. 贵公司仅用于目录管理利用 Azure Active Directory。您需要的组织图表信息的目录中直接或通过人力资源系统更新 Azure Active Directory。此数据都可以访问通过全局地址列表在 Exchange Online。Your company only leverages Azure Active Directory for directory management. You will need to update Azure Active Directory with the organization chart information, either directly in the directory or via your Human Resources system. This data will be accessible via the Global Address List in Exchange Online.

问: 如何多我邮箱数据与同步适用于 iOS 的 Outlook 和 Android?Q: How much of my mailbox data is synchronized with Outlook for iOS and Android?

Outlook 中的 iOS 和 Android 同步 500 个项目的每个文件夹,与每个文件夹的最多 1000 个项目,如果用户点击加载更多对话。应用程序定期修剪以确保最佳的应用程序性能的每个文件夹下 500,项目。Outlook for iOS and Android synchronizes 500 items per folder, with up to 1000 items per folder if the user taps Load more conversations. The app periodically trims the items per folder down to 500, in order to ensure optimal app performance.