Results 1 to 7 of 7

Hi One of offices is currently running BES 4.1.5, with Exchange 2003 SP2 as the ... Server Admins forum

  1. #1
    kam_uk's Avatar
    kam_uk no está en línea Stack level 1
    Join Date
    Jul 2008
    Posts
    13

    Password enforcement on BES devices

    Advertisement



    Hi

    One of offices is currently running BES 4.1.5, with Exchange 2003 SP2 as the messaging platform. Devices are 4.2 OS, and we have a variety of models.

    It is now a requirement that all Blackberry handhelds need a password before the emails on them can be accessed. Does anyone know how I can do this?

    Cheers

  2. #2
    qc_metal's Avatar
    qc_metal no está en línea Developer
    Join Date
    Aug 2006
    Posts
    57
    You need to create (try not to use the default one) and apply an IT policy that requires any devices using that policy to use a password.

    Pretty simple - in the BB Manager, click on 'BlackBerry Domain', then in the right-hand pane, click 'Edit properties'. When 'Edit global properties' comes up, click on 'IT Policy' in the left-hand pane. In the right hand pane, click the '...' button next to 'IT Policies'. There you should be able to copy the default policy, create a new one, and then apply your users to it later (back one screen).

    When the policy applies to each device, they will be prompted to change their password if they don't have one set already (and if it doesn't fall within the requirements that you set in the policy).

    Just a word of warning...I don't know how many users you have, but I would give them a notice before you do it - users are a bit picky about stuff like enforced passwords.

    Here's some information I included in my email to my users when I enforced this a few years ago:

    A person who has posession of your BlackBerry can:
    • View, delete, and reply to corporate email AS YOU.
    • View, create, delete, change your Calendar, Contacts, Memos, and Tasks in your corporate mailbox.
    • Above changes/deletes, etc. synchronize DIRECTLY with your mailbox.
    • Access corporate Intranet and all resources immediately available to the BlackBerry browser.
    • Access any data, personal or otherwise, that may be stored on your BlackBerry
    Good luck - and let us know how it goes.

  3. #3
    kam_uk's Avatar
    kam_uk no está en línea Stack level 1
    Join Date
    Jul 2008
    Posts
    13
    Thanks very much for the comprehensive answer!

  4. #4
    theancient's Avatar
    theancient no está en línea Stack level 1
    Join Date
    Aug 2008
    Posts
    2
    Is there a way to integrate the BB passwords/policy with a directory service like Active Directory or Novell eDirectory? If no, does any know if such a feature planned?

  5. #5
    qc_metal's Avatar
    qc_metal no está en línea Developer
    Join Date
    Aug 2006
    Posts
    57
    Quote Originally Posted by theancient View Post
    Is there a way to integrate the BB passwords/policy with a directory service like Active Directory or Novell eDirectory? If no, does any know if such a feature planned?
    What exactly do you mean? Do you mean when you apply a GPO to an AD user who has a BlackBerry then a particular IT policy is applied?

  6. #6
    theancient's Avatar
    theancient no está en línea Stack level 1
    Join Date
    Aug 2008
    Posts
    2
    Quote Originally Posted by qc_metal View Post
    What exactly do you mean? Do you mean when you apply a GPO to an AD user who has a BlackBerry then a particular IT policy is applied?
    That would be one way. The other I was thinking of was using Internet Authentication Services and setting up the BES as a client for authentication purposes.

  7. #7
    sichs1's Avatar
    sichs1 no está en línea Stack level 1
    Join Date
    Oct 2006
    Posts
    16
    By enabling the password policy on your BB device, what level of encryption is used to encrypt the data on the device when locked? We currently enforce an IT policy which requires passwords. I've been asked what level of encryption is on the device when the device is locked/password protected and how safe is the device content? How does this differ from enabling Content Protection?

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •