BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Administration Guide

Similar documents
BlackBerry Enterprise Server for Microsoft Office 365. Version: 1.0. Administration Guide

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Feature and Technical Overview

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0. Feature and Technical Overview

BlackBerry Enterprise Server Express for Microsoft Exchange

BlackBerry Enterprise Server Express for IBM Lotus Domino

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0 Service Pack: 1. Release Notes

Configuration Guide. Installation and. BlackBerry Enterprise Server for Novell GroupWise. Version: 5.0 Service Pack: 4

Configuration Guide. BlackBerry UEM. Version 12.9

Configuration Guide. BlackBerry UEM. Version 12.7 Maintenance Release 2

BlackBerry UEM Configuration Guide

Administration Guide. Installation and. BlackBerry Enterprise Transporter for Microsoft Office 365. Version: 1.0

Enterprise solution comparison chart

Actual4Test. Actual4test - actual test exam dumps-pass for IT exams

Top Reasons to Upgrade

WHITE PAPER. Good Mobile Intranet Technical Overview

MOC 20411B: Administering Windows Server Course Overview

BlackBerry Enterprise Server for Microsoft Exchange

BlackBerry solution comparison chart

This course provides students with the knowledge and skills to administer Windows Server 2012.

Extending the Domino System. Powered by Notes. The First Groupware and Server for the Net R E L E A S E

Lotus Learning Management System R1

Sophos Mobile Control SaaS startup guide. Product version: 7

User Manual. Admin Report Kit for Exchange Server

Getting Started Guide

Managing External Identity Sources

BIG-IP Access Policy Manager : Portal Access. Version 12.1

VMware Boxer Comparison Matrix for IBM Notes Traveler Compare the features supported by VMware Boxer and AirWatch Inbox

Sophos Mobile Control SaaS startup guide. Product version: 6.1

DEPLOYMENT GUIDE DEPLOYING F5 WITH ORACLE ACCESS MANAGER

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Configuration Guide. BlackBerry UEM Cloud

VMware Identity Manager Administration

BlackBerry Enterprise Server for Microsoft Exchange

BlackBerry 101: An Introduction to the BlackBerry Wireless Solution

70-411: Administrating Windows Server 2012

BCP-222. BlackBerry. Supporting BlackBerry Enterprise Server/IBM Lotus Domino

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

Sophos Mobile in Central

Sophos Mobile as a Service

BIG-IQ Centralized Management: ADC. Version 5.0

Troubleshooting: Basics

Solution Integration Guide for Multimedia Communication Server 5100/WLAN/Blackberry Enterprise Server

MCSA Guide to Networking with Windows Server 2016, Exam

Secure ACS for Windows v3.2 With EAP TLS Machine Authentication

Domino Integration DME 4.6 IBM Lotus Domino

AUTHORIZED DOCUMENTATION

Identity Firewall. About the Identity Firewall

ISEC7 - B*Nator EMM Suite. Check Before Installation Guide

Wi-Fi Implementation Supplement

Push Notifications (On-Premises Deployments)

NCP Secure Enterprise Management for Windows Release Notes

VMware Enterprise Systems Connector Installation and Configuration. JULY 2018 VMware Identity Manager 3.2 VMware Identity Manager VMware AirWatch 9.

KYOCERA Net Admin User Guide

Directory Integration with VMware Identity Manager

Troubleshooting basics

Sophos Mobile SaaS startup guide. Product version: 7.1

BIG-IP Access Policy Manager : Implementations. Version 12.1

Advanced Service Design. vrealize Automation 6.2

F5 BIG-IQ Centralized Management: Local Traffic & Network. Version 5.2

Novell Access Manager

IBM Lotus Domino 8.5 System Administration Bootcamp Information Length: Ref: 5.0 Days D8L89G Delivery method: Classroom. Price: INR.

Vendor: Citrix. Exam Code: 1Y Exam Name: Implementing Citrix NetScaler 10 for App and Desktop Solutions. Version: Demo

Viewing System Status, page 404. Backing Up and Restoring a Configuration, page 416. Managing Certificates for Authentication, page 418

USER GUIDE Summer 2015

VMware AirWatch Integration with F5 Guide Enabling secure connections between mobile applications and your backend resources

Finding Support Information for Platforms and Cisco IOS Software Images

GroupWise Messenger 18 Installation Guide. November 2017

Remote Support Security Provider Integration: RADIUS Server

Sophos Mobile. startup guide. Product Version: 8.1

Sophos Mobile super administrator guide. Product version: 7.1

ipad in Business Security Overview

Using ANM With Virtual Data Centers

ThinAir Server Platform White Paper June 2000

Sophos Mobile Control Administrator guide. Product version: 5.1

Read the following information carefully, before you begin an upgrade.

Sophos Mobile. super administrator guide. Product Version: 8

Oracle Enterprise Manager. 1 Before You Install. System Monitoring Plug-in for Oracle Unified Directory User's Guide Release 1.0

Cisco Unified Serviceability

Microsoft Exam

Sophos Mobile in Central

Microsoft Exchange Server 2007 Implementation and Maintenance

Configure Push Notifications for Cisco Jabber on iphone and ipad

ZENworks Mobile Workspace Installation Guide. September 2017

Virginia Western Community College ITN 110 Client Operating System (Windows 10)

IBM Workplace TM Collaboration Services

VMware Horizon 7 Administration Training

NotifySCM Integration Overview

PEAP under Unified Wireless Networks with ACS 5.1 and Windows 2003 Server

Mobile MOUSe EXCHANGE SERVER 2010 CONFIGURATION ONLINE COURSE OUTLINE

Sophos Mobile Control startup guide. Product version: 7

ZENworks Mobile Workspace High Availability Environments. September 2017

Installation and Upgrade Guide

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0

DEPLOYMENT GUIDE Version 1.1. Deploying F5 with IBM WebSphere 7

Using the VMware vcenter Orchestrator Client. vrealize Orchestrator 5.5.1

MDaemon Vs. Microsoft Exchange Server 2016 Standard

Course Content of MCSA ( Microsoft Certified Solutions Associate )

Cisco Expressway Cluster Creation and Maintenance

BlackBerry PlayBook Security: Part two BlackBerry Bridge

Transcription:

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0 Administration Guide

SWDT487521-636611-0528041049-001

Contents 1 Overview: BlackBerry Enterprise Server... 21 Getting started in your BlackBerry Enterprise Server environment... 21 2 Log in to the BlackBerry Administration Service for the first time... 24 3 Creating administrator accounts... 25 Administrative roles... 25 Preconfigured administrative roles... 25 Creating roles... 29 Create a role... 29 Create a role based on an existing role... 30 Create an administrator account... 30 Add an administrator account to a group... 31 Specify an email address for the BlackBerry Administration Service... 31 Permit an administrator to log in to the BlackBerry Administration Service using a messaging server account... 32 Assign a BlackBerry device to an administrator account... 32 4 Setting up security options... 33 How the BlackBerry Enterprise Solution encrypts data on the transport layer... 33 Symmetric key encryption algorithms that the BlackBerry Enterprise Solution uses... 33 Change the symmetric key encryption algorithm that the BlackBerry Enterprise Solution uses... 34 Controlling BlackBerry device behavior using IT policies... 34 Understanding IT policy rule names and policy group names... 35 Preconfigured IT policies... 35 Create an IT policy... 38 Create an IT policy based on an existing IT policy... 39 Import IT policy data... 39 Assign an IT policy to a group... 39 Assign an IT policy to a user account... 40 Enforcing IT policy changes over the wireless network... 40 Reconciliation rules for conflicting IT policies... 41 Reconciliation rules: IT policies... 42 Resolving IT policy assignments for user accounts and groups... 42 Configure how the BlackBerry Enterprise Server should resolve multiple IT policy assignments... 42

Verify which IT policy the BlackBerry Enterprise Server assigned to a BlackBerry device... 42 Managing the BlackBerry MDS Integration Service certificate... 43 Configuring the BlackBerry MDS Integration Service instances to use a trusted certificate... 43 Generate a self-signed certificate for the BlackBerry MDS Integration Service... 44 Permit client authentication between the BlackBerry MDS Integration Service and web services that use self-signed certificates... 44 5 Configuring the BlackBerry Enterprise Server environment... 46 Best practice: Running the BlackBerry Enterprise Server... 46 Configuring certain BlackBerry Enterprise Server components to use proxy servers... 47 Configure a BlackBerry Enterprise Server component to use a.pac file... 47 Configure a BlackBerry Enterprise Server component to use a proxy server... 48 Configure a BlackBerry Enterprise Server component to authenticate to a proxy server on behalf of BlackBerry devices... 49 Configuring multiple BlackBerry Enterprise Server instances to use the same BlackBerry Enterprise Server component... 49 Configure multiple BlackBerry Enterprise Server instances to use the same BlackBerry MDS Connection Service... 49 Configure multiple BlackBerry Enterprise Server instances to use the same BlackBerry MDS Integration Service... 50 Configure multiple BlackBerry Enterprise Server instances to use the same BlackBerry Collaboration Service... 51 Associate a BlackBerry MDS Integration Service pool with a BlackBerry Enterprise Server... 51 6 Configuring user accounts... 52 Adding user accounts to the BlackBerry Enterprise Server... 52 Create a user account... 52 Creating user groups... 53 Create a group to manage similar user accounts... 53 Add a user account to a group... 54 7 Assigning BlackBerry devices to users... 55 Preparing to distribute a BlackBerry device... 55 Change how the BlackBerry Enterprise Server downloads a user's existing email messages onto the BlackBerry device... 55 Prevent the BlackBerry Enterprise Server from synchronizing existing email messages onto a BlackBerry device... 55

Assigning BlackBerry devices to user accounts... 56 Option 1: Activate a BlackBerry device using the BlackBerry Administration Service... 56 Option 2: Activating a BlackBerry device over the wireless network... 57 Option 3: Activating BlackBerry devices over the LAN... 60 Option 4: Activating BlackBerry devices using the BlackBerry Web Desktop Manager... 60 Option 5: Activating BlackBerry devices over an enterprise Wi-Fi network... 61 8 Configuring BlackBerry Enterprise Server high availability... 63 Check the health of a BlackBerry Enterprise Server... 63 How the BlackBerry Enterprise Server uses health parameters... 63 Defining when failover occurs... 64 Changing the promotion threshold and failover threshold... 65 Change the promotion threshold and failover threshold and the order of the health parameters... 66 Changing when automatic failover occurs by customizing the health parameters for user accounts and messaging servers... 68 Configure the BlackBerry Enterprise Server to fail over automatically... 69 Monitoring the BlackBerry Enterprise Server for an automatic failover event... 70 Use the BlackBerry Administration Service to find the time and reason for the last automatic failover event... 70 Fail over the BlackBerry Enterprise Server manually... 70 9 Configuring high availability for BlackBerry Enterprise Server components... 71 Creating a BlackBerry MDS Connection Service pool for high availability... 71 Create a BlackBerry MDS Connection Service pool for high availability... 71 Configure a hardware load balancer to provide access to BlackBerry MDS Connection Service central push servers... 71 Create a BlackBerry Collaboration Service pool for high availability... 72 Configure the BlackBerry MDS Connection Service and BlackBerry Collaboration Service to fail over automatically... 73 Create a BlackBerry Attachment Service pool for high availability... 73 You cannot determine the BlackBerry Attachment Connector that the BlackBerry Enterprise Server or the BlackBerry MDS Connection Service uses... 74 Create a BlackBerry Router pool for high availability... 75 Permit a BlackBerry Enterprise Server to connect to a remote BlackBerry Router... 76 Creating a BlackBerry Administration Service pool using DNS round robin that includes the BlackBerry Web Desktop Manager... 76 Configure the BlackBerry Administration Service instances in the pool to communicate across network subnets... 77

Creating a BlackBerry MDS Integration Service pool... 77 Configure a hardware load balancer for the BlackBerry MDS Integration Service pool... 78 Change the tolerance threshold for missing heartbeats for a BlackBerry MDS Integration Service instance in a pool... 78 Turn off DNS caching for Java applications that are clients of a BlackBerry MDS Integration Service pool... 79 Fail over the BlackBerry MDS Connection Service or BlackBerry Collaboration Service manually... 79 Recover a BlackBerry MDS Integration Service pool that stopped responding... 80 Monitoring the high availability status or job deployment status using the BlackBerry Administration Service... 80 Monitor the high availability status or job deployment status using the BlackBerry Administration Service... 81 Remove a BlackBerry MDS Connection Service instance from a pool... 81 Remove a BlackBerry Collaboration Service instance from a pool... 81 Remove a BlackBerry Attachment Service instance from a pool... 82 Remove a BlackBerry Router instance from a pool... 82 10 Configuring BlackBerry Configuration Database high availability... 83 Prerequisites: Configuring database mirroring or database replication of the BlackBerry Configuration Database or BlackBerry MDS Integration Service database... 83 Configuring database mirroring... 84 Stop the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 84 Configure database mirroring for the BlackBerry Configuration Database or BlackBerry MDS Integration Service database... 85 Start the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 85 Configure the BlackBerry Enterprise Server to support database mirroring... 86 Configuring the BlackBerry Configuration Database for one-way transactional replication in a Microsoft SQL Server 2005 environment... 87 Stop the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 87 Create the replicated BlackBerry Configuration Database from a backup... 88 Permit access to the BlackBerry Configuration Database instances... 88 Configure the publication for the BlackBerry Configuration Database... 88 Prepare the database server that hosts the replicated BlackBerry Configuration Database and configure the subscription... 89 Start the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 90 Configuring the BlackBerry Configuration Database for one-way transactional replication in a Microsoft SQL Server 2000 environment... 91 Stop the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 91

Prepare the database server that hosts the BlackBerry Configuration Database for publication... 92 Configure the publication for the BlackBerry Configuration Database... 92 Copy the publication into a script... 93 Configure the subscription and create the replicated BlackBerry Configuration Database... 93 Change the stored procedures on the replicated BlackBerry Configuration Database... 94 Replace the replicated BlackBerry Configuration Database with a restored copy of the BlackBerry Configuration Database... 95 Apply the stored procedures changes to the replicated BlackBerry Configuration Database... 95 Replace the publication with the modified version... 96 Configure the subscription on the modified publication... 96 Configure a trace flag... 96 Start the replication process... 97 Start the BlackBerry Enterprise Server or BlackBerry MDS Integration Service instances... 97 Responding to the loss of a BlackBerry Configuration Database when you configured transactional replication... 98 Return to the BlackBerry Configuration Database when you configured transactional replication... 98 Recovering BlackBerry Enterprise Server components after the principal BlackBerry Configuration Database fails over to the mirror BlackBerry Configuration Database... 99 Recover BlackBerry Enterprise Server components after the principal BlackBerry Configuration Database fails over to the mirror BlackBerry Configuration Database... 99 11 Sending software and BlackBerry Java Applications to BlackBerry devices... 100 Managing BlackBerry Java Applications and BlackBerry Device Software... 100 Installing BlackBerry Java Applications on BlackBerry devices... 101 Developing BlackBerry Java Applications for BlackBerry devices... 101 Preparing to distribute BlackBerry Java Applications... 101 Specify a shared network folder for BlackBerry Java Applications... 102 Add a BlackBerry Java Application to the application repository... 102 Add a collaboration client to the application repository... 103 Add the BlackBerry MDS Runtime to the application repository... 103 Specify keywords for a BlackBerry Java Application... 103 Configuring application control policies... 104 Standard application control policies... 104 Change a standard application control policy... 105 Create custom application control policies for a BlackBerry Java Application... 105 Policy precedence on the BlackBerry device... 106

Application control policies for unlisted applications... 107 Change the standard application control policy for unlisted applications that are optional... 107 Create an application control policy for unlisted applications... 107 Set the priority of application control policies for unlisted applications... 108 Creating software configurations... 108 Create a software configuration... 109 Add a BlackBerry Java Application to a software configuration... 110 Assign a software configuration to a group... 110 Assign a software configuration to multiple user accounts... 111 Assign a software configuration to a user account... 111 Install BlackBerry Java Applications on a BlackBerry device at a central computer... 112 View the status of a job... 112 View the status of a task... 113 Stopping a job that is running... 117 Stop a job that is running... 117 View how the BlackBerry Administration Service resolved software configuration conflicts for a user account... 118 Reconciliation rules for conflicting settings in software configurations... 118 Reconciliation rules: BlackBerry Java Applications... 119 Reconciliation rules: BlackBerry Device Software... 122 Reconciliation rules: Standard application settings... 123 Reconciliation rules: Application control policies... 124 Reconciliation rules: Application control policies for unlisted applications... 125 12 Alternative methods for installing BlackBerry Java Applications on BlackBerry devices... 126 Installing BlackBerry Java Applications on BlackBerry devices without using the BlackBerry Administration Service... 126 Developing BlackBerry Java Applications for BlackBerry devices... 126 Methods you can use to install BlackBerry Java Applications on BlackBerry devices... 126 Installing BlackBerry Java Applications using the BlackBerry Desktop Software... 127 Prerequisites: Installing BlackBerry Java Applications using the BlackBerry Desktop Software... 128 Make the BlackBerry Java Application available to the BlackBerry Desktop Software... 128 Install the BlackBerry Java Application using the BlackBerry Desktop Software... 129 Installing BlackBerry Java Applications using the BlackBerry Application Web Loader... 129 Prerequisites: Installing BlackBerry Java Applications using the BlackBerry Application Web Loader... 130 Enable the BlackBerry Application Web Loader on a web server... 131

Install the BlackBerry Java Application using the BlackBerry Application Web Loader... 131 Installing BlackBerry Java Applications using the standalone application loader tool... 132 Prerequisites: Installing BlackBerry Java Applications using the standalone application loader tool... 132 Add BlackBerry Java Application files to a shared network folder... 133 Share the Research In Motion folder that contains the BlackBerry Java Application... 133 Configure the standalone application loader tool to install the BlackBerry Java Application in automated mode... 134 Install the BlackBerry Java Application using the standalone application loader tool... 134 Installing BlackBerry Java Applications using a web browser on BlackBerry devices... 134 Prerequisites: Installing BlackBerry Java Applications using a web browser on BlackBerry devices... 135 Install the BlackBerry Java Application on a web server... 135 Install the BlackBerry Java Application using a web browser on the BlackBerry device... 136 13 Making BlackBerry MDS Runtime Applications and BlackBerry Browser Applications available to users... 137 Overview: Creating BlackBerry MDS Runtime Applications and sending them to BlackBerry devices... 137 Preparing BlackBerry devices to install BlackBerry MDS Runtime Applications and BlackBerry Browser Applications... 139 Configuring a BlackBerry MDS Integration Service to support a JDBC driver... 139 Specify JDBC driver information for a BlackBerry MDS Integration Service... 140 Add support for a JDBC driver to a BlackBerry MDS Integration Service... 140 Configuring access to web services and managing signed and unsigned applications... 141 Permit BlackBerry MDS Runtime Applications to access web services using HTTPS... 141 Define a BlackBerry MDS Runtime Application as a trusted application... 141 Permit users to install unsigned BlackBerry MDS Runtime Applications on BlackBerry devices... 142 Configuring how users access and use BlackBerry MDS Runtime Applications... 142 BlackBerry MDS Application Console... 142 Log in to the BlackBerry MDS Application Console... 143 Making BlackBerry MDS Runtime Applications and BlackBerry Browser Applications available for installation... 143 Sending BlackBerry MDS Runtime Applications and BlackBerry Browser Applications to BlackBerry devices... 144 Applying an application control policy to a BlackBerry MDS Runtime Application... 146 Prepare the application launcher file for a BlackBerry MDS Runtime Application... 146 Assign an application control policy to a BlackBerry MDS Runtime Application... 147 14 Configuring how users access enterprise applications and web content... 148 Specifying a BlackBerry MDS Connection Service as a central push server... 148 Specify a BlackBerry MDS Connection Service as a central push server... 148

Configuring how BlackBerry devices authenticate to content servers... 149 Configure how BlackBerry devices authenticate to content servers... 149 Configure the BlackBerry MDS Connection Service to authenticate BlackBerry devices to content servers that use NTLM... 149 Configure the BlackBerry MDS Connection Service to authenticate BlackBerry devices to content servers that use Kerberos... 150 Configure the BlackBerry MDS Connection Service to authenticate BlackBerry devices to content servers that use LTPA... 150 Configure the BlackBerry MDS Connection Service to authenticate BlackBerry devices to the RSA Authentication Manager... 151 Configuring how the BlackBerry MDS Connection Service manages requests for web content... 151 Configure the BlackBerry MDS Connection Service to manage HTTP cookie storage... 151 Configure the timeout limit for HTTP connections with BlackBerry devices... 152 Configure the timeout limit for HTTP connections with web servers... 152 Configure the maximum number of times that the BlackBerry Browser accepts HTTP redirections... 153 Permitting push applications to make trusted connections to a BlackBerry MDS Connection Service... 153 Create a key store to store certificates for use with HTTPS connections... 153 Add a certificate for the BlackBerry MDS Connection Service... 154 Export the BlackBerry MDS Connection Service certificate to make it available to push applications... 154 Import the BlackBerry MDS Connection Service certificate to the key store of a push application... 155 Configuring a BlackBerry MDS Connection Service to trust web servers... 155 Specify whether the BlackBerry MDS Connection Service requires trusted HTTPS connections from web servers... 155 Specify whether the BlackBerry MDS Connection Service requires trusted TLS connections from web servers... 156 Configuring certificate server information for the BlackBerry MDS Connection Service... 156 Add a retrieved certificate for a web server to the key store... 160 Permitting users to access intranet sites on BlackBerry devices using global login information... 161 Configure global login information for intranet site access... 161 Configuring how the BlackBerry MDS Connection Service connects to BlackBerry devices... 161 Specify the maximum amount of data that a BlackBerry MDS Connection Service can send to BlackBerry devices... 161 Specify the pending content timeout limit for a BlackBerry MDS Connection Service... 162 Permit Java applications to use persistent socket connections with a BlackBerry MDS Connection Service... 162 Specify the thread pool size of a BlackBerry MDS Connection Service... 162 Specify the maximum number of persistent socket connections... 163

Specify the port number that the web server listens on for push application requests... 163 Specify how often a BlackBerry MDS Connection Service polls for configuration information... 164 15 Setting up the messaging environment... 165 Creating email message filters... 165 Create an email message filter that applies to all user accounts on a BlackBerry Enterprise Server... 165 Turn on an email message filter that applies to all user accounts on a BlackBerry Enterprise Server... 166 Create an email message filter that applies to a specific user account... 166 Turn on an email message filter that applies to a specific user account... 167 Copying existing email message filters to another BlackBerry Enterprise Server... 167 Export email message filters for a BlackBerry Enterprise Server... 168 Import email message filters for a BlackBerry Enterprise Server... 168 Copying existing email message filters to user accounts... 168 Export email message filters for a user account... 168 Import email message filters for a user account... 169 Extension plug-ins for processing messages... 169 Install an extension plug-in application... 170 Add an extension plug-in to a BlackBerry Messaging Agent... 170 Change how a BlackBerry Messaging Agent uses extension plug-ins... 171 Configure how a BlackBerry Messaging Agent deletes email messages from a BlackBerry state database... 171 Mapping contact information fields for synchronization and contact lookups... 172 Map a contact information field in the email application to a contact list field on BlackBerry devices... 172 Map a contact list field in an email application to an contact field on a BlackBerry device... 172 Map contact information fields that users defined to contact list fields on all BlackBerry devices... 173 Map contact information fields that users defined to contact fields on a BlackBerry device... 173 16 Controlling the BlackBerry Enterprise Solution... 175 Controlling BlackBerry device access to the BlackBerry Enterprise Server... 175 Turn on the Enterprise Service Policy... 175 Configure the Enterprise Service Policy... 176 Permit a user to override the Enterprise Service Policy... 176 Options for extending messaging security... 177 Protection of data using the PGP Support Package for BlackBerry smartphones... 177 Prerequisites: Protecting data using the PGP Support Package for BlackBerry smartphones... 177 Prerequisites: Protecting data using the S/MIME Support Package for BlackBerry smartphones... 177 Configure encryption options for S/MIME-protected messages... 178

Protecting data using IBM Lotus Notes encryption... 179 Enforcing secure messaging using classifications... 180 Generating organization-specific encryption keys for PIN message encryption... 182 Configuring memory cleaning... 182 Prerequisites: Using secure garbage collection to perform additional memory cleaning... 183 Best practice: Configuring additional memory cleaner settings for BlackBerry devices... 183 Deactivating BlackBerry devices that do not have IT policies applied... 184 Deactivate BlackBerry devices that do not have IT policies applied... 184 Changing the default behavior of BlackBerry devices and the BlackBerry Desktop Software... 184 Change the value for an IT policy rule... 185 Returning to the default behavior of BlackBerry devices and the BlackBerry Desktop Software... 185 Delete an IT policy... 185 Creating new IT policy rules to control third-party applications... 186 Create an IT policy rule for a third-party application... 186 Change or delete IT policy rules for third-party applications... 186 Export all IT policy data to a data file... 186 Turn off BlackBerry services that the BlackBerry MDS Connection Service, BlackBerry Collaboration Service, and BlackBerry MVS provide... 187 17 Configuring BlackBerry devices to enroll certificates over the wireless network... 188 Configure the BlackBerry MDS Connection Service to connect to the certificate authority... 188 Add communication information to a BlackBerry MDS Connection Service configuration set... 189 Assign a BlackBerry MDS Connection Service configuration set to a BlackBerry MDS Connection Service instance... 190 Configure the certificate information using IT policies... 191 Add the certificate information to a Wi-Fi profile... 191 Managing an enrolled certificate... 192 Change the polling interval, logging, and pool size for the BlackBerry MDS Connection Service connection to the certificate authority... 192 Properties in the rimpublic.properties file... 193 18 Making the BlackBerry Web Desktop Manager available to users... 194 Installing the client components of the BlackBerry Web Desktop Manager on users' computers... 194 Publish the client files for the BlackBerry Web Desktop Manager in a Windows GPO... 194 Configure users' computers to install the client file for the BlackBerry Web Desktop Manager automatically... 195 Make the BlackBerry Web Desktop Manager available to users... 196

19 Configuring the BlackBerry Web Desktop Manager... 197 Permit users to create activation passwords using the BlackBerry Web Desktop Manager... 197 Permit users to activate BlackBerry devices using the BlackBerry Web Desktop Manager... 197 Permit users to back up and restore data using the BlackBerry Web Desktop Manager... 198 Configure the domains for backing up data using the BlackBerry Web Desktop Manager... 198 Change the text colors in the BlackBerry Web Desktop Manager... 199 BlackBerry Web Desktop Manager text colors... 199 Display a custom image in the BlackBerry Web Desktop Manager... 200 20 Creating and configuring Wi-Fi profiles and VPN profiles... 201 Creating and configuring Wi-Fi profiles... 201 Prerequisites: Creating Wi-Fi profiles and VPN profiles... 201 Create a Wi-Fi profile... 203 Create a Wi-Fi profile based on an existing Wi-Fi profile... 203 Configure a Wi-Fi profile... 203 Assign a Wi-Fi profile to a user account... 204 Configure a Wi-Fi profile on a BlackBerry device... 204 Creating and configuring VPN profiles... 204 Create a VPN profile... 205 Create a VPN profile based on an existing VPN profile... 205 Configure a VPN profile... 205 Assign a VPN profile to a user account... 206 Associate a VPN profile with a Wi-Fi profile... 206 21 Configuring encryption and authentication methods for Wi-Fi enabled BlackBerry devices... 207 Configuring WEP encryption... 207 Configure WEP keys for BlackBerry devices using a Wi-Fi profile... 207 Configuring PSK encryption... 208 Configure PSK encryption data for BlackBerry devices using a Wi-Fi profile... 208 Configuring LEAP authentication... 209 Configure LEAP authentication data for BlackBerry devices using a Wi-Fi profile... 209 Configuring PEAP authentication... 210 Configure PEAP authentication data for BlackBerry devices using a Wi-Fi profile... 210 Prerequisites: Distributing a certificate using the BlackBerry Desktop Manager... 211 Distribute a certificate using the BlackBerry Desktop Manager... 211

Configure PEAP configuration settings in the Wi-Fi profile on a BlackBerry device... 212 Configuring EAP-TLS authentication... 213 Configure EAP-TLS authentication data for BlackBerry devices using a Wi-Fi profile... 213 Configuring EAP-TTLS authentication... 214 Configure EAP-TTLS authentication data for BlackBerry devices using a Wi-Fi profile... 215 Configure EAP-TTLS configuration settings in the Wi-Fi profile on a BlackBerry device... 216 Configuring EAP-FAST authentication... 216 Configure EAP-FAST authentication... 217 Send EAP-FAST authentication data to a BlackBerry device using a Wi-Fi profile... 217 Configure EAP-FAST configuration settings in the Wi-Fi profile on BlackBerry devices... 218 22 Configuring software tokens for BlackBerry devices... 219 Prerequisites: Configuring BlackBerry devices for RSA authentication... 219 Configure BlackBerry devices for RSA authentication... 220 Configure RSA authentication over a Wi-Fi network using a software token... 220 Configure RSA authentication over a VPN network using a software token... 220 Assign software tokens to a user account... 221 Timeout values... 221 23 Changing the security settings of the BlackBerry Administration Service and BlackBerry Web Desktop Manager... 223 Import a new SSL certificate for the BlackBerry Administration Service and BlackBerry Web Desktop Manager... 223 Change the key store password for the certificate that the BlackBerry Administration Service and BlackBerry Web Desktop Manager use... 224 Change the LDAP server information for the BlackBerry Administration Service... 224 Configuring which IBM Lotus Domino server with DIIOP the BlackBerry Administration Service uses... 225 Change the IBM Lotus Domino server with DIIOP that the BlackBerry Administration Service uses... 225 Changing password settings for BlackBerry Administration Service authentication... 226 Change password settings for BlackBerry Administration Service authentication... 226 Regenerate the system credentials for the BlackBerry Administration Service... 226 24 Managing administrator accounts... 227 Change role permissions... 227 Change the roles for an administrator account... 227 Delete a role... 227 Delete an administrator account... 228

25 Managing user accounts... 229 Managing groups... 229 Remove a user account from a group... 229 Change the properties of a group... 229 Rename a group... 230 Delete a group... 230 Managing user accounts... 230 Move a user account to a different group... 230 Move a user account from one BlackBerry Enterprise Server to another... 231 Delete a user account from the BlackBerry Enterprise Server... 231 Update a user account manually... 231 Add an administrator role to a user account... 232 Update the contact list manually... 232 Resend service books to a BlackBerry device... 232 Import a user list... 232 Export a user list... 233 26 Protecting and reassigning BlackBerry devices... 234 Protecting lost, stolen, or replaced BlackBerry devices... 234 Protect a stolen BlackBerry device... 234 Protect a lost BlackBerry device... 235 Protect a lost BlackBerry device that a user might recover... 235 27 Managing the delivery of BlackBerry Java Applications, BlackBerry Device Software, and device settings to BlackBerry devices... 236 Managing the default distribution settings for jobs... 236 Change default settings for a job schedule... 236 Change how IT policies are sent to BlackBerry devices... 237 Change how to install, update, or remove BlackBerry Java Applications... 238 Change how to install, update, or remove the BlackBerry Device Software... 239 Change how the BlackBerry Enterprise Server sends standard application settings to BlackBerry devices... 240 Managing the distribution settings for a specific job... 242 Specify the start time and priority for a job... 242 Change how a job sends IT policies to BlackBerry devices... 242 Change how a job sends BlackBerry Java Applications to BlackBerry devices... 244

Change how a job sends the BlackBerry Device Software to BlackBerry devices... 245 Change how a job sends standard application settings to BlackBerry devices... 246 Managing BlackBerry Java Applications on BlackBerry devices... 247 Make a BlackBerry Java Application unavailable for installation... 247 Remove a BlackBerry Java Application from BlackBerry devices over the wireless network... 248 Managing software configurations... 248 Remove a software configuration from a group... 248 Remove a software configuration from multiple user accounts... 249 Remove a software configuration from a user account... 249 Delete a software configuration... 249 28 Managing BlackBerry MDS Runtime Applications and BlackBerry Browser Applications... 250 Update a BlackBerry MDS Runtime Application or BlackBerry Browser Application on BlackBerry devices... 250 Removing BlackBerry MDS Runtime Applications and BlackBerry Browser Applications... 251 Make a BlackBerry MDS Runtime Application or BlackBerry Browser Application unavailable for installation... 251 Remove a BlackBerry MDS Runtime Application or BlackBerry Browser Application from BlackBerry devices... 252 Remove a BlackBerry MDS Runtime Application or BlackBerry Browser Application from a specific BlackBerry device... 253 Cancel a request to install, update, or remove a BlackBerry MDS Runtime Application or BlackBerry Browser Application... 253 Remove application data from the BlackBerry MDS Integration Service... 253 Remove a certificate from the BlackBerry MDS Integration Service trusted store... 254 Block notification messages that an event data source sends to BlackBerry devices... 254 29 Managing how users access enterprise applications and web content... 255 Restricting user access to content on web servers... 255 Restrict requests for content on web servers from BlackBerry devices... 255 Specify web address patterns... 255 Create a pull rule... 256 Restrict or permit web address patterns using a pull rule... 256 Assign a pull rule to the members of a group... 257 Assign a pull rule to user accounts... 257 Restricting user access to media content in the BlackBerry Browser... 258 Prevent users from accessing specific media types... 258 Configure a maximum file size for media types... 258 Restricting the push application content that users can receive... 259

Restrict push applications from sending data to BlackBerry devices... 259 Create push initiators for push applications... 259 Turn on push authorization... 260 Create a push rule... 260 Assign push initiators to a push rule... 261 Assign a push rule to the members of a group... 261 Assign a push rule to user accounts... 262 Encrypt push requests that push applications send to BlackBerry devices... 262 Associate a push initiator with the BlackBerry MDS Integration Service... 262 Managing push application requests... 263 Specify device ports for application-reliable push requests... 263 Store push application requests in the BlackBerry Configuration Database... 264 Configure the settings for storing push requests in the BlackBerry Configuration Database... 264 Configure the maximum number of active connections that a BlackBerry MDS Connection Service can process... 265 Configure the maximum number of queued connections that a BlackBerry MDS Connection Service can process... 265 Delete requests from the push request queue manually... 265 30 Managing organizer data synchronization... 267 Managing the wireless backup and recovery of organizer data... 267 Turn off the wireless backup of organizer data for a user account... 267 Delete organizer data for members of a user group from the BlackBerry Enterprise Server... 267 Delete a user's organizer data from a BlackBerry Enterprise Server... 268 Turning off organizer data synchronization... 268 Turn off organizer data synchronization for all user accounts that are associated with a BlackBerry Enterprise Server... 268 Turn off organizer data synchronization for a specific user account... 268 Changing how organizer data synchronizes... 269 Change the direction of organizer data synchronization for all user accounts on a BlackBerry Enterprise Server... 269 Change the direction of organizer data synchronization for a specific user account... 269 Change how the BlackBerry Administration Service resolves conflicts during organizer data synchronization for all user accounts on a BlackBerry Enterprise Server... 270

Change how the BlackBerry Administration Service resolves conflicts during organizer data synchronization for a specific user account... 270 31 Managing your organization's messaging environment and attachment support... 272 Managing message forwarding... 272 Forward email messages to a BlackBerry device when no filter rules apply... 272 Do not deliver email messages to a BlackBerry device when no filter rules apply... 272 Forward email messages from inbox subfolders to a BlackBerry device... 273 Turn off email message forwarding to user accounts in a group... 273 Turn off email message forwarding to a user account... 274 Turn off synchronization for email messages sent from a BlackBerry device... 274 Turn off email message forwarding when a user connects a BlackBerry device to a computer... 274 Managing the incoming message queue... 275 Delete email messages for user accounts from the incoming message queue... 275 Managing wireless message reconciliation... 275 Turn off wireless message reconciliation for a BlackBerry Enterprise Server... 276 Managing access to remote message data... 276 Turn off a user's ability to check the availability of meeting participants on the BlackBerry device... 276 Turn off a user's ability to search for remote email messages from the BlackBerry device... 277 Managing email messages that contain HTML and rich content... 277 View whether a user turned on support for email messages that contain HTML and rich content for a BlackBerry device... 278 Turn off support for rich text formatting and inline images in email messages for users on a BlackBerry Enterprise Server... 278 Turn off support for rich text formatting and inline images in email messages using an IT policy rule... 279 Synchronizing folders on the BlackBerry device... 279 Specify public contact databases that users can access from their BlackBerry devices... 279 Control which public contact databases a user can access from the BlackBerry device... 280 Configuring access to documents on remote file systems... 280 Configure the BlackBerry MDS Connection Service to communicate with a remote file system... 281 Add communication information to a BlackBerry MDS Connection Service configuration set... 282 Assign a BlackBerry MDS Connection Service configuration set to a BlackBerry MDS Connection Service instance... 283 Managing signatures and disclaimers in email messages... 283 Add a signature to email messages that a user sends from a BlackBerry device... 283

Add a disclaimer to email messages that users send from BlackBerry devices... 284 Add a disclaimer to email messages that a user sends from a BlackBerry device... 284 Specify conflict rules for disclaimers... 285 Turn off disclaimers for email messages... 285 Monitor email messages that users send from BlackBerry devices... 285 Sending notification messages to users... 286 Send a notification message to all users in a BlackBerry Domain... 286 Send a notification message to all users on a BlackBerry Enterprise Server... 287 Send a notification message to group members... 287 Send a notification message to a user... 287 Automated notification messages... 287 Change the subject for automated notification messages... 288 Turn off automated notification messages... 288 How the BlackBerry Attachment Connector communicates with BlackBerry Attachment Service instances... 289 Change how a BlackBerry Attachment Connector retries sending requests to a BlackBerry Attachment Service... 289 Change how a BlackBerry Attachment Connector restores a lost connection to a BlackBerry Attachment Service... 290 Changing how a BlackBerry Attachment Service converts attachments... 290 Change how a BlackBerry Attachment Service converts attachments... 291 Change the maximum file size for attachments that users can receive... 292 Turn off support for an attachment file format for a BlackBerry Attachment Service... 293 Add support for an additional attachment file format to a BlackBerry Attachment Service... 294 Changing how the BlackBerry Messaging Agent reconciles attachments to the messaging server... 294 Change the maximum file size for attachments that users can send... 295 Prevent users from sending large attachments... 296 Change the maximum file size of attachments that users can download... 296 32 Managing instant messaging... 297 Installing the collaboration client on BlackBerry devices... 297 Change the instant messaging server that a BlackBerry Collaboration Service connects to... 298 Change the transport protocol for a Microsoft Office Communicator environment... 298 Specify the Windows domain name for users who log in to the collaboration client... 299 Managing instant messaging sessions... 299 Specify the maximum number of instant messaging sessions that can be open at the same time... 299

Specify the idle timeout limit for instant messaging sessions... 300 Specify the inactivity timeout limit for instant messaging sessions... 300 Managing instant messaging features... 300 Prevent users from sending specific file types to instant messaging contacts using the BlackBerry Client for IBM Lotus Sametime... 300 Specifying the maximum size of file types that users can send using the BlackBerry Client for IBM Lotus Sametime... 301 Prevent users from sending instant messaging conversations in email messages... 301 Prevent users from saving instant messaging conversations... 301 Hide the icon that appears on BlackBerry devices for mobile contacts... 301 Make additional contact information and phone numbers available for the BlackBerry Client for IBM Lotus Sametime users... 302 33 Managing a BlackBerry Domain... 304 Restarting BlackBerry Enterprise Server components... 304 Restart a BlackBerry Enterprise Server component using the BlackBerry Administration Service... 305 Restart a BlackBerry Enterprise Server component using Windows Services... 305 Managing BlackBerry CAL keys... 305 Add or delete a BlackBerry CAL key... 305 Copy a BlackBerry CAL key to a text file... 306 Change the port number that BlackBerry Enterprise Server components use to connect to the BlackBerry Configuration Database... 306 Change the port number that the syslog tools use to monitor BlackBerry Enterprise Server events... 307 34 Managing Wi-Fi profiles and VPN profiles... 308 Delete a Wi-Fi profile... 308 Delete a VPN profile... 308 35 BlackBerry Controller and BlackBerry Enterprise Server Component Monitoring... 309 How the BlackBerry Controller monitors the BlackBerry Enterprise Server components... 309 Change how the BlackBerry Controller restarts the BlackBerry Messaging Agent... 309 Change how the BlackBerry Controller restarts a BlackBerry Enterprise Server service... 312 BlackBerry MDS Integration Service notification messages... 315 Block notification messages that an event data source sends to BlackBerry devices... 315 BlackBerry Enterprise Server Alert Tool... 315 Configuring notifications using the BlackBerry Enterprise Server Alert Tool... 315

36 BlackBerry Enterprise Server log files... 317 Monitoring PIN messages, SMS text messages, and calls... 317 Change the default location for the log files for PIN messages, SMS text messages, and calls... 317 Log files for BlackBerry Enterprise Server components... 318 Changing the location where BlackBerry Enterprise Server components save log files... 318 Changing how BlackBerry Enterprise Server components create log files... 319 BlackBerry MDS Connection Service log files... 323 Changing how the BlackBerry MDS Connection Service creates a log file... 323 Using BlackBerry MDS Connection Service log files to view information for proxied connections to BlackBerry devices... 326 BlackBerry Collaboration Service log files... 327 Change which activities the BlackBerry Collaboration Service writes to a log file... 327 37 BlackBerry Enterprise Solution connection types and port numbers... 329 BlackBerry Attachment Service connection types and port numbers... 329 BlackBerry Collaboration Service connection types and port numbers... 330 BlackBerry Configuration Database connection types and port numbers... 331 BlackBerry Controller connection types and port numbers... 331 BlackBerry Dispatcher connection types and port numbers... 332 BlackBerry Messaging Agent connection types and port numbers... 333 BlackBerry MDS Connection Service connection types and port numbers... 334 BlackBerry MDS Integration Service connection types and port numbers... 335 BlackBerry MDS Integration Service database connection types and port numbers... 336 BlackBerry Policy Service connection types and port numbers... 336 BlackBerry Router connection types and port numbers... 337 BlackBerry Synchronization Service connection types and port numbers... 338 CalHelper connection type and port number... 339 IBM Lotus Domino connection types and port numbers... 339 IBM Lotus Sametime connection type and port number... 339 Microsoft Office Live Communications Server 2005 connection types and port numbers... 340 BlackBerry Client for use with Microsoft Office Live Communications Server 2005 connection types and port numbers... 340 Novell GroupWise Messenger connection type and port number... 341 SNMP agent connection types and port numbers... 341 Syslog connection type and port number... 341

BlackBerry Administration Service connection types and port numbers... 342 BlackBerry Monitoring Service connection types and port numbers... 343 38 Troubleshooting... 345 Troubleshooting: Connecting to the BlackBerry Administration Service... 345 The web browser displays an HTTP 404 or HTTP 504 error message when it tries to connect to a BlackBerry Administration Service instance... 345 Troubleshooting: BlackBerry Enterprise Server Performance... 345 A BlackBerry Enterprise Server that you installed remotely from the BlackBerry Configuration Database uses an unexpected amount of system resources and increases wireless network traffic... 345 Troubleshooting: Using IBM Lotus Notes encryption... 346 The BlackBerry device does not prompt the user for the Notes.id password when it decrypts an IBM Lotus Notes encrypted message... 346 Troubleshooting: Setting up user accounts... 347 You cannot find a new user account in the directory using the BlackBerry Administration Service... 347 Troubleshooting: Messaging... 347 Messages are not delivered to BlackBerry devices... 347 Troubleshooting: Instant messaging... 348 Users cannot view phone numbers for contacts in the BlackBerry Client for IBM Lotus Sametime... 348 Troubleshooting: BlackBerry Web Desktop Manager... 349 Troubleshooting: Users cannot log in to the BlackBerry Web Desktop Manager... 349 Troubleshooting: Connections to the Wi-Fi network... 349 A BlackBerry device cannot connect to a Wi-Fi network... 349 A BlackBerry device cannot open a VPN connection... 359 A BlackBerry device cannot connect to the mobile network using UMA or GAN... 359 Verify whether a BlackBerry device can resolve an IP address... 360 Look up a computer name to resolve an IP address... 361 39 Glossary... 362 40 Provide feedback... 366 41 Legal notice... 367

Overview: BlackBerry Enterprise Server Overview: BlackBerry Enterprise Server 1 The BlackBerry Enterprise Server is designed to be a secure, centralized link between an organization's wireless network, communications software, applications, and BlackBerry devices. The BlackBerry Enterprise Server integrates with your organization's existing infrastructure, which can include messaging and collaboration software, calendar and contact information, wireless Internet and intranet access, and custom applications, to provide BlackBerry device users with mobile access to your organization's resources. The BlackBerry Enterprise Server supports AES and Triple DES encryption to protect and ensure the integrity of wireless data that is transmitted between the BlackBerry Enterprise Server components and BlackBerry devices. You can select from more than 450 IT policy rules that you can configure to control the features of the BlackBerry devices that are used in your organization's environment. The BlackBerry Enterprise Server supports several optional components and configurations to meet your organization's requirements. The BlackBerry Collaboration Service integrates with supported third-party instant messaging servers to permit users to access your organization's instant messaging system from their BlackBerry devices using the BlackBerry instant messaging client. The BlackBerry MDS Integration Service supports custom application development and distribution. You can configure the BlackBerry Enterprise Server and the BlackBerry Enterprise Server components to support high availability to enhance the consistency and reliability of your organization's environment. You can manage the BlackBerry Enterprise Server, BlackBerry devices, and user accounts using the BlackBerry Administration Service, a web application that is accessible from any computer that can access to the computer that hosts the BlackBerry Administration Service. You can use the BlackBerry Administration Service to manage a BlackBerry Domain, which consists of multiple BlackBerry Enterprise Server instances that use a single BlackBerry Configuration Database. Getting started in your BlackBerry Enterprise Server environment The following table lists the tasks that administrators typically perform after installing a BlackBerry Enterprise Server, and the chapter or section in the BlackBerry Enterprise Server Administration Guide that contains the information required to complete the task. Some of the tasks might not be required in your organization's environment. Task Create administrator accounts. Review the default IT policies. If necessary, change existing IT policies or create new IT policies. Add user accounts to the BlackBerry Enterprise Server. Chapter Creating administrator accounts Setting up security options Section: Controlling BlackBerry device behavior using IT policies Configuring user accounts Section: Adding user accounts to the BlackBerry Enterprise Server 21

Getting started in your BlackBerry Enterprise Server environment Task Create groups. Add user accounts to groups. Review the default distribution settings for IT policies. If necessary, change the default distribution settings. Assign IT policies to groups or user accounts. Assign BlackBerry devices to user accounts. If necessary, change the default messaging settings for your organization's environment. Prepare to distribute BlackBerry Java Applications. Review the default distribution settings for BlackBerry Java Applications. If necessary, change the default distribution settings. Review the default application control policies and application control policies for unlisted applications. If necessary, change the existing application control policies. Create software configurations for BlackBerry Java Applications. Chapter Configuring user accounts Section: Creating user groups Configuring user accounts Section: Add a user account to a group Managing the delivery of BlackBerry Java Applications, BlackBerry Device Software, and device settings to BlackBerry devices Section: Change how IT policies are sent to BlackBerry devices Setting up security options Section: Assign an IT policy to a group Section: Assign an IT policy to a user account Assigning BlackBerry devices to users Setting up the messaging environment Managing your messaging environment and attachment support Sending software and BlackBerry Java Applications to BlackBerry devices Section: Preparing to distribute BlackBerry Java Applications Managing the delivery of BlackBerry Java Applications, BlackBerry Device Software, and device settings to BlackBerry devices Section: Change how to install, update, or remove BlackBerry Java Applications on BlackBerry devices Sending software and BlackBerry Java Applications to BlackBerry devices Section: Configuring application control policies Section: Application control policies for unlisted applications Sending software and BlackBerry Java Applications to BlackBerry devices 22

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback