Table of Contents
Advertisement
BlackBerry Enterprise Solution
that the BlackBerry Enterprise Server administrator previously added to the BlackBerry Enterprise Server, but it
prevents connections from newly-added BlackBerry devices by default.
Define BlackBerry device criteria in an approval list to turn on and turn off BlackBerry Enterprise Server access
for BlackBerry devices. BlackBerry devices that meet the approval list criteria can complete wireless enterprise
activation on that BlackBerry Enterprise Server.
The BlackBerry Enterprise Server administrator can define the following types of criteria:
•
specific, permitted BlackBerry device PINs as a string
•
a permitted range of BlackBerry device PINs
The BlackBerry Enterprise Server administrator can also control access based on specific manufacturers and
models of BlackBerry devices. The BlackBerry Manager includes lists of permitted manufacturers and models
based on the properties of BlackBerry devices already added to the BlackBerry Enterprise Server. The BlackBerry
Enterprise Server administrator can uncheck items on these lists to prevent further connections from BlackBerry
devices of a specific manufacturer or model.
The BlackBerry Enterprise Server administrator can permit a specific user to override the Enterprise Service
Policy. If the BlackBerry Enterprise Server administrator then sets the approval list with criteria that excludes
that user's BlackBerry device or BlackBerry enabled device, the user can still connect to the BlackBerry
Enterprise Server.
For more information, see the BlackBerry Enterprise Server System Administration Guide.
Controlling wireless software upgrades using the BlackBerry Enterprise Server
By default, only the BlackBerry Enterprise Server can select available wireless software upgrade packages and
send them to BlackBerry devices to request that BlackBerry devices upgrade to the software packages. The
wireless service provider cannot select available BlackBerry Device Software upgrade packages and send them
to BlackBerry devices unless you set the BES Upgrade Exclusivity flag in the OTASL IT Policy Flags IT policy rule
to turn off exclusive BlackBerry Enterprise Server control of wireless software upgrade requests.
Protecting Bluetooth connections on BlackBerry devices
Bluetooth wireless technology enables Bluetooth enabled BlackBerry devices to establish a wireless connection
with devices that are within a 10-meter range. Bluetooth enabled BlackBerry devices can connect to other
Bluetooth enabled devices such as a hands-free car kit or wireless headset.
Bluetooth profiles specify how applications on Bluetooth enabled BlackBerry devices and on other Bluetooth
devices connect and interoperate. Bluetooth enabled BlackBerry devices implement their Bluetooth serial port
profiles to establish serial connections to Bluetooth peripherals using virtual serial ports. The Bluetooth software
on the BlackBerry device accesses the serial port through the BlackBerry Software Development Kit.
The BlackBerry Enterprise Server administrator can use IT policies to simultaneously manage all Bluetooth
enabled BlackBerry devices. By default, Bluetooth enabled BlackBerry devices that are running BlackBerry
Device Software Version 4.0 or later include the following security measures:
•
The Bluetooth wireless technology is turned off on the BlackBerry device.
•
Users must request a connection or pairing on the BlackBerry device with another Bluetooth device. Users
must also type a shared secret key (called a passkey) to complete the pairing.
•
Users can specify whether to encrypt data traffic to and from the BlackBerry device over Bluetooth
connections. The BlackBerry Enterprise Solution uses the passkey to generate encryption keys.
•
The BlackBerry device prompts the user each time a Bluetooth device attempts to connect to the BlackBerry
device.
For more information, see Security for BlackBerry Devices with Bluetooth Wireless Technology.
www.blackberry.com
56
Advertisement
Table of Contents
