
09-16-2009, 09:42 PM
|
 |
Proprietor
|
|
Join Date: Nov 2008
Posts: 2,257
|
|
KB19078 - IT policy does not get applied successfully to BlackBerry Smartphones
KB19078 - IT policy does not get applied successfully to BlackBerry Smartphones
Environment
- BlackBerry® Enterprise Server version 4.1
- BlackBerry Enterprise Server version 5.0
Overview
After assigning a BlackBerry smartphone user to a new IT policy, the status remains at Received, rather than changing to Applied Successfully. Any new IT policy that is assigned to the BlackBerry smartphone user while in this state will not get sent to the BlackBerry smartphone.
Cause
The BlackBerry Enterprise Server is configured to use 3DES as the encryption algorithm, but the assigned IT policy has the Disable 3DES Transport Crypto rule set to true.
This combination of settings is unsupported, because this IT policy rule is forcing the BlackBerry smartphone to use AES, while the BlackBerry Enterprise Server only supports 3DES.
Resolution
To resolve this issue, enable the 3DES and AES encryption algorithms on the BlackBerry Enterprise Server.
For BlackBerry Enterprise Server version 4.1
- Open BlackBerry Manager.
- Select the appropriate BlackBerry Enterprise Server.
- Click the Server Configuration tab.
- Click Edit Properties>.
- Click General.
- Under Security, change the encryption algorithm to 3DES and AES.
- Click Apply.
- Click OK.
For BlackBerry Enterprise Server version 5.0
- Login to the BlackBerry Administration Service.
- Expand BlackBerry Solution Topology.
- Expand BlackBerry Domain.
- Expand Component View.
- Expand BlackBerry Enterprise Server.
- Click the appropriate BlackBerry Enterprise Server.
- Click Edit Instance.
- Under Security Information, change the encryption algorithm to 3DES and AES.
- Click Save all.
Additional Information
For more information on changing the encryption algorithm and the impact to BlackBerry smartphone users, see KB13160.
|