Welcome to Port3101.org : Your BES Connection Mark forums read | View Forum Leaders
Port3101.org : Your BES Connection

Register Blog Members Sponsors Today's Posts
Quick Login:

Port3101.org > BlackBerry Enterprise Solution > Port 3101: The BES Admin Bar & Grill » Policy Rule Question

Follow Us On





Forum Sponsors


Google Advertisements
Reply
LinkBack Thread Tools Display Modes
Policy Rule Question
 
  #1 (permalink)  
Old 08-07-2009, 08:30 AM
d_fisher's Avatar
BES Guru
  
Join Date: Dec 2008
Location: Columbus, OH
Posts: 247
Default Policy Rule Question
My employeer is doing a complete review of the IT policy rules available as we plan our migration to BES 5.0. The last review was done when BES 4.0 was installed. We are trying to remove restrictions unless there is too great a risk associated with the rule. Its a little time consuming reviewing each rule but in the long run everyone (admins, security, and end-users) will is much happier with the end results.

I have a couple rules that I have questions about and having been able to find the answers. Hopefully someone an clue me in.

Quote:
Allow Application Download Services IT policy rule
Description
This rule specifies whether application download service icons appear on a BlackBerry® device when the wireless service provider assigns a service to a BlackBerry device and the appropriate service books are present on the BlackBerry device.

Default value
The default value is True.

Usage
Change this rule to False to hide all application download service icons.
What are these application download service icons and service books? Are these the home screen icons for TeleNav that prompt for download and install?

Quote:
Minimum Encryption Key Length IT policy rule
Description
This rule specifies the minimum encryption key length (in bytes) that a BlackBerry® device uses to encrypt Bluetooth® connections. The permitted range is 1 through 16 bytes.

Default value
The default value is 1 byte.
Would increasing the encryption key length have any effect on the end-user? Or is this something that is completely transparent to them?


Thats it for now. We are only half way thru our review so I might have a few more rules I need clarification on. Thanks to everyone for taking the time to comment.

Doug
Last edited by d_fisher; 08-07-2009 at 08:32 AM.
Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 08-07-2009, 09:36 PM
Otto's Avatar
Proprietor
  
Join Date: Nov 2008
Location: Atlanta, GA
Posts: 2,032
Blog Entries: 14
Default
With regards to the first one, it is the browser icons pushed to the device from carriers (such as AT&T's 10 million icons). The policy rids you of most of them, but not all of them.

The latter option should be transparent to the user, although some BT devices may not be compatible (doubtful but possible).
__________________
BCSA (4.1, 5.0) | BCSD (4.1, 5.0)

The views expressed by me on Port3101.org are my own and do not necessarily reflect the views of my employer.
Reply With Quote
  #3 (permalink)  
Old 08-08-2009, 07:08 AM
Sith_Apprentice's Avatar
Super Moderator
  
Join Date: Dec 2008
Posts: 1,056
Default
I have blocked the first, and notice exactly what Otto has said. The ones that have RIM software branding stay, while AT&T's crap is removed.

The second I have set to 16, but since all bluetooth devices are blocked sans the CAC readers, I could not tell you how it restricts other devices.
__________________
Reply With Quote
  #4 (permalink)  
Old 08-08-2009, 10:38 AM
Otto's Avatar
Proprietor
  
Join Date: Nov 2008
Location: Atlanta, GA
Posts: 2,032
Blog Entries: 14
Default
Quote:
Originally Posted by Sith_Apprentice View Post
CAC readers
*giggles like a little schoolgirl*
__________________
BCSA (4.1, 5.0) | BCSD (4.1, 5.0)

The views expressed by me on Port3101.org are my own and do not necessarily reflect the views of my employer.
Reply With Quote
  #5 (permalink)  
Old 08-08-2009, 11:17 AM
d_fisher's Avatar
BES Guru
  
Join Date: Dec 2008
Location: Columbus, OH
Posts: 247
Default
Thanks guys!
Reply With Quote
  #6 (permalink)  
Old 08-10-2009, 11:36 AM
BES Administrator
  
Join Date: Jan 2009
Location: Chicago
Posts: 44
Default
I have also heard that enabling/upping the Bluetooth encryption can slow down BT devices, but have no direct experience of this.
Reply With Quote
  #7 (permalink)  
Old 08-10-2009, 03:19 PM
AUTiger92's Avatar
BES Expert
  
Join Date: Jan 2009
Location: Alabama
Posts: 82
Default
Quote:
Originally Posted by Sith_Apprentice View Post
I have blocked the first, and notice exactly what Otto has said. The ones that have RIM software branding stay, while AT&T's crap is removed.

The second I have set to 16, but since all bluetooth devices are blocked sans the CAC readers, I could not tell you how it restricts other devices.
Quote:
Originally Posted by Otto View Post
*giggles like a little schoolgirl*

Sith, pay no attention to Otto. He's just jealous that he doesn't get to support the truly wonderful CAC readers (AKA Smart Card Readers, or Bluetooth devices from Hell).
__________________
AUTIGER92
Exchange\Blackberry Admin
4 - BES Servers (4.1.6), 3 Exchange Organizations,
~1800 BB Users, and a headache.
War Eagle!!
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -4. The time now is 11:51 AM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2012, vBulletin Solutions, Inc.

Contact Us - Port3101.org - Archive - Top

Register FAQ Members
 
Copyright ©2008 - 2009, Port3101.org. All Rights Reserved.

vBulletin skin created by CompletevB.com


SEO by vBSEO 3.3.2 PL2