Welcome to Port3101.org : Your BES Connection Mark forums read | View Forum Leaders
Port3101.org : Your BES Connection



Reply
LinkBack Thread Tools Display Modes
KB03193 - Configure LDAP for the BlackBerry Enterprise Server
 
  #1 (permalink)  
Old 11-27-2008, 04:49 AM
Si's Avatar
Si Si is offline
Proprietor
 
Join Date: Nov 2008
Location: London, UK
Posts: 1,046
Blog Entries: 6
Default KB03193 - Configure LDAP for the BlackBerry Enterprise Server

KB03193 - Configure LDAP for the BlackBerry Enterprise Server

Environment

  • BlackBerry® Enterprise Server version 3.5 to 5.0
  • Microsoft® Exchange



Overview

The LDAPDomain, LDAPSearch, LDAPport, LDApssl, and LDAPALPSearch registry entries are used to configure the Lightweight Directory Access Protocol (LDAP) for the BlackBerry Enterprise Server. These registry entries allow the BlackBerry Enterprise Server to use LDAP instead of the default Messaging Application Programming Interface (MAPI) for specific functions.
Warning: The following procedure involves modifying the computer registry. This can cause substantial damage to the Windows® operating system. Document and back up the registry entries prior to implementing any changes.


LDAPDomain

The LDAPDomain entry configures the BlackBerry Enterprise Server to use a specific domain when performing LDAP searches.
Note: In an environment with multiple domains, the LDAPDomain key is required.
  1. Open the Registry Editor by clicking Start > Run.
  2. Type regedit and click OK.
  3. Go to the following path in the registry:
    • For BlackBerry Enterprise Server version 4.0 and later HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Agents
    • For BlackBerry Enterprise Server versions 3.5 and 3.6 HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Servers\
  4. Create a new String Value called LDAPDomain and change the entry in the Value data field to the Global Catalog and Port that the BlackBerry Enterprise Server uses. If the BlackBerry Enterprise Server must connect to multiple Global Catalogs for name resolution, specify all of them in this value with their fully qualified domain names (FQDNs) as follows: : : :
  5. Press Enter.

LDAPSearch

The LDAPSearch entry is used for address resolution only.
  1. Go to the following path in the registry:
    • For BlackBerry Enterprise Server version 4.0 and later HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Agents
    • For BlackBerry Enterprise Server versions 3.5 and 3.6 HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Servers\
  2. Create a new DWORD Value called LDAPSearch and change the entry in the Value data field to 1.
  3. Select the Hexadecimal option.
  4. Press Enter.

LDAPport

The LDAPport entry configures the BlackBerry Enterprise Server to use a specific LDAP port for searches.
  1. Go to the following path in the registry:
    • For BlackBerry Enterprise Server version 4.0 and later HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Agents
    • For BlackBerry Enterprise Server versions 3.5 and 3.6 HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Servers\
  2. Create a new DWORD Value called LDAPport and change the entry in the Value data field to the specific LDAP port.
  3. Press Enter.

LDAPssl

The LDAPssl entry enables the use of LDAP over Secure Sockets Layer (SSL) for searches or lookups.
  1. Go to the following path in the registry:
    • For BlackBerry Enterprise Server version 4.0 and later Go to HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Agents
    • BlackBerry Enterprise Server versions 3.5 and 3.6 Go to HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Servers\
  2. Create a new DWORD Value called LDAPssl and change the entry in the Value data field to 1.
  3. Select the Hexadecimal option.
  4. Press Enter.

LDAPALPSearch

The LDAPALPSearch entry is used for address lookups from the BlackBerry smartphone.
Note: This entry only applies to BlackBerry Enterprise Server software version 4.1 and later.
  1. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Research In Motion\BlackBerry Enterprise Server\Agents.
  2. Create a new DWORD Value called LDAPALPSearch and change the entry in the Value data field to 1.
  3. Select the Hexadecimal option.
  4. Press Enter.
The BlackBerry Controller must be restarted before any changes will take effect.
Important: Restarting certain BlackBerry Enterprise Server services will delay email message delivery to BlackBerry smartphones. For more information, see KB04789.

__________________
Si MCTS
Co-Owner
Port3101 - Your BES Connection

Don't forget, you can follow us on Twitter

The views expressed by me on Port3101 and its affiliated sites are my own and do not necessarily reflect the views of my employer.
Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 06-24-2009, 10:59 AM
hdawg's Avatar
Proprietor
 
Join Date: Nov 2008
Posts: 2,257
Blog Entries: 147
Default

updated.
__________________
http://blog.port3101.org/hdawg/
Reply With Quote
  #3 (permalink)  
Old 09-16-2009, 09:18 PM
hdawg's Avatar
Proprietor
 
Join Date: Nov 2008
Posts: 2,257
Blog Entries: 147
Default

updated
__________________
http://blog.port3101.org/hdawg/
Reply With Quote
  #4 (permalink)  
Old 10-19-2009, 01:17 PM
RadHaz75's Avatar
BES Expert
 
Join Date: May 2009
Location: Philadelphia, PA
Posts: 98
Default

All of our users are contained in 2 child domains under our parent domain. We ran into a problem where if LDAP settings were enabled on the BES (which is in Child A), the BES could not resolve users in Child B, even with DC enabled (port 3268).

My problem is we have a Load Balanced VIP in Child A that I need to point to (pointing to the parent domain is not an option for me). Thus I called RIM and they presented me with a key that is not really documented anywhere, "LDAPUseForestRootNamingContext"=dword:00000001. Since there is no way to specify your own SearchDN, enabling this key will force the SearchDN to start from the parent domain (DC=Domain,DC=com) as opposed to the child that it is in (DC=Child,DC=Domain,DC=com).

Just wanted to share this since this caused me a lot of frustration.
__________________
Two months ago, I saw a provocative movie on cable TV. It was called The Net, with that girl from the bus.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
KB02653 - Configure PIN-to-PIN encryption on the BlackBerry Enterprise Server hdawg Featured BlackBerry KB Articles 0 09-20-2009 04:43 PM
KB15773 - Enable the Enterprise-Only message icon in BlackBerry Enterprise Server hdawg Featured BlackBerry KB Articles 1 07-20-2009 08:10 PM
KB10231 - How to enable and configure Enterprise Service Policy hdawg Featured BlackBerry KB Articles 0 07-17-2009 10:29 AM
KB04323 - Configure PIM sync settings on a BlackBerry Enterprise Server for Domino hdawg Featured BlackBerry KB Articles 0 07-06-2009 10:30 PM
KB15825 - Error Connecting to LDAP Server hdawg Featured BlackBerry KB Articles 0 01-22-2009 07:13 PM


All times are GMT -4. The time now is 01:19 PM.
Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2019, vBulletin Solutions, Inc.


 

SEO by vBSEO 3.3.2 PL2