BlackBerry Enterprise Server Express for Microsoft Exchange Feature and Technical Overview

BlackBerry Enterprise Server Express for Microsoft Exchange Feature and Technical Overview

Feature and Technical Overview

BlackBerry Enterprise Server components and features

BlackBerry Enterprise Server components and features

3

BlackBerry Administration Service

The BlackBerry® Administration Service is a web application you use to manage user accounts; assign user groups, administrative roles, and software configurations and apply IT policies to user accounts; and manage servers and component instances in a BlackBerry Domain. You can open the BlackBerry Administration Service in a browser on any computer that can access the computer that hosts the BlackBerry Administration Service. You can share administrative duties with multiple administrators who can access the BlackBerry Administration Service simultaneously using unique user names and passwords. When Microsoft® ActiveX® controls are turned on in your browser, you can connect BlackBerry devices to your computers and manage the BlackBerry devices while you are logged in to the BlackBerry Administration Service.

Feature

ability to assign users to multiple groups custom server and component names using friendly names

BlackBerry Administration Service authentication or external authentication options for viewing the BlackBerry

Domain

Description

Groups permit you to share administrative roles, IT policies, and other configuration settings among similar user accounts so that properties can be set once instead of for every user. You can assign a user account to more than one group so that the user inherits the properties of every group that the user belongs to. You can also assign groups to other groups to share the properties of the parent group with all of the user accounts in the child groups.

To help you identify servers and component instances, you can define a friendly name for each BlackBerry Enterprise Server Express and component instance that displays in the BlackBerry Administration Service. Each regional language that the BlackBerry Administration Service supports can have unique friendly names.

Administrators that log in to the BlackBerry Administration Service must provide their user names and passwords. A user name and a password is a unique combination that is stored securely in the BlackBerry Configuration

Database and known only to the BlackBerry Administration Service.

Alternatively, you can use external authentication, which permits administrators to log in to the BlackBerry Administration Service using the same information that administrators use to access your organization's messaging server.

You can find and manage BlackBerry Enterprise Server Express component instances using the server view or component view.

19

Feature and Technical Overview

BlackBerry Configuration Panel

BlackBerry Configuration Panel

The BlackBerry® Configuration Panel displays data that the setup application collected during the installation process.

You can use the BlackBerry Configuration Panel to view or change the following settings:

• Database connection and authentication

• Wi-Fi® SRP information

• Settings for activating BlackBerry devices over your organization's Wi-Fi network

• Certificate keystore information

• BlackBerry Router settings

• Log settings for the BlackBerry Router and BlackBerry Controller

BlackBerry Mail Store Service

The BlackBerry® Mail Store Service connects to the messaging servers in your organization's environment and retrieves the contact information that the BlackBerry Administration Service requires to search for user accounts on the messaging servers.

The BlackBerry Mail Store Service performs the following actions:

• synchronizes your organization's contact list to the BlackBerry Configuration Database

• updates the contact list in the BlackBerry Configuration Database every 24 hours automatically

• permits the BlackBerry Administration Service to access user account information that is stored in the mailbox or mail file on the messaging servers

• exposes an API that the BlackBerry Administration Service can use to connect to the BlackBerry Mail Store Service

• searches for contact information on behalf of the BlackBerry Administration Service

You install a BlackBerry Mail Store Service when you install a BlackBerry® Enterprise Server Express. The BlackBerry

Mail Store Service connects to the messaging server using the same connection information that the BlackBerry

Enterprise Server Express uses. The BlackBerry Administration Service is designed to communicate with the

BlackBerry Mail Store Service using RPC.

Database tables in the BlackBerry Configuration Database that store contact information

The BlackBerry® Mail Store Service synchronizes contact information to two database tables in the BlackBerry

Configuration Database.

Table name

MsDomains

MsAddresses

Description

This table contains a list of domains and messaging servers that are located in your organization's environment.

This table contains a list of the email addresses that are included in your organization's contact list.

20

Feature and Technical Overview

BlackBerry Mail Store Service

Contact information that the BlackBerry Mail Store Service stores in the

BlackBerry Configuration Database

The BlackBerry® Mail Store Service synchronizes contact information that is stored in the messaging environment to the BlackBerry Configuration Database. To compare the contact information changes that occurred between synchronization processes, the BlackBerry Mail Store Service maintains two copies of the contact information.

The BlackBerry Mail Store Service synchronizes contact information that is stored in the messaging environment to the BlackBerry Configuration Database. The contact information is stored in database properties in the BlackBerry

Configuration Database.

Contact information

address type display name email address mailbox path messaging server path

Database property name Description

Type

DisplayName

MailboxSMTP

MailboxKey

ServerName

This property specifies whether this is the address for a user or distribution list.

This property specifies the display name for the user account.

This property specifies the email address for the user account.

This property specifies the unique mailbox path.

This property specifies the path to the messaging server.

How the BlackBerry Mail Store Service accesses contact information that is stored on the messaging server

In a Microsoft® Exchange environment, the BlackBerry® Mail Store Service can connect to the messaging server and search for contact information using MAPI or LDAP. By default, the BlackBerry Mail Store Service uses MAPI to search for contact information. If you configure the BlackBerry® Enterprise Server Express to use LDAP to search for contact information, the BlackBerry Mail Store Service can also use LDAP to search for contact information.

For more information about how the BlackBerry Enterprise Server Express uses LDAP, visit www.blackberry.com/ support to read article KB05174.

Configuring the BlackBerry Mail Store Service instance that updates the contact list

The BlackBerry® Configuration Database contains your organization's contact list and a list of BlackBerry® Enterprise

Server Express instances. By default, the BlackBerry Mail Store Service instance that you installed with the first

BlackBerry Enterprise Server Express instance that appears in the list updates the contact list. If you prevent the

BlackBerry Mail Store Service that you installed with the first BlackBerry Enterprise Server Express instance from updating the contact list, the next available BlackBerry Mail Store Service instance in the list updates the contact list.

21

Feature and Technical Overview

BlackBerry messaging and collaboration services

By default, if you install multiple BlackBerry Mail Store Service instances, each instance can update the contact list in the BlackBerry Configuration Database. The first BlackBerry Mail Store Service instance that updates the contact list prevents the other instances from also updating the contact list. Each BlackBerry Mail Store Service instance searches for time stamp information in the BlackBerry Configuration Database to determine if another BlackBerry

Mail Store Service instance is updating the contact list already before it starts to update the contact list.

You must verify that at least one BlackBerry Mail Store Service instance can update the contact list in the BlackBerry

Configuration Database so that the BlackBerry Administration Service can access the latest contact list information when you create and manage user accounts. If you prevent all of the BlackBerry Mail Store Service instances from updating the contact list, the BlackBerry Configuration Database might not contain the contact information for all user accounts on your organization's messaging server.

If the BlackBerry Configuration Database does not contain contact information for a user account, you cannot create the user account by searching for the contact information in the BlackBerry Administration Service. You can only create the user account if you use the Add from company directory option in the BlackBerry Administration Service.

The Add from company directory option permits the BlackBerry Mail Store Service to search the contact information that is stored in the messaging environment so that you can create the user account even if the BlackBerry

Configuration Database does not contain the contact information for the user account.

BlackBerry messaging and collaboration services

The BlackBerry® messaging and collaboration services provide a wireless extension of your organization's messaging environment. These services include the BlackBerry Messaging Agent, the BlackBerry Synchronization Service, and the BlackBerry Attachment Service.

BlackBerry Messaging Agent

The BlackBerry® Messaging Agent connects to your organization's messaging server and provides messaging services, calendar management, address lookups, attachment viewing, attachment downloading, and encryption key generation. The BlackBerry Messaging Agent acts as a gateway for the BlackBerry Synchronization Service to access organizer data on the messaging server. The BlackBerry Messaging Agent synchronizes configuration data between the BlackBerry Configuration Database and user mailboxes.

The BlackBerry Messaging Agent integrates with existing email accounts in your organization. The BlackBerry

Messaging Agent redirects messages from users’ email applications to their BlackBerry devices automatically. If users configure identical signatures on their BlackBerry devices and in their email accounts, recipients cannot distinguish between messages that users send from BlackBerry devices and messages that they send from email applications.

When users move or delete messages or mark messages as read or unread on their BlackBerry devices or in their email applications, the BlackBerry Messaging Agent reconciles changes over the wireless network between

BlackBerry devices and email applications. By default, BlackBerry devices and the BlackBerry® Enterprise Server

Express reconcile email messages over the wireless network.

Wireless messaging features

BlackBerry® device users can use many of the same messaging features that are available in the email applications on their computers.

22

Feature and Technical Overview

BlackBerry messaging and collaboration services

Feature

email reconciliation email message filters message forwarding signature out-of-office reply contact lookup contact list updates custom fields in the contact list attachments

Description

The BlackBerry® Enterprise Server Express reconciles the status of messages between users' BlackBerry devices and their email applications. If users delete, archive, or move messages to personal folders in their email applications, the messages are deleted from the message list on the users'

BlackBerry devices. If users mark messages as read or unread in their email applications, the messages appear with the same status on their BlackBerry devices.

You can turn off wireless email reconciliation.

You or users can create and change email message filters. Email message filters determine the actions that the BlackBerry Enterprise Server Express takes if incoming messages match specific criteria: forward, forward with priority, or do not forward to BlackBerry devices. For example, users can create email message filters to forward messages from specific senders to their BlackBerry devices with high priority.

Users can turn off message forwarding to their BlackBerry devices (for example, if users are outside of a wireless coverage area). You can also turn off message forwarding to users' BlackBerry devices.

Users can add a signature to all messages that they send from their

BlackBerry devices. You can add a signature and disclaimers to all messages that the members of a user group send or a specific user sends.

Users can set and change their out-of-office replies using their BlackBerry devices.

Users can search for a contact’s first name, last name, or both in their organization's directory. The BlackBerry Enterprise Server Express returns results for a maximum of 20 of the closest matches.

When users select contacts from the contact lookup results, they can add the contacts to the contact lists on their BlackBerry devices.

If your organization maintains custom fields in users’ personal contact lists, you can map these fields to corresponding fields that appear in the contact list on BlackBerry devices. Users can use these custom fields to search for contacts on their BlackBerry devices.

Users can send messages that contain attachments from their BlackBerry devices. The BlackBerry Attachment Service does not convert these messages; the BlackBerry Messaging Agent processes them only.

Attachments must meet the following requirements:

• If a user sends one attachment in a message, the file size of the attachment cannot exceed 3 MB.

• If a user sends multiple attachments in a message, the total file size of the attachments cannot exceed 5 MB.

23

Feature and Technical Overview

Feature

downloading attachments save sent messages personal distribution lists public folders

BlackBerry messaging and collaboration services

Description

• If an attachment exceeds 64 KB, the BlackBerry device sends the attachment in multiple data packets.

Users can send messages with attachments only from supported BlackBerry devices that are running BlackBerry® Device Software version 4.2 or later.

If you want to manage the system resources that the BlackBerry Messaging

Agent uses to upload and send attachments, you can limit the file size of attachments or prevent users from attaching files to messages. For example, if too many users are sending large attachments, such as pictures or videos, you might want to limit the file size of supported attachments or turn off support for message attachments.

Users with BlackBerry devices that are running BlackBerry Device Software version 4.5 or later can download attachments and store them on their

BlackBerry devices. Users can open and make changes to the downloaded attachments using an appropriate third-party application on their

BlackBerry devices. Users can open supported attachment file formats using the media application on their BlackBerry devices.

To manage network resources in your organization's environment, you can change the maximum file size of attachments that users can download to their BlackBerry devices.

Users can configure their BlackBerry devices to save copies of messages that they send from their BlackBerry devices in the sent items folder in their email applications.

Users with BlackBerry Device Software version 5.0 or later can view personal distribution lists in their contact lists. Users can send messages to the personal distribution lists and delete personal distribution lists from their

BlackBerry devices.

Users with BlackBerry Device Software version 5.0 or later can view and use contacts in public folders from their BlackBerry devices, and copy the contacts to their contact lists. Users can only view the public folders that they have the appropriate permissions for.

Users can specify which public folders they want to synchronize to their

BlackBerry devices using the BlackBerry® Desktop Manager or BlackBerry®

Web Desktop Manager. You can limit the number of public folders that users can synchronize to their BlackBerry devices.

Users with BlackBerry devices that are running BlackBerry Device Software version 5.0 or later can add, delete, move, and rename personal folders from their BlackBerry devices.

Users with BlackBerry devices that are running BlackBerry Device Software version 5.0 or later can flag messages from their BlackBerry devices and set reminder times.

24 personal folders follow up flag

Feature and Technical Overview

BlackBerry messaging and collaboration services

Feature

personal contact subfolders

Description

Users with BlackBerry devices that are running BlackBerry Device Software version 5.0 or later can view personal contact subfolders on their BlackBerry devices and change contact information.

Users can specify which contact subfolders that they want to synchronize to their BlackBerry devices using BlackBerry Desktop Manager or BlackBerry

Web Desktop Manager. You can limit the number of contact subfolders that a user can synchronize to their BlackBerry devices.

forwarding calendar entries Users with BlackBerry devices that are running BlackBerry Device Software version 5.0 or later can forward meeting invitations and calendar entries from their BlackBerry devices.

availability of meeting participants Users with BlackBerry devices that are running BlackBerry Device Software version 4.5 or later can view the availability of meeting invitees on their

BlackBerry devices. You can turn off this feature using the BlackBerry

Administration Service.

remote search for email messages Users with BlackBerry devices that are running BlackBerry Device Software version 4.5 or later can search for email messages that are located on the messaging server from their BlackBerry devices. You can turn off this feature using the BlackBerry Administration Service.

rich content email messages Users with BlackBerry devices that are running BlackBerry Device Software version 4.5 or later can view HTML and rich content email messages. You can turn off this feature using the BlackBerry Administration Service.

Access to documents on a network from BlackBerry devices

Users with BlackBerry® devices that are running BlackBerry® Device Software version 5.0 or later can use a file browser on their BlackBerry devices to access documents that are located in a shared location such as a network drive. Users can view document information such as the file name, file type, file size, author, and date the file was last changed.

Users must have access to the shared location using their network credentials, or you must configure the BlackBerry®

Enterprise Server Express to access the documents for the users.

Users can send the documents as attachments in messages, view supported document types using the attachment viewer, download copies of the documents, or open and make changes to the documents using an appropriate thirdparty application on their BlackBerry devices. They can also add attachments from messages or documents that they access using the BlackBerry® Browser to the network drive.

BlackBerry Synchronization Service

The BlackBerry® Synchronization Service synchronizes organizer data such as tasks, memos, and contacts over the wireless network so that the entries on BlackBerry devices are consistent with the entries in the email applications.

With wireless data synchronization and wireless email reconciliation, users are not required to connect their

BlackBerry devices to the BlackBerry® Desktop Software to synchronize organizer data and reconcile email messages.

25

Feature and Technical Overview

BlackBerry messaging and collaboration services

The BlackBerry Synchronization Service backs up user settings and data over the wireless network from BlackBerry devices to the BlackBerry Configuration Database. You can restore the user settings and data to BlackBerry devices when the BlackBerry devices are activated over the wireless network. By default, the BlackBerry® Enterprise Server

Express automatically backs up the user settings and data over the wireless network.

Synchronization features

You can change the settings for synchronization features so that users can manage the user experience and system resources in your organization's environment.

Feature

initial synchronization

Description

When the BlackBerry® Enterprise Server Express sends service books to

BlackBerry devices to turn on wireless data synchronization, an initial data synchronization process starts. The process synchronizes the data for calendar items and messages between users' BlackBerry devices and the email applications on their computers. It also resolves conflicting or duplicate entries to prevent data loss.

synchronization settings

By default, the calendar on the BlackBerry device synchronizes up to 31 days in the past from the activation date, and up to 28 years into the future from the activation date.

You can configure settings for wireless data synchronization that apply to specific users, user groups, or all users on all BlackBerry Enterprise Server

Express instances. You can define which organizer data items the BlackBerry

Synchronization Service synchronizes, how data conflicts are resolved, and whether changes are synchronized in both directions or in one direction only between BlackBerry devices and email applications. You can use IT policies to configure the settings for wireless data synchronization.

support for different types of user access

The BlackBerry Enterprise Server Express requires access to the organizer application databases for all users. You can define the location of the database replicas in each user’s profile, create roaming user profiles, or use web access templates in your organization's messaging environment.

synchronization of contact pictures The BlackBerry Synchronization Service synchronizes contact pictures between users’ BlackBerry devices and the email applications on their computers. If users use their BlackBerry devices to add, change, or delete contact pictures, the contact lists in their email applications reflect the changes.

The BlackBerry Synchronization Service cannot synchronize contact pictures that exceed 32 KB.

26

Feature and Technical Overview

BlackBerry messaging and collaboration services

BlackBerry Attachment Service

The BlackBerry® Attachment Service converts supported message attachments into a format that users can view on their BlackBerry devices. The BlackBerry Attachment Service processes attachments and converts them into a binary format that retains most of the layout, appearance, and navigation of the original attachments. You do not have to install the applications that are associated with the attachment formats on BlackBerry devices. The attachment viewer installs automatically with the BlackBerry® Device Software.

The BlackBerry Attachment Service receives attachments that are embedded in messages from the messaging server, through the BlackBerry Messaging Agent. The BlackBerry Attachment Service also receives attachments that are accessed through links in the BlackBerry® Browser.

The BlackBerry Attachment Service enables users to play supported audio attachments on supported BlackBerry devices that are running BlackBerry Device Software version 4.2 or later. The BlackBerry Attachment Service can convert .wav files into an audio format that a BlackBerry device series supports (for example, .mp3 files on BlackBerry®

8700 Series devices).

If the BlackBerry Attachment Service is hosted on a computer that uses Windows Server® 2008, the BlackBerry

Attachment Service does not support .mp3 audio files on BlackBerry devices, and the BlackBerry Attachment Service does not support any audio file formats on BlackBerry® 7100 Series devices that support CDMA networks. You must host the BlackBerry Attachment Service on a computer that uses Windows Server 2003 if you want the BlackBerry

Attachment Service to support .mp3 audio files on BlackBerry devices and all audio formats on BlackBerry 7100 Series devices that support CDMA networks.

Attachment file formats that the BlackBerry Attachment Service supports

Format

Adobe® Acrobat®

ASCII text audio

Corel® WordPerfect® 7-10

HTML images

Microsoft® Excel® 97-2003, 2007, and XP

Microsoft® PowerPoint® 97-2003, 2007, and XP

Microsoft® Word 97-2003, 2007, and XP

OpenOffice Format version 1.1

RTF

ZIP archives

Extension

.pdf

.txt

.amr, .mp3, .wav, .wma

.wpd

.htm, .html

.bmp, .gif, .jpeg, .jpg, .png, .ppm, .tif

, .tiff, .wmf

.xls, .xlsx

.pps, .ppsx, .ppt, .pptx

.doc, .dot, .dotx, .docx

.odp, .ods, .odt, .ott

.rtf

.zip

27

Feature and Technical Overview

BlackBerry MDS Connection Service

BlackBerry MDS Connection Service

The BlackBerry® MDS Connection Service connects wireless applications on BlackBerry devices to the applications on an organization’s application servers or web servers. After a wireless application is installed on BlackBerry devices, the application can receive data from push applications that are located on application servers or web servers. The application can also receive data by sending pull requests from BlackBerry devices to applications that are located on application servers or web servers. The BlackBerry MDS Connection Service processes push and pull requests and delivers data and updates to BlackBerry Applications.

The BlackBerry MDS Connection Service also receives and responds to web requests from the BlackBerry® Browser and other BlackBerry Applications, so that users can view Internet and intranet content on their BlackBerry devices.

Feature

protocol connections encrypted communications data conversion data optimization authentication methods integration with proxy servers

Description

You can define connections to the web servers on your organization’s intranet or the Internet using standard Internet protocols such as HTTP,

HTTPS, and TCP/IP.

The BlackBerry MDS Connection Service encrypts content using the same standard BlackBerry encryption that the BlackBerry Dispatcher uses to encrypt messages and other data.

The BlackBerry MDS Connection Service converts data from application servers and web servers to a format that BlackBerry Applications can interpret and display.

The BlackBerry MDS Connection Service processes content that users can view in the BlackBerry Browser. For example, the BlackBerry MDS

Connection Service can change the data format or remove extraneous data to reduce network traffic.

You can configure authentication requirements that match your organization's sign-on scheme using standard methods such as NTLM,

Kerberos™, and LTPA. You can also define a period of time after which the

BlackBerry MDS Connection Service requests user information and caches cookies.

You can use two-factor authentication to create VPN connections between wireless applications on BlackBerry devices and your organization’s application servers and web servers.

You can provide access to specific content through your organization's proxy servers using the following items:

• proxy exclusion list, which defines the organization-specific URLs that the BlackBerry MDS Connection Service uses to connect directly to external web services instead of routing the connections through your organization's proxy server

• proxy auto-configuration (.pac) file

28

Feature and Technical Overview

BlackBerry Applications

Feature

access control media content management

Description

You can configure push initiators and push rules that define which serverside push applications can send application data and updates to BlackBerry devices, and which users can receive push requests. You can configure pull rules to specify which web servers users can access using the BlackBerry

Browser and other applications on BlackBerry devices.

You can control which media files users can receive and access using the

BlackBerry Browser and BlackBerry Applications. You can prevent users from receiving specific media types (for example, video files) or specific subtypes of media (for example, .mp3 files). You can also configure size limits for media files that users can receive on their BlackBerry devices.

BlackBerry Applications

BlackBerry® devices support BlackBerry Java® Applications and BlackBerry® Browser Applications. Application developers in your organization can create BlackBerry Applications using BlackBerry development tools or third-party development tools. You can install and manage BlackBerry Java Applications on BlackBerry devices using the

BlackBerry Administration Service.

For more information about the options for developing BlackBerry Applications, visit www.blackberry.com/ developers .

BlackBerry Browser Applications

BlackBerry® Browser Applications are simplified, web-based applications that you can use to push web content to the BlackBerry Browser on BlackBerry devices. Developers can create BlackBerry Browser Applications using

BlackBerry templates or standard web development tools.

The BlackBerry® Enterprise Server Express supports the following types of BlackBerry Browser Applications.

Type Description

browser channel push applications An icon displays on the Home screens of users' BlackBerry devices to indicate whether users viewed the latest version of the web content that the Browser Push Engine has pushed to their BlackBerry devices.

browser cache push applications The Browser Push Engine pushes web content to the cache of the BlackBerry

Browser on users' BlackBerry devices. To view the web content, users browse to the appropriate web address using the BlackBerry Browser.

browser message push applications A message appears in the message list on users' BlackBerry devices to provide a link to new or updated web content.

For more information about developing BlackBerry Browser Applications and sending BlackBerry Browser

Applications to BlackBerry devices, visit www.blackberry.com/developers .

29

Feature and Technical Overview

Managing BlackBerry Java Applications and BlackBerry Device Software

BlackBerry Java Applications

BlackBerry® Java® Applications can range from simple applications, such as a game on BlackBerry devices, to complex applications with advanced UIs and various options for data management, storage, and network communication.

BlackBerry Java Applications can use a client-only architecture (the applications do not send data to or receive data from a content server) or they can use a client/server application model (the applications send data to and receive data from a content server). For example, a developer can create a BlackBerry Java Application so that users can send data to and receive data from a central sales database.

Developers can create BlackBerry Java Applications using BlackBerry developer tools or other Java authoring tools.

BlackBerry devices run BlackBerry Java Applications using BlackBerry APIs and Java ME, which are standard on

BlackBerry devices.

For more information about developing and customizing BlackBerry Applications, visit www.blackberry.com/ developers .

Managing BlackBerry Java Applications and BlackBerry

Device Software

You can use the BlackBerry® Administration Service to install and manage the BlackBerry® Device Software and

BlackBerry Java® Applications on BlackBerry devices.

To send BlackBerry Java Applications to devices, you must first add the applications to the application repository.

You can use the application repository to store and manage all versions of the BlackBerry Java Applications that you want to install on, update on, or remove from devices.

In the BlackBerry Administration Service, you create software configurations to specify the versions of the BlackBerry

Device Software and BlackBerry Java Applications that you want to install on, update on, or remove from devices.

You also use software configurations to specify which applications are required, optional, or not permitted. When you create a software configuration, you must also specify whether users can install applications that are not listed in the software configuration.

When you add a BlackBerry Java Application to a software configuration, you must assign an application control policy to the application to specify what resources the application can access. You can use default application control policies or you can create and use custom application control policies. If you permit users to install unlisted applications, you must create an application control policy for unlisted applications that specifies what resources the applications can access.

When you assign a software configuration to a group or individual user accounts, the BlackBerry Administration

Service creates a deployment job to install the BlackBerry Device Software and BlackBerry Java Applications on devices and to apply access control policies to the devices. A deployment job consists of a number of tasks. Each task manages the delivery of a specific object (for example, a BlackBerry Java Application or an access control policy) by communicating with the appropriate BlackBerry® Enterprise Server Express components.

30

Feature and Technical Overview

BlackBerry device management

If you assign more than one software configuration to a user account, all of the settings in the multiple software configurations are applied to the user's device. The BlackBerry Enterprise Server Express resolves conflicting settings using predefined reconciliation rules and prioritized rankings that you can specify using the BlackBerry Administration

Service. After you install the BlackBerry Device Software and BlackBerry Java Applications on devices, you can view details about how the BlackBerry Administration Service resolved software configuration conflicts.

For more information about installing and managing the BlackBerry Device Software on devices, visit www.blackberry.com/go/serverdocs to see the BlackBerry Device Software Update Guide.

BlackBerry device management

You can use the BlackBerry® Enterprise Server Express to control how you implement, maintain, and upgrade

BlackBerry devices across your organization.

Controlling third-party applications on BlackBerry devices

Feature

control the installation and removal of third-party applications control the resources that thirdparty applications can access

Description

You can use the BlackBerry® Administration Service to install applications on BlackBerry devices over the wireless network, or you can permit users to download and install third-party applications on their BlackBerry devices.

You can remove applications from BlackBerry devices over the wireless network, and you can also prevent users from downloading applications.

You can use standard application control policies or create custom application control policies to specify the resources that third-party applications can access on BlackBerry devices (for example, message, phone, and key store).

You can create IT policies that specify the types of connections that thirdparty applications on BlackBerry devices can establish (for example, opening network connections inside the firewall).

BlackBerry Policy Service

The BlackBerry® Policy Service sends IT policies and IT administration commands to BlackBerry devices and provisions service books over the wireless network. When you activate a BlackBerry device, change an IT policy, or request that a BlackBerry® Enterprise Server Express resend service books, the BlackBerry Enterprise Server Express uses the

BlackBerry Policy Service to send the updates to the BlackBerry device.

An IT policy consists of rules that define BlackBerry device security, settings for synchronizing data over the wireless network, and other behaviors for the individual groups or user accounts that you define. You can configure IT policies using the BlackBerry Administration Service.

31

Feature and Technical Overview

BlackBerry Router

Feature

wireless delivery

IT policy coverage

IT policy assignment resend options security enforcement

Description

When you configure an IT policy, all rules take effect when the BlackBerry

Policy Service delivers the IT policy to a BlackBerry device over the wireless network. The BlackBerry device stores new IT policy rule values in the user configurations on the BlackBerry device automatically.

To keep the IT policy rules current, a BlackBerry Enterprise Server Express sends the IT policy to the BlackBerry device over the wireless network periodically.

When you add a user account to a BlackBerry Enterprise Server Express, the BlackBerry Policy Service applies the Default IT policy to the user account automatically. The user account is not active on the BlackBerry

Enterprise Server Express until a BlackBerry device accepts the IT policy.

You can apply a different IT policy to a user account. If you delete an IT policy that you applied to a user account, the BlackBerry Policy Service applies the user account to the Default IT policy automatically.

You can apply an IT policy to a group or an individual user account.

If a BlackBerry Enterprise Server Express cannot send an updated IT policy to a BlackBerry device immediately (for example, if a user is outside of a wireless coverage area), you can resend the IT policy manually or configure when the BlackBerry Policy Service resends the IT policy. The

BlackBerry Enterprise Server Express continues to resend the IT policy until it delivers the IT policy.

You can configure IT polices that define security settings for BlackBerry devices, the BlackBerry® Desktop Software and the BlackBerry® Web

Desktop Manager, and that override security settings that users define on their BlackBerry devices. For example, you can configure whether a password is required for a BlackBerry device, the length of time that the password can exist before it becomes invalid, and the length and composition of the password. You can also use IT policies to specify encryption key details.

BlackBerry Router

The BlackBerry® Router connects to the wireless network and sends data to and receives data from the BlackBerry®

Infrastructure on behalf of the BlackBerry® Enterprise Server Express. The BlackBerry Router also sends data to and receives data from BlackBerry devices that are connected to the BlackBerry® Device Manager or a Wi-Fi® network.

The BlackBerry Device Manager is included with the BlackBerry® Device Software, BlackBerry® Web Desktop

Manager, and BlackBerry Administration Service.

32

Feature and Technical Overview

BlackBerry Web Desktop Manager

When the BlackBerry Enterprise Server Express detects a BlackBerry Router, it identifies the IP address of the computer that hosts the BlackBerry Router and writes the IP address to the BlackBerry Configuration Database. When

BlackBerry device users activate devices that are running BlackBerry Device Software 4.0 or later, the BlackBerry

Router sends the IP address to the devices in a service book.

If you change the IP address of the computer that hosts the BlackBerry Router, devices detect the change automatically. Users do not need to reconnect devices to the BlackBerry Device Manager to receive the new IP address and a new service book. However, a delay occurs before devices detect the change. During the delay, devices cannot connect to the BlackBerry Device Manager or a Wi-Fi network.

The BlackBerry Router supports the use of multiple network cards on users’ computers, which is also known as multihoming.

BlackBerry Web Desktop Manager

The BlackBerry® Web Desktop Manager is a web application that provides many of the same features that the

BlackBerry® Desktop Manager does. Users can connect their BlackBerry devices to their computers using a USB connection or Bluetooth® connection, and log in to BlackBerry Web Desktop Manager to activate and manage their

BlackBerry devices, back up and restore data, define email settings, and update the BlackBerry® Device Software.

Feature

access application management

BlackBerry Device Software management control user's access to features

Description

Users can access device management and configuration capabilities from any computer that can access the intranet.

Users can use the BlackBerry Web Desktop Manager to install, manage, and remove the applications that are installed on their BlackBerry devices.

Users can use the BlackBerry Web Desktop Manager to update the

BlackBerry Device Software on their BlackBerry devices.

You can specify the BlackBerry Web Desktop Manager features that users can access using IT policies and settings in the BlackBerry Administration

Service.

33

Feature and Technical Overview

BlackBerry Web Desktop Manager

Feature Description

customizable interface device activation switch devices folder redirection

You can customize the appearance of the UI to match your organization's requirements. You can customize the font colors, logo, and the help.

Users can use the BlackBerry Web Desktop Manager to set activation passwords and activate their BlackBerry devices.

Users can use the BlackBerry Web Desktop Manager to switch BlackBerry devices, and migrate from third-party devices that have BlackBerry®

Application Suite installed, to BlackBerry devices.

Users can use the BlackBerry Web Desktop Manager to select the folders that the BlackBerry® Enterprise Server Express redirects messages from.

language support The BlackBerry Web Desktop Manager is available in English, French,

German, Italian, Spanish, and Japanese. Users can select a language before they log in to the BlackBerry Web Desktop Manager.

simplified administration service statistics

The web UI does not require you to deploy, support, and maintain clientside software such as the BlackBerry Desktop Manager.

The BlackBerry Web Desktop Manager provides users with statistics about the message status (forwarded, sent, pending, expired, filtered), last contact time, and information about the last message sent or received.

synchronization of contact folders Users can use the BlackBerry Web Desktop Manager to select the public or private contact folders that they want to synchronize to their BlackBerry devices over the wireless network.

Comparison of BlackBerry Web Desktop Manager and BlackBerry Desktop

Software features

Supported feature

ability to view the BlackBerry®

Desktop Software that is installed on the users' computers application loader tool

BlackBerry Web Desktop Manager BlackBerry Desktop Software

supported supported

BlackBerry® Desktop Redirector supported with the following conditions:

• option to choose not to save the backup file

• BlackBerry services are not maintained if the users disconnect their BlackBerry devices before completing the process not included supported with the following conditions:

• no option to choose whether to save the backup file

• BlackBerry services are maintained if the users disconnect their BlackBerry devices before clicking the

Close button in the Load was successful dialog box included

34

Feature and Technical Overview

BlackBerry Web Desktop Manager

Supported feature

BlackBerry® Device Software updates device activation

BlackBerry Web Desktop Manager BlackBerry Desktop Software

supported with the following conditions:

• you install the software on a shared network drive

• BlackBerry® Web Desktop

Manager forces users to update the BlackBerry® Device

Software when a software configuration is assigned to the user accounts certificate synchronization not supported changing the email profile options not supported connections to BlackBerry devices supported with the following conditions:

• users can connect to multiple

BlackBerry devices at the same time

• BlackBerry Web Desktop

Manager does not prompt users if they want to switch from using a Bluetooth® connection to using a USB connection supported with the following conditions:

• occurs automatically for new users

• if users without active

BlackBerry devices connect

BlackBerry devices that belong to other users, the BlackBerry

Web Desktop Manager prompts the users who connected the BlackBerry devices if they want to switch to the BlackBerry devices supported with the following conditions:

• users install the software on their computers and run the application loader tool

• BlackBerry Desktop Manager notifies the users when a newer version of BlackBerry Device

Software is available on their computers supported supported supported with the following conditions:

• users can connect to only one

BlackBerry device at a time

• BlackBerry Desktop Software prompts users if they want to switch from using a Bluetooth connection to using a USB connection supported with the following conditions:

• occurs automatically each time users plug in a BlackBerry device

• if users without active

BlackBerry devices connect

BlackBerry devices that belong to other users, the BlackBerry

Desktop Software notifies the users who connected the

BlackBerry devices that an activation process is underway by asking the users whether an encryption key should be created

35

Feature and Technical Overview

36

Supported feature

switching devices email message settings media management modem support for devices prompt for BlackBerry device password statistics for user accounts supported BlackBerry Device

Software versions

BlackBerry Web Desktop Manager

BlackBerry Web Desktop Manager BlackBerry Desktop Software

supported with the following conditions:

• users can switch from third-

• party devices that are running

BlackBerry® Application Suite to BlackBerry devices users can switch between

BlackBerry devices

• BlackBerry services are not maintained if users disconnect their BlackBerry devices before completing the process supported with the following conditions:

• users can import data from the address book when creating or changing a filter

• users cannot turn off message redirection while their

BlackBerry devices are connected

• users cannot generate encryption keys

• users cannot override email addresses not supported not supported

BlackBerry devices can connect without a prompt for the device password supported with the following conditions:

• all supported messaging environments

• users cannot clear the redirection queue

• users cannot clear the redirection statistics

BlackBerry Device Software version

4.0 and later supported with the following conditions:

• users can switch from thirdparty devices to BlackBerry devices

• BlackBerry services are maintained if users disconnect their BlackBerry devices before clicking the Close button in the

Switch was successful dialog box supported with the following conditions:

• supported with the following conditions:

• Microsoft® Exchange environments only

• users can clear the redirection queue

• users can clear the redirection statistics all users can import data for filtering users can turn off message redirection while their

BlackBerry device are connected users can generate encryption keys users can override email addresses supported supported required before BlackBerry devices can connect to the users' computers

Feature and Technical Overview

Managing a distributed environment for BlackBerry Enterprise Server Express components

Supported feature

supported IT policies synchronization over a serial connection

BlackBerry Web Desktop Manager BlackBerry Desktop Software

• Auto Backup Enabled

• Auto Backup Exclude Messages

• Auto Backup Exclude Sync

• Auto Backup Frequency

• Auto Backup Include All

• Desktop Allow Device Switch

• Desktop Password Cache

Timeout

• Do Not Save Sent Messages

• Force Load Message users cannot synchronize the following data over a serial connection:

• organizer data

• email messages

• third-party application data

• date and time

Auto Backup Enabled

Auto Backup Exclude Messages

Auto Backup Exclude Sync

Auto Backup Frequency

• Auto Backup Include All

• Desktop Allow Device Switch

• Desktop Password Cache

Timeout

Disable Media Manager

Do Not Save Sent Messages

• Force Load Count

• Forward Message In Cradle

• Message Prompt

• Show AppLoader

• Show Web Link users can synchronize the following data over a serial connection:

• organizer data

• email messages

• third-party application data

• date and time

Managing a distributed environment for BlackBerry

Enterprise Server Express components

You can install the BlackBerry® Enterprise Server Express components on multiple computers so that you can manage the size of your organization's BlackBerry Domain. For example, you can install the BlackBerry Attachment Service and BlackBerry MDS Connection Service on separate computers to provide the computer that hosts the BlackBerry

Enterprise Server Express with additional resources that the BlackBerry Enterprise Server Express can use to process email messages.

Wireless activation

The wireless activation process activates BlackBerry® devices that are associated with a BlackBerry® Enterprise Server

Express over the wireless network. Neither you nor the BlackBerry device users are required to connect the BlackBerry devices to a computer in your organization's network to complete the activation process.

37

Feature and Technical Overview

Wireless activation

You can use wireless activation to activate a large number of BlackBerry devices over the wireless network. When

BlackBerry device users want to activate new or replacement BlackBerry devices that are associated with the

BlackBerry Enterprise Server Express over the wireless network, they must notify you or access the provisioning server console. You or the BlackBerry device user can create activation passwords.

The BlackBerry® Enterprise Solution can begin the wireless activation process automatically or when BlackBerry device users open the activation application on their BlackBerry devices and type their activation passwords and email addresses. When the activation process completes, the BlackBerry device users are activated and can send email messages from and receive email messages on their BlackBerry devices.

For more information about activating devices that are associated with the BlackBerry Internet Service on the

BlackBerry Enterprise Server Express over the wireless network, visit www.blackberry.com/go/serverdocs to see the

Activating Devices That are Associated With the BlackBerry Internet Service Over the Wireless Network Technical

Note.

38

Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Related manuals

Download PDF

advertisement

Table of contents