259 | Blackberry SWD-20120924140022907 guide

Administration Guide

Configuring encryption and authentication methods for Wi-Fi enabled BlackBerry devices

Configuring EAP-FAST authentication

EAP-FAST is an authentication method that was developed by Cisco Systems. Similar to PEAP authentication, EAP-FAST authentication encrypts EAP transactions within a TLS tunnel. Although PEAP uses a server-side digital certificate to configure the TLS tunnel, EAP-FAST uses a .pac file.

The .pac file that the BlackBerry devices and the authentication server share contains secret keys that are unique to the BlackBerry devices. The EAP-FAST master key on the authentication server generates the .pac file. EAP-FAST uses the .pac file to open the TLS tunnel and authenticates the user credentials through the TLS tunnel.

Configure EAP-FAST authentication

1.Distribute the .pac file to the wireless client over a network connection that is designed to be secure using automatic PAC provisioning.

2.Configure each wireless access point to connect to the access control server and a DHCP server.

3.Verify that the DHCP server can provide the following information to the wireless client:

•IP address or network

•default gateway

•IP address of the DNS server

4.Configure the access control server.

After you finish:

•For information about the automatic provisioning process, see the documentation for your organization’s authentication server.

•For information about configuring wireless access points, see the documentation for the access points.

•For information about configuring the access control server, see the documentation for the access control server.

Related information

Prerequisites: Distributing a certificate using the BlackBerry Desktop Manager, 252

Creating and configuring Wi-Fi profiles, 235

259

Image 259

Blackberry SWD-20120924140022907 manual Configuring EAP-FAST authentication, Configure EAP-FAST authentication, 259

Contents

Administration Guide Published 2012-09-24 SWD-20120924140022907 Contents Configuring security options 101 111 136 168 206 217 247 266 292 328 337 369 392 423 493 498 Device before assigning the device to a new user Overview BlackBerry Enterprise ServerDocument revision history Date Description On BlackBerry devices Troubleshooting IT policiesTask Chapter Create administrator accounts User account Task Chapter Optional tasks Task Chapter Task Chapter Files Components and for the BlackBerry ConfigurationDatabase Server Click Log There is a problem with this websites security certificateRelated information Close and reopen the browser This connection is untrustedClick View certificates Click Trusted Root Certification Authorities. d Click OK Close and reopen the browser Administrative roles and permissions Creating administrator AccountsPreconfigured administrative roles Administration GuideCreating administrator accounts Administration GuideCreating administrator accounts Administration GuideCreating administrator accounts Administration GuideCreating administrator accounts Create a role Creating roles Create a role based on an existing role Create an administrator account Click Edit user Add an administrator account to a groupClick Create an administrator user Click Manage users Create a group to manage similar user accounts Assign a BlackBerry device to an administrator account Administration Guide Preconfigured IT policy Description Preconfigured IT policies Requires devices to encrypt external file systems Default values for preconfigured IT policiesFrom downloading third-party applications Advanced Security Security policy group Password policy groupMaximum Password History RIM Value-Added Applications policy group Bluetooth policy group Allow Other Yes Calendar Services MessageDisable Address Yes Book Transfer Discoverable Mode Click Create an IT policy Wireless Software Upgrades policy groupCreating and importing IT policies Create an IT policy Click Manage IT policies Create an IT policy based on an existing IT policyImport IT policy data Click Edit IT policy Import IT policy rules from an IT policy pack Change the value for an IT policy ruleClick Add all IT policies Related information Click Save all Related information Assign an IT policy to a groupAssign an IT policy to a user account Click Manage groups Resend an IT policy to a BlackBerry device manually Sending an IT policy over the wireless networkResend an IT policy to a BlackBerry device automatically Method Description Assigning IT policies and resolving IT policy conflictsExpand BlackBerry Domain Component view Click Edit instance Scenario Rule Option 1 Applying one IT policy to each user account Rank IT policies Option 2 Applying multiple IT policies to each user accountClick Manage IT policies Click Set priority of IT policies Groups that the user account belongs Highest in the BlackBerry Administration ServiceYes setting is applied for this rule You add a new user account to a To No. You ranked IT policy a higher Default value of Yes. You assign Select two or more IT policies Click Preview Click Manage IT policies Click Preview resolved IT policies Click Create an IT policy rule Create an IT policy rule for a third-party application Click Download file Export all IT policy data to a data fileClick Manage IT policy rules Click Export List of IT policies, click an IT policy Delete an IT policy Configuring security options Managing device access to the BlackBerry Enterprise Server Configure the Enterprise Service Policy Turn on the Enterprise Service PolicyClick BlackBerry Enterprise Server Click Edit component Extending messaging security using PGP encryption Permit a user to override the Enterprise Service PolicyExtending messaging security to a BlackBerry device Extending messaging security using S/MIME encryption Configure encryption options for S/MIME-protected messages Click Restart instance Related information Create a message classification Enforcing secure messaging using classifications Order message classifications Generate a PIN encryption key Delete a message classificationClick BlackBerry Domain Restart the BlackBerry Enterprise Server External services turned on drop-down list, click No Administration Guide Scenario Recommendation Remove decrypted content from BlackBerry deviceHas elapsed To the desired time for example, 10 minutes Best practice Running the BlackBerry Enterprise Server Configuring the BlackBerry Enterprise Server environmentBest practice Description Click Edit instance Click Save all Click Save all Related information Administration Guide Before you begin Turn off Web Proxy Autodiscovery Protocol Address field, type the URL for the PAC file Click OK Type traittool -BASServer name -trait BASProxyBasicAuthUID Delete credentials for Http basic authenticationTask Steps Type traittool -global -trait BASProxyBasicAuthUID -erase Click Save all Related information Click OK Perform one of the following actions Configuring support for Unicode languagesConfigure support for Unicode languages Type regedit Restarting BlackBerry Enterprise Server components Related information Type regedit Add user accounts to a group Configuring user accountsCreating user groups Create a group to manage similar user accounts Click Create a user Add to user configuration list, click Add groupAdding a user account to the BlackBerry Enterprise Server Add a user account Option Step Click Create a user with activation passwordClick Create a user with generated activation password Click Create a user without activation password Save the .csv file Export a list of user accounts Field Description Fields in a .csv file that contain user account information Elapses Import multiple user accounts from a .csv file Click Continue Preparing to distribute a BlackBerry device Assigning BlackBerry devices To users Assigning BlackBerry devices to user accounts BlackBerry Administration ServiceMethod Click Associate user Click Assign current device Wi-Fi network Click Default Wireless activationSave bandwidth by synchronizing organizer data over the LAN Cannot reuse it to activate another BlackBerry device Activation passwordsPassword expire earlier than the default value of 48 hours Intended user Send an activation password to a user Customize the activation passwordCustomize the activation message Click Specify an activation password Send an activation password to multiple usersOption 3 Activating BlackBerry devices over the LAN Administration Guide Administration Guide Click Enterprise Activation Activate a Wi-Fi enabled BlackBerry device100 101 Configuring BlackBerry Enterprise Server high AvailabilityCheck the health of a BlackBerry Enterprise Server Click High availablity summary How the BlackBerry Enterprise Server uses health parameters Defining when failover occurs Administration Guide Changing the promotion threshold and failover threshold Health parameter Description Click Edit Automatic Failover settings Threshold so that they are below this health parameter Provide services for attachment viewingAttachment viewing This health parameter 107 108 Administration Guide Click Yes Failover to standby instance Click Manual FailoverVerify that the failover event occured 111 112 Click Turn on automatic connections failover 113 Click Edit instance Click Save all Create a BlackBerry Router pool for high availability Related information 118 119 Restart the BlackBerry Administration Service instances Related information Availability state for the instances changes automatically 122 Remove a BlackBerry Attachment Service instance from a pool Click Edit instance or Edit host instance Remove a BlackBerry Router instance from a pool124 Verify that the DNS server is running 125 Stop the BlackBerry Enterprise Server instances Configuring database mirroring Start the BlackBerry Enterprise Server instances 128 129 Click Resend database mirroring parameters Stop the BlackBerry Enterprise Server instances Click Replication Select Overwrite the existing database131 Click OK. Click Next Accept or change the default schedule. Click NextRight-clickLocal Publications. Click New Publication Select By impersonating the process account Click Finish 133 Right-click the server. Click Properties Start the BlackBerry Enterprise Server instances 135 Configuring a new mirror BlackBerry Configuration Database 136 137 Preparing to distribute BlackBerry Java Applications 138 Click BlackBerry Administration Service Click Edit component Click Publish application Click Add or update applicationsAdd a collaboration client to the application repository Click Add application Click Manage applications Configuring application control policiesSpecify keywords for a BlackBerry Java Application Standard application control policies Click Edit application control policy Click Manage default application control policiesChange a standard application control policy Application control policy Description Policy Perform any of the following tasksCreate an application control policy For required BlackBerry Java Control policy Applications IT policy rules take precedence on smartphones Application control policies for unlisted applications 144 Click the application control policy that you created 145 Creating software configurations Click Create a software configuration Create a software configurationClick Manage software configurations 147 Assign a software configuration to a groupClick Add to software configuration Click Save all Click a group Assign a software configuration to a user account Assign a software configuration to multiple user accounts148 Complete the instructions on the screen 149 Click Manage deployment jobs Error messages BlackBerry Java Application tasksView the status of a job View the status of a task Device timed out waiting for module QueueModule failed, processing stopped 152 Device reported insufficient memory to install moduleDevice reported insufficient privileges to install module Incomplete ACK data for Appd request Error messages BlackBerry Device Software tasks Available upgrade rejected Upgrade failed, rollback complete Available upgrade deferred by userUpgrade prompt deferred Upgrade rejected Failed to set properties for item Error messages Standard application settings tasksRestore failed -- error getting value Failed to backup data to database Error messages IT policy tasks 158 Reject Security Violation Reject Authentication FailedInvalid password Set Password Failed Stopping a job that is running Stop a job that is running Click View users with application Administration Guide On the BlackBerry device Reconciliation rules BlackBerry Java Applications Scenario Rule Reconciliation rules BlackBerry Device Software Reconciliation rules Standard application settings Scenario Reconciliation rules Application control policies Unlisted applications are not permitted on the BlackBerry You ranked highest in the BlackBerry AdministrationIf unlisted applications are defined as disallowed in a As disallowed is assigned to a user account. a software 168 Desktop Software LoaderDevice to the computer Loader tool 170 BlackBerry device 171 BlackBerry APIs and Java ME standard on BlackBerry devicesUser’s computer BlackBerry Java Application Windows 2000 or later, Windows XP, or Windows Vista 172 Web server Enable the BlackBerry Application Web Loader on a web server Administration Guide 175 Before you begin Administration Guide BlackBerry device Click Download Install the BlackBerry Java Application on a web server179 180 181 Click Save all After you finish Click Save all 183 Administration Guide Related information Click Save all Related information 187 Administration Guide Add a certificate for the BlackBerry MDS Connection Service Task Steps Administration Guide Click MDS Connection Service Click Edit component 193 Click the Edit icon beside the Ldap server Click MDS Connection Service194 Each query Default base query for some Ldap serversService URL Base Query Authenticate with the Dsml certificate server Use to authenticate with the Dsml certificate serverChange a configuration for an Click Save all Type the CRL server name and the web address for the server 199 200 On the Http tab, click Edit component Configure global login information for intranet site access201 Click Edit instance 203 Specify the maximum number of scalable socket connections 204 205 Creating email message filters Setting up the messaging Environment Click Save all Click Continue to user information edit Click Save all Save the .xml file Enabled drop-down list, click Yes209 Click Import email message filters Click Save all Copying existing email message filters to user accountsExport email message filters for a user account Import email message filters for a user account Extension plug-ins for processing messages Install an extension plug-in applicationClick OK Perform one of the following actions 211 212 Add an extension plug-in to a BlackBerry Messaging Agent 213 Search for a user account 214 215 216 Configure the certificate information using IT policies 218 Click an IT policy Click Save all After you finish Click Save all After you finish Managing an enrolled certificate Add certificate information to a Wi-Fi profileClick Manage Wi-Fi profiles Click the name of the Wi-Fi profile that you want to change 222 Property Description Properties in the rimpublic.properties file 224 Making the BlackBerry Web Desktop Manager available to Users Click Include OLE class and product information Deploy Software window, click AdvancedClick OK 225 226 Click Add Click OKExpand Group Policy Management Forest Domains Click Create a GPO in this domain, and link it here Enter the value of the item to be added field, type 2,2,1,0 Configure the Microsoft ActiveX Installer on Windows VistaEach dialogue box, click OK 228 Name the file EnableActiveXInstallFromAD.adm and save it Make the BlackBerry Web Desktop Manager available to users Click Enabled Click OK 230 Configuring the BlackBerry Web Desktop Manager 231 Change the text colors in the BlackBerry Web Desktop Manager BlackBerry Web Desktop Manager text colors Parameter Description Default 234 Display a custom image in the BlackBerry Web Desktop Manager Creating and configuring Wi-Fi profiles Creating and configuring Wi-Fi 19 profiles and VPN profilesPrerequisites Creating Wi-Fi profiles and VPN profiles Port assignments might vary by mobile network provider 236 Connection types and port numbers for a Wi-Fi network Click Create Wi-Fi profile Create a Wi-Fi profileCreate a Wi-Fi profile based on an existing Wi-Fi profile Connection type Default port number Where to configure Click Set Up Wi-Fi Network Configure a Wi-Fi profile on a BlackBerry deviceAssign a Wi-Fi profile to a group Assign a Wi-Fi profile to a user account Click Edit profile Creating and configuring VPN profilesConfigure a Wi-Fi profile Click the name of a Wi-Fi profile Click Create VPN profile Configure a VPN profileCreate a VPN profile Create a VPN profile based on an existing VPN profile Assign a VPN profile to a user account Assign a VPN profile to a groupOn the VPN profiles tab, click Edit group Click Delete profile Click Yes Delete the profile Delete a Wi-Fi profileAssociate a VPN profile with a Wi-Fi profile Click the name of the Wi-Fi profile Importing profile information from a .csv file Delete a VPN profileClick the name of a VPN profile 244 Example Adding profile information to user accounts Example Removing profile information from user accounts Fields in the .csv file that contains profile information Quotation marks in the password Enterprise Wi-Fi network or VPN, if a user name is requiredImport profile information from a .csv file BlackBerry devices do not support a WEP passphrase Configuring WEP encryption Configuring PSK encryption Configuring Leap authentication Configuring Peap authentication 251 Click Place all certificates in the following store Select the Inner link security type Possible cause Configuring EAP-TLS authentication 255 Configuring EAP-TTLS authentication 257 Inner link security type list, select EAP-MS-CHAPv2 Security Type list, select EAP-TTLS258 Configure EAP-FAST authentication Configuring EAP-FAST authentication259 Click Manage Wi-Fi profiles Security Type list, select EAP-FAST Configuring software tokens for 21 BlackBerry devices Configure BlackBerry devices for RSA authentication Click the name of the VPN profile that you want to change 265 Assign software tokens to a user account 266 267 Before you begin 269 270 Click Save all 272 273 Preparing a device for redistribution to a new user Protecting and redistributing Devices274 275 Deleting only work data from a deviceClick Associate user On the Devices menu, click Attached devices Device software Call logs Are deleted when you delete work dataDeleted when you delete work data Device permanently deletes the following work data 277 Delete only work data from a device Protection, you cannot use this command IT administration command DescriptionDelete only the organization data Protect a lost device Protect a stolen deviceApplication data Click Specify new device password and lock device Protect a lost device that a user might not recover 281 Change the roles for an administrator account Managing administrator AccountsChange role permissions Delete a role Delete an administrator accountClick Delete role Click Yes Delete the role Click Yes Delete the user Status list, click Delete user284 Managing groups Managing groups and user Accounts285 Remove a user account from a group Default group Description of the default groupClick Remove from group membership Click Edit group Change the properties of a groupRename a group Delete a group Move a user account to a different group Managing user accounts288 Delete a user account from the BlackBerry Enterprise Server Click Back to search Update a user account manuallyAdd an administrator role to a user account Update the contact list manually 291 Resend service books to a BlackBerry deviceCommunications list, click Resend service books to a device Click Refresh available user list from company directory Change default settings for a job schedule Managing the default distribution settings for jobs292 293 Change how IT policies are sent to BlackBerry devicesStart time drop-down list, click the appropriate option. If Necessary, set the start time and end time Perform any of the following tasks 294 Default value is 295 Recurrence days cannot overlap BlackBerry Device Software296 297 If necessary, change the start time and end time Managing the distribution settings for a specific job Change how a job sends IT policies to BlackBerry devices Specify the start time and priority for a jobClick Edit job Scheduled deployment days drop-down list, click 301 302 303 304 Managing BlackBerry Java Applications on BlackBerry devices 305 Click a software configurationClick Edit software configuration Click Add applications to software configuration Remove a software configuration from a group Managing software configurationsRemove a software configuration from multiple user accounts Delete a software configuration Remove a software configuration from a user account307 Restricting user access to content on web servers Create a pull rule Specify web address patterns Control type drop-down list, click Pull Click the Add icon Search for a group Assign a pull rule to the members of a groupAssign a pull rule to user accounts Click Manage users Click View more criteria Configure download limits for media content types Prevent users from accessing specific media typesClick Add Click Save Mime type Maximum number of bytes per connection KB Default download limits for media content types313 Configure download limits for media content types Administration Guide After you finish 317 318 Pull Authorization drop-down list, click Yes Click a BlackBerry MDS Connection Service instance319 320 Create push initiators for push applications After you finish Create a push rule Turn on push authorization321 322 Create a push ruleAssign push initiators to a push rule After you finish Assign push initiators to the push rule Assign a push rule to user accounts Assign a push rule to the members of a group Specify device ports for application-reliable push requests Managing push application requests 325 Click Save all Click Restart instance Related information 326 327 Managing organizer data Synchronization Managing the wireless backup and recovery of organizer data328 329 Turning off organizer data synchronization 330 331 Changing how organizer data synchronizes Click Continue to user information edit Click Save all 333 Synchronizing contact pictures 334 335 Managing message forwarding Click Continue to user information edit Click Save all 337 Turn off email message forwarding to a user account 338 339 Managing the incoming message queue Managing wireless message reconciliation Managing access to remote message data Click Edit instance 343 Managing email messages that contain Html and rich content Click Save All Click the name of the IT policy that you want to change Resend the updated IT policy to the BlackBerry devices345 346 Synchronizing folders on the BlackBerry device Click Continue to user information edit Click Save all 348 Configuring access to documents on remote file systems Click Save all Examples for step Click the instance that you want to change 350 351 Managing signatures and disclaimers in email messages Click Edit instance Turn off disclaimers for email messages Specify conflict rules for disclaimers353 Click Select from mail address list Sending notification messages to users354 Click Send message to users in group Send a notification message to group membersType the message that you want to send Click Send message 356 Change the size of the message state databaseSend a notification message to a user Click Send message to user Related information 358 Format Extension Limitations for supported attachment file formatsFormat and extension Limitations Files IBM Lotus Symphony only Table of contentsConnector shape route that connects to shapes OpenOffice Format version 1.1 .odp Drawing objects and Fontwork objects ChartsStyle effects for cells shadow, borders Headers and footers Setting Description Range BlackBerry Attachment Service optimization settings Default value is Server busy time File format Suggested size Suggested file sizes for attachmentsZIP archives Less than 2000 KB 365 Administration Guide Prevent users from sending large attachments 368 369 Managing calendars 370 Type the following commandTurn off client throttling in Microsoft Exchange Type New-ThrottlingPolicy BESPolicy After you finish 372 Example 373 Administration Guide Level Description Correcting calendar synchronization errors on devicesGlobal Setting that you specify applies to all users Setting that you specify applies to a specific user Example Turning off the process for all users Turn off corrective calendar synchronizationExample Turning off the process for a specific user Example Viewing the global calendar synchronization settings Administration Guide 379 Configure when corrective calendar synchronization runs Email application Logging information for corrective calendar synchronization380 Specifies that a calendar item is missing on the device Delete a setting for corrective calendar synchronization381 Communications list, click Synchronize calendar Type regedit Managing instant messaging Installing a collaboration client on BlackBerry devices Click Edit instance 386 Access serverOption Description For Microsoft Office 387 Managing instant messaging sessions 388 Managing instant messaging features Prevent users from saving instant messaging conversations Back up the UserInfoConfig.xml file Save the UserInfoConfig.xml file BlackBerry Enterprise Server Component Administration ServiceManaging a BlackBerry Domain Restarting BlackBerry Enterprise Server components Administration GuideManaging a BlackBerry Domain Use the BlackBerry Enterprise Trait Tool Using the BlackBerry Enterprise Trait Tool BlackBerry Enterprise Trait Tool traits Trait Description If you configure the EWSServiceAccount trait For proxy authenticationCalendar contents on the device. When the amount of time Default value is false 0, the BlackBerry Messaging Agent Instances on all BlackBerry Enterprise Server instances EWSEnableBlackBerry Messaging Agent, all BlackBerry Messaging Agent SP1 ExchangeEnableMLangConversion Users status using Microsoft Exchange Web Services or byUsers status using Microsoft Exchange public folders ExchangeDisableConfirmEmailDelivery Might be an impact on the performance of your organizations ExchangeSmartSyncEnableFor calendar errors on devices Mailboxes, change the value to true Calendar synchronization errors on devices at 1200 AM Default value is DailyDefault value is true 1, the BlackBerry Messaging Agent Corrects calendar synchronization errors automatically Disabled on the device Default value is true 1, the BlackBerry Mail Store ServiceFunction, you can access the BlackBerry Messaging Agent Default value Services. Separate the SRP IDs with a comma Default value is true 1, the BlackBerry Enterprise ServerService can synchronize at the same time during a full Services that the device can connect to, type the SRP IDs Books, change the value to false Change the default value of this traitPolicies and service books Additional processes for IT policies or service books RouterAutoDiscoveryMethod Uses to update the list of BlackBerry Router instancesDefault value is 75% Processes for PIN encryption keys BlackBerry Dispatcher uses this trait to change the User UserHealthPercentageEnvironment Add or delete a BlackBerry CAL key Managing BlackBerry CAL keys407 408 Copy a BlackBerry CAL key to a text file 409 Configuring a Hosted BlackBerry services environment Related information 411 Before you begin Configuring a Hosted BlackBerry services environment Restarting BlackBerry Enterprise Server components Before you begin Configuring BlackBerry Policy Service throttling 417 Type traittool -global -list Administration Guide Trait PolicyThrottlingP2PKeyRate -set 420 Delete a BlackBerry Policy Service throttling setting 421 422 Administration Guide Click Controller MaxUserDumpPerDay value field to Change how the BlackBerry Click BlackBerry Collaboration ServiceClick BBAttachServer Click PolicyServer Click BlackBerry Mobile Data ServerClick BlackBerryRouter Click MailStore BlackBerry Enterprise Server Alert Tool Change the default event monitoring levelClick SyncServer Define a notification recipient 430 Monitoring PIN messages, SMS text messages, and calls BlackBerry Enterprise Server Log filesMonitor PIN messages 432 Monitor SMS text messagesTurn off call logging List of IT policies, click the appropriate IT policy 433 Log files for BlackBerry Enterprise Server components 434 On the Logging details tab, click Edit instance Each section, in the Log auto-rolldrop-down list, click True 437 438 UTF-8 UTF-16LE Click Save all Component identifier Logging component Component identifiers for log files On the Logging tab, click Edit instance BlackBerry MDS Connection Service log files Click Save all Related information On the Logging tab, click Edit instance BlackBerry device retrieves from the PGP server 443 Logging section, perform any of the following tasksTrace how data packets travel inside the gateway Click Yes Domain that requests the BlackBerry device connection Connects using a proxy serverAttribute Description BlackBerry device connections On the Instance information tab, click Edit instance BlackBerry Collaboration Service log filesFalse 446 Trace how data packets travel inside the GME network \BlackBerry Configuration Database Windows1433 Windows registry On a 32-bit version Incoming data connections from, and outgoing data 21099 BlackBerry Configuration Panel 448 Type Number Connection Data connections between BlackBerry AdministrationConnection Default port 2000 BlackBerry Administration Attachment Service 449 On a 64-bit version of Windows Outgoing conversion results of large attachments to 451 1433 forOutgoing syslog connections to the Snmp agent 4071 Windows registry On a 32-bit version \Parameters\UDPPort 1433 for BlackBerry Configuration\Research In Motion\ \BlackBerrySNMPAgent BlackBerry Controller connection types and port numbers \TcpPortDispatcher BlackBerry Dispatcher connection types and port numbersPort number Agent That BlackBerry Messaging Provides 5096 Windows registry Agent On a 32-bit version \SOFTWARE\Research Motion 455 Microsoft SQL Server hosts WindowsServer\Database\Port Incoming data connection from the BlackBerry database 5096 Windows registry On a 32-bit version Outgoing data connections to the BlackBerry Dispatcher456 457 4070 Windows registry On a 32-bit version Server\Agents\UDPPort \UDPPortIncoming data connections from the BlackBerry database 459 If access control for push applications is turned on Incoming data connections for reliable pushes 7874 BlackBerry Administration ServiceDatabase Incoming data connections from, and outgoing data 55503 BlackBerry Configuration Service console Panel BlackBerry Policy Service connection types and port numbers3200 Connections to, the BlackBerry Dispatcher 462 \ServicePortBlackBerry Router connection types and port numbers \BlackBerryRouter 463 464 \DevicePort Port number Agent That BlackBerry Messaging Provides 465 CalHelper connection type and port number Microsoft Exchange connection types and port numbers IBM Lotus Sametime connection type and port number TLS 8300 Connections to, the BlackBerry Collaboration ServiceNovell GroupWise Messenger connection type and port number Snmp agent connection types and port numbers Syslog connection type and port number Possible cause Possible solution Troubleshooting36470 Press Enter 471 Troubleshooting BlackBerry Enterprise Server Performance Troubleshooting Setting up user accounts Messages are not delivered to BlackBerry devices Troubleshooting Messaging Text does not appear correctly in Unicode email messages Troubleshooting Instant messaging 475 476 Does not support the version Troubleshooting BlackBerry Web Desktop Manager BlackBerry device cannot connect to a Wi-Fi network Troubleshooting Connections to the Wi-Fi networkClick Wi-Fi Options BlackBerry device is not assigned Click Wi-Fi Tools Wi-Fi Diagnostics Indicator Description Status fields for Wi-Fi connections Connection to an access point Device is associated with the access pointStatus indicators are the following icons To a specific access point None Group CipherCipher Group ciphers have one of the following values Status fields for VPN connections Status fields for UMA or GAN connections Arfcn Status fields for BlackBerry Infrastructure connections Status fields for Enterprise connections BlackBerry device cannot open a VPN connection Is displayed Correctly Verify that Wi-Fi Preferred is selectedBlackBerry device is connected to a Wi-Fi network Issue on the Wi-Fi network Look up a computer name to resolve an IP address Verify whether a BlackBerry device can resolve an IP address Troubleshooting BlackBerry Administration Service pools User cannot log in to the BlackBerry Monitoring Service Troubleshooting BlackBerry Monitoring Service connections 492 Troubleshooting IT policies Glossary37 Device transport key Content protectionDSML-enabled Enterprise Service IPsec IT administrationCommand IP address Mirror database Messaging serverPrincipal database VoIP Triple DESWitness 498 Legal notice 499 Administration Guide