Blackberry SWD-504685-0330050601-001 specification

Administration Guide

Managing IT policies and IT policy rules

Managing IT policies and IT policy rules
	4

List the IT policy rules in an IT policy

1.To open the command window for the BlackBerry® Enterprise Server User Administration Tool, on the computer that hosts the tool, on the taskbar, click Start > Programs > BlackBerry Enterprise Server Resource Kit > BlackBerry Enterprise Server User Administration Tool > BlackBerry Enterprise Server User Administration Tool.

2.Type besuseradminclient <credentials> -list -it_policy_rules and the following parameter:

• -it_policy <policy_name>

Example: Listing the IT policy rules and displaying them in an output file

besuseradminclient -username admin -password password -list -it_policy_rules -it_policy "Advanced Security" -o AdvancedSecurity.csv

Example output

Policy Name, Policy Group, Rule Name, Rule Value, Rule Type

Advanced Security, Device only, User Can Disable Password, No, BOOLEAN Advanced Security, Bluetooth, Disable Serial Port Profile, Yes, BOOLEAN Advanced Security, Security, Force Lock When Holstered, Yes, BOOLEAN Advanced Security, Password, Maximum Password History, 6, INTEGER

Advanced Security, Device only, Password Pattern Checks, At least 1 alpha and 1 numeric character, ENUMERATION: 0No restriction1At least 1 alpha and 1 numeric character2At least 1 alpha, 1 numeric, and 1 special character3At least 1 upper-case alpha, 1 lower-case alpha, 1 numeric, and 1 special character

Advanced Security, Bluetooth, Disable File Transfer, Yes, BOOLEAN Advanced Security, Bluetooth, Disable Discoverable Mode, Yes, BOOLEAN Advanced Security, Bluetooth, Require LED Connection Indicator, Yes, BOOLEAN Advanced Security, Device only, Enable Long-Term Timeout, Yes, BOOLEAN Advanced Security, Policy Information, IT Policy Name, Advanced Security, STRING Advanced Security, Security, Disable USB Mass Storage, Yes, BOOLEAN

Advanced Security, Security, Content Protection Strength, Strong, ENUMERATION: 0Strong1Stronger2Strongest Advanced Security, Device only, User Can Change Timeout, Yes, BOOLEAN

25

Image 27

Blackberry SWD-504685-0330050601-001 Managing IT policies and IT policy rules, List the IT policy rules in an IT policy

Contents

Administration Guide SWD-504685-0330050601-001 Contents Sending notification messages to BlackBerry devices Input, output, and user feedback parameters Setuseritpolicyrule BlackBerry Enterprise Server User Administration Tool OverviewEdit a group across Group Create a software Configuration View a software Delete a software Configuration Create an applicationTemplate View a job Service View pull rules for Service instance View push rules for New in this release Add and remove a role across organizationsTool Description BlackBerry Enterprise Activation Password InputfilenameOutputfilename Servername Authentication credentials Supported authentication models Syntax for authentication credentials Example User name SQLU1 Password SQLP1String value requirements Use cases BASP1 -basauth -setp password1 Following command BESUserAdminClientSetclientauth -basauth -setp password1 Setclientauth -username BASU1 -password Re-install the service using the new client password Username Managing user accountsAdding user accounts Add a new user account to the BlackBerry Enterprise Server Add an existing user account to a group Assign a software configuration to a user accountUsername Sw configurationname Add a new user account to a group Finding user accounts Changing and removing user accountsFind a user account Username Instance Delete a software configuration from a user accountMove a user account to a different user group Delete a user account from a group Delete a user account from the BlackBerry Enterprise Server Change user account settings List the groups in a BlackBerry Domain Turn on or turn off email message forwarding Managing email message forwarding Turn on or turn off email message forwarding for folders List the IT policy rules in an IT policy Managing IT policies and IT policy rules Set IT policy rules for a user account Set a password for a BlackBerry device Managing BlackBerry devicesSet owner information on a BlackBerry device Delete pending messages Resend a service book Protect a stolen BlackBerry device Resend the peer-to-peer encryption key Subject subjectlinetext Body messagebodytext Send a notification PIN messageUsername or Groupname Instance Infofile filename or Send a notification email message Results of a statistics query for a user account BlackBerry devicesRetrieving user account statistics and information about Retrieve user account statistics Device Type Model number of the BlackBerry device State Column Description ServerDNThat is associated with the BlackBerry device PIN of the BlackBerry device Retrieve enterprise activation statistics for a user account Clear user account statistics Retrieve enterprise activation statistics for a user account Retrieve the statistics for BlackBerry devices Retrieving BlackBerry device information Home Carrier Results of a statistics query for a BlackBerry deviceUsers userdeviceinformation Groupname Instance Column Description User Name Name of the user account System Status Software configuration on the deviceUptime Time since the BlackBerry device was last reset Column Description IT Policy Time Messaging server Instance sent Enterprise Server instanceInstance filtered Yyyymmdd is the date Administration ToolTroubleshooting the BlackBerry Enterprise Server User Configuring log files Warn Error Fatal Using the command summary in the help file Common parameters BES1,USER7,GROUP2,true Input, output, and user feedback parametersSubparameter Description BES1,USER2,GROUP1,false Well as messages of earlier levels With the BlackBerry Administration ServiceError This level is not currently used Be one of the following types BlackBerry Administration Service AddGroupWise Ory Itpolicy ITpolicyname Wt expiry time Cannot use this subparameter with -sw AssignswconfigSubparameters -assignswconfig Description Csw configurationname Utype type Syntax -change Change Account This subparameter clears the users email message filtersBlackBerry Enterprise Server for Novell GroupWise Enterprise Server for Novell GroupWise Account to -add or an existing user account to -change PurgependingmessagesFrom Subparameter Description Canonicalname Password Force Administration Tool does not find the mailboxDelete Subparameters -delete Description Administration Guide Subparameters -find Description Find Handheldinfo Hhstats Subparameters -handheldinfo Description AppnameWork with the -u or -b subparameters Action. It works with the -u subparameter Instead of one user account Subparameter Description Users Subparameters -killhandheld Description Killhandheld Administration Guide List Configurationname Apppolicyname InstanceItpolicy IT policyname Displayname Move Subparameters -move DescriptionMove the account to Administration Guide Resendpeertopeerkey Subparameters -resendpeertopeerkey DescriptionAction Subparameters -resendservicebook Description Resendservicebook Sendemail Body bodytextInfofile filename.txt Utype type This subparameter specifies the name of the user group SendpinSubparameters -sendpin Description This subparameter specifies the body of the PIN message Displayname Setclientauth Default authentication type Sqluser username Interchangeably with -passwordExchange messaging server Credentials in the Windows registry Foldername foldername SetfolderredirectionSubparameters -setfolderredirection Description Server for Novell GroupWise Username Infofile infofile.txt SetownerinfoSubparameters -setownerinfo Description Info ownerinformation Utype type Subparameters -setpassword Description Setpassword Setuseritpolicyrule Subparameters -setuseritpolicyrule DescriptionPolicyrule policyrulename Administration Guide Email emailinstance Service This subparameter specifies service instancesStats Subparameters -stats Description Utype type Status Glossary Provide feedback Legal notice Administration Guide Administration Guide