Manualshelf

User guide

ManualsBrandsBlackberry ManualsOtherENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES
31323334353637383940
Managing BlackBerry Enterprise Solution security
5
Using an IT policy to manage BlackBerry Enterprise Solution security
You can use an IT policy to control a BlackBerry® device, a BlackBerry enabled device, the BlackBerry® Desktop Software, and
the BlackBerry® Web Desktop Manager in your organization's environment. An IT policy consists of multiple IT policy rules that
manage the security and behavior of the BlackBerry® Enterprise Solution. For example, you can use IT policy rules to manage
the following security features and behaviors of the BlackBerry device:
encryption (for example, encryption of user data and messages that the BlackBerry® Enterprise Server forwards to message
recipients) and encryption strength
use of a password or pass phrase
connections that use Bluetooth® wireless technology
protection of user data and device transport keys on the BlackBerry device
control of BlackBerry device resources, such as the camera or GPS, that are available to third-party applications
The BlackBerry Enterprise Server includes preconfigured IT policies that you can use to manage the security of the BlackBerry
Enterprise Solution. The Default IT policy includes IT policy rules that are configured to indicate the default behavior of the
BlackBerry device or BlackBerry Desktop Software.
After a BlackBerry device user activates a BlackBerry device, the BlackBerry Enterprise Server automatically sends to the
BlackBerry device the IT policy that you assigned to the user account or group. By default, if you do not assign an IT policy to the
user account or group, the BlackBerry Enterprise Server sends the Default IT policy. If you delete an IT policy that you assigned
to the user account or group, the BlackBerry Enterprise Server automatically re-assigns the Default IT policy to the user account
and resends the Default IT policy to the BlackBerry device.
For more information, see the BlackBerry Enterprise Server Policy Reference Guide.
Using IT policy rules to manage BlackBerry Enterprise Solution security
You can use IT policy rules to customize and control the actions that the BlackBerry® Enterprise Solution can perform.
To use an IT policy rule on a BlackBerry device, you must verify that the BlackBerry® Device Software version supports the IT
policy rule. For example, you cannot use the Disable Camera IT policy rule to control whether a BlackBerry device user can access
the camera on the BlackBerry device if the BlackBerry Device Software version does not support the IT policy rule. For information
about the BlackBerry Device Software version that is required for a specific IT policy rule, see the BlackBerry Enterprise Server
Policy Reference Guide.
The BlackBerry Administration Service groups the IT policy rules by common properties or by application. Most IT policy rules are
designed so that you can assign them to multiple user accounts and groups.
Security Technical Overview
Managing BlackBerry Enterprise Solution security
33