Welcome!

Welcome to the Official BlackBerry Support Community Forums. This is your resource to discuss support topics with your peers, and learn from each other. New to the forum? Please visit the ‘Getting Started’ link below.
All New Topics | All New Posts
inside custom component

BlackBerry® Enterprise Solution

Reply
Topic Options
Regular Contributor
Daps
Posts: 87
Registered: ‎01-16-2009
Accepted Solution

BES SVC account permissions

[ Edited ]
Options

‎10-17-2011 04:14 PM - edited ‎10-17-2011 05:25 PM

Taken from the RIM site, these are the permissions needed for Blackberry BES to run.

http://btsc.webapps.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB02276

We are running Exchange 2007 SP3.

Basically, the BES service account has: Send As, Receive As, and Administer information Store permissions.

All our IT Admins know the BES service account password.

Does this mean they can access anyone's mailbox using those credentials?

Report Inappropriate Content
Message 1 of 3 (1,255 Views)
Reply
0 Likes
Please use plain text.
 
Guru III
Guru III
knottyrope
Posts: 26,506
Registered: ‎06-25-2008
My Carrier:

I am on AT&T. Please edit your Personal Profile with your DEVICE TYPE, DEVICE OS and Carrier

Re: BES SVC account permissions

Options

‎10-17-2011 04:20 PM

Yes they could access the email accounts with those credentials.

 

You should make a second managment account for them on BES.

 

 


Click here to Backup the data on your BlackBerry Device! It's important, and FREE!


Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals

BESAdmin's, please make a signature with your BES environment info. SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope

No Sleep Till BlackBerry 10, A BlackBerry Song by Lil E Click here to listen

See me at BlackBerry Fans Get Hands-On BlackBerry 10 Demo

Want to thank me? Buy my KnottyRope App here

Report Inappropriate Content
Message 2 of 3 (1,253 Views)
Reply
0 Likes
Please use plain text.
 
TheITcrowd
Visitor
TheITcrowd
Posts: 1
Registered: ‎10-17-2011
My Carrier: Verizon

Re: BES SVC account permissions

Options

‎10-17-2011 04:50 PM

Pretty sure most IT admins could access everyone's email account in Outlook anyways...  At least I know everyone in our IT department where I work can.   Most companies have that set in as a policy for legal reasons in case something happens

Report Inappropriate Content
Message 3 of 3 (1,251 Views)
Reply
0 Likes
Please use plain text.