Welcome!

Welcome to the Official BlackBerry Support Community Forums. This is your resource to discuss support topics with your peers, and learn from each other. New to the forum? Please visit the ‘Getting Started’ link below.
All New Topics | All New Posts
inside custom component

BlackBerry® Professional Software and BlackBerry® Enterprise Server Express

Reply
Topic Options
rsnooks87
New Contributor
rsnooks87
Posts: 6
Registered: ‎05-19-2011
My Carrier: N/A

BlackBerry MDS & FIPS

Options

‎12-27-2012 04:17 AM

Hello all,

 

I'm looking to enable MDS on BES Express 5.0.3.31 in a FIPS environment, however have not been able to find any support articles on the BlackBerry website that suggests that MDS either meets FIPS as standard or if there are any required configuration changes/IT Policy rules that need to be made in order to ensure it meets FIPS.

 

The last thing i want to do is enable MDS and break half of the environment in doing so.

 

Anybody got any ideas?

 

Thank you.

Report Inappropriate Content
Message 1 of 6 (538 Views)
Reply
0 Likes
Please use plain text.
 
Guru III
Guru III
knottyrope
Posts: 26,457
Registered: ‎06-25-2008
My Carrier:

I am on AT&T. Please edit your Personal Profile with your DEVICE TYPE, DEVICE OS and Carrier

Re: BlackBerry MDS & FIPS

Options

‎12-27-2012 09:06 AM

BES express was made for BYOD and it might not have everything you require to lock down your devices.

 

what FIPS spec do you need with MDS?


Click here to Backup the data on your BlackBerry Device! It's important, and FREE!


Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals

BESAdmin's, please make a signature with your BES environment info. SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope

No Sleep Till BlackBerry 10, A BlackBerry Song by Lil E Click here to listen

See me at BlackBerry Fans Get Hands-On BlackBerry 10 Demo

Want to thank me? Buy my KnottyRope App here

Report Inappropriate Content
Message 2 of 6 (526 Views)
Reply
0 Likes
Please use plain text.
 
rsnooks87
New Contributor
rsnooks87
Posts: 6
Registered: ‎05-19-2011
My Carrier: N/A

Re: BlackBerry MDS & FIPS

Options

‎12-27-2012 09:54 AM

Thank you for the response knottyrope.

 

In answer to your question: FIPS 140-2 Compliant Encryption

Report Inappropriate Content
Message 3 of 6 (521 Views)
Reply
0 Likes
Please use plain text.
 
Guru III
Guru III
knottyrope
Posts: 26,457
Registered: ‎06-25-2008
My Carrier:

I am on AT&T. Please edit your Personal Profile with your DEVICE TYPE, DEVICE OS and Carrier

Re: BlackBerry MDS & FIPS

Options

‎12-27-2012 10:20 AM

BES does supply end to end encryption. But BES express is limited in controlling devices like Full BES can.

 

Last i knew, you can not force users to use on MDS only for web surfing with express.

MDS also allows intranet access which is encrypted to network shares and web servers.


Click here to Backup the data on your BlackBerry Device! It's important, and FREE!


Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals

BESAdmin's, please make a signature with your BES environment info. SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope

No Sleep Till BlackBerry 10, A BlackBerry Song by Lil E Click here to listen

See me at BlackBerry Fans Get Hands-On BlackBerry 10 Demo

Want to thank me? Buy my KnottyRope App here

Report Inappropriate Content
Message 4 of 6 (515 Views)
Reply
0 Likes
Please use plain text.
 
rsnooks87
New Contributor
rsnooks87
Posts: 6
Registered: ‎05-19-2011
My Carrier: N/A

Re: BlackBerry MDS & FIPS

Options

‎12-27-2012 11:17 AM

Thanks knottyrope.

 

Do you know of any support articles that advise what the IT policy and MDS configuration needs to be to meet the FIPS Compliance i previously stated?

 

I don't want to just go in and blindly enable MDS without having a firm grasp on how it needs to be configured so that it doesnt break everything else which is already FIPS controlled.

Report Inappropriate Content
Message 5 of 6 (509 Views)
Reply
0 Likes
Please use plain text.
 
Guru III
Guru III
knottyrope
Posts: 26,457
Registered: ‎06-25-2008
My Carrier:

I am on AT&T. Please edit your Personal Profile with your DEVICE TYPE, DEVICE OS and Carrier

Re: BlackBerry MDS & FIPS

[ Edited ]
Options

‎12-27-2012 12:02 PM - edited ‎12-27-2012 12:04 PM

do you see this in IT policy?

 

FIPS 140-2 Level 2 compliance under IT Policy > Security is enabled.

 

The descriptions for certain IT policy rules in the BlackBerry® Administration Service mention the FIPS level IT policy rule, but the FIPS level IT policy rule is not available in the BlackBerry® Enterprise Server Express. (DT 839622)

 

 

So I am guessing that express is not FIPS enbled and you need the full version of BES.

 

IT Policy guide for BES 5 SP4 search FIPS in it

http://btsc.webapps.blackberry.com/btsc/microsites/search.do?cmd=displayKC&docType=kc&externalId=en4...


Click here to Backup the data on your BlackBerry Device! It's important, and FREE!


Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals

BESAdmin's, please make a signature with your BES environment info. SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope

No Sleep Till BlackBerry 10, A BlackBerry Song by Lil E Click here to listen

See me at BlackBerry Fans Get Hands-On BlackBerry 10 Demo

Want to thank me? Buy my KnottyRope App here

Report Inappropriate Content
Message 6 of 6 (504 Views)
Reply
0 Likes
Please use plain text.