Welcome!

Welcome to the Official BlackBerry Support Community Forums. This is your resource to discuss support topics with your peers, and learn from each other. New to the forum? Please visit the ‘Getting Started’ link below.
All New Topics | All New Posts
inside custom component

BlackBerry® Professional Software and BlackBerry® Enterprise Server Express

Reply
Topic Options
Forums Advisor III
Forums Advisor III
unleashurself
Posts: 1,016
Registered: ‎04-23-2012
My Carrier: Bharti-Airtel
Accepted Solution

Organization E-mail restriction over BIS

Options

‎03-13-2013 08:07 AM

Hi,

 

We would like to block our employees to configure their official mail ID using BIS.

 

 

Report Inappropriate Content
Message 1 of 8 (450 Views)
Reply
0 Likes
Please use plain text.
 
Super Contributor
oliwer
Posts: 487
Registered: ‎05-23-2008
My Carrier: .

Re: Organization E-mail restriction over BIS

Options

‎03-14-2013 03:21 AM

Block IMAP and OWA, then they cannot connect via BIS
Report Inappropriate Content
Message 2 of 8 (431 Views)
Reply
0 Likes
Please use plain text.
 
Forums Advisor III
Forums Advisor III
unleashurself
Posts: 1,016
Registered: ‎04-23-2012
My Carrier: Bharti-Airtel

Re: Organization E-mail restriction over BIS

[ Edited ]
Options

‎03-14-2013 03:39 AM - edited ‎03-14-2013 03:39 AM

This will put impact on rest thousands of users because of few hundred of users, who use BIS.

 

 

Report Inappropriate Content
Message 3 of 8 (430 Views)
Reply
0 Likes
Please use plain text.
 
Super Contributor
oliwer
Posts: 487
Registered: ‎05-23-2008
My Carrier: .

Re: Organization E-mail restriction over BIS

Options

‎03-14-2013 03:49 AM

when they can use IMAP and OWA, why you should disable BIS? Then you only can disable BIS via Policy for them at all when they are connected to a BES.
Report Inappropriate Content
Message 4 of 8 (426 Views)
Reply
0 Likes
Please use plain text.
 
Forums Advisor III
Forums Advisor III
unleashurself
Posts: 1,016
Registered: ‎04-23-2012
My Carrier: Bharti-Airtel

Re: Organization E-mail restriction over BIS

Options

‎03-14-2013 05:54 AM

There are many policies implemented for users but when they use BIS, then it use different SMTP, reason being implemented policy doesn't apply on them.

 

This is the main reason, we want to block our employees to configure their mails using BIS services..!!

Report Inappropriate Content
Message 5 of 8 (424 Views)
Reply
0 Likes
Please use plain text.
 
Forums Advisor III
Forums Advisor III
unleashurself
Posts: 1,016
Registered: ‎04-23-2012
My Carrier: Bharti-Airtel

Re: Organization E-mail restriction over BIS

Options

‎03-14-2013 09:59 AM

After a huge research over internet, I have found Blocking BIS subnet are not the solution, because it will block all the e-mails coming from BIS network including non-employees as well, who may be our client or customer (Anybody can approach us using BIS ID)

 

So we analyzed & found our work ID (official ID) request come from different Port and rest domains request (i.e. gmail, hotmail, yahoo etc) come from different port.

 

So we blocked the BIS IP subnet ( KB11036 ) on the particulars port, which were opened for official ID.

 

Now its working for us, hope this will work for you as well. 

Report Inappropriate Content
Message 6 of 8 (417 Views)
Reply
0 Likes
Please use plain text.
 
Guru III
Guru III
knottyrope
Posts: 26,463
Registered: ‎06-25-2008
My Carrier:

I am on AT&T. Please edit your Personal Profile with your DEVICE TYPE, DEVICE OS and Carrier

Re: Organization E-mail restriction over BIS

Options

‎03-17-2013 01:47 PM

Block port 80 and 443 incoming from BIS ips and they wont get email from BIS.

 

If using IMAP and POP still think about changing to RPC over HTTPS aka Outlook Anywhere.

 

IMAP, POP are not even used here on my server. It was decided that these older protocols make the server run harder and are easier to hack too since we protect Outlook Anywhere with a SSL cert for connections via TMG 2010.


Click here to Backup the data on your BlackBerry Device! It's important, and FREE!


Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals

BESAdmin's, please make a signature with your BES environment info. SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope

No Sleep Till BlackBerry 10, A BlackBerry Song by Lil E Click here to listen

See me at BlackBerry Fans Get Hands-On BlackBerry 10 Demo

Want to thank me? Buy my KnottyRope App here

Report Inappropriate Content
Message 7 of 8 (342 Views)
Reply
0 Likes
Please use plain text.
 
Forums Advisor III
Forums Advisor III
unleashurself
Posts: 1,016
Registered: ‎04-23-2012
My Carrier: Bharti-Airtel

Re: Organization E-mail restriction over BIS

Options

‎03-19-2013 09:14 AM

In our scenerio, when employee try to activate his official ID using BIS than request hits at port 80 & 443 but if outside user try to communicate with our official ID then request comes from Port 25.

 

So we blocked all BIS subnets provided on Blackberry Support Forum only for port 80 & 443, if request come from any domain i.e. gmail or yahoo than it will be open and mail will drop in our inbox.

 

 

Report Inappropriate Content
Message 8 of 8 (312 Views)
Reply
0 Likes
Please use plain text.