06-12-2009 11:33 AM
I am developing a password protected website for my employess to access company info. I would like to tie each user's login to his/her particular device, whether it be a PC or a Blackberry. In other words, a particular login will only work when using a particular device. To do that, when the user tries to log in, the website must be able to read some unique identification off of the device. In the case of a Blackberry, I thought the identifier could be the PIN or the MEID.
My question is: Is such a thing possible? Is the Blackberry capable of passing its own PIN or MEID to a website. Certainly I will have to have a script running on the website that will go and grab the info, but would the Blackberry allow such a thing? Where would the script get the ifo from? It doesnt have to be the PIN or MEID, anything unique to the device would suffice. I don't think it can be the IP address though, because it's not static.
Any help would be greatly appreciated.
06-13-2009 06:55 PM - edited 06-13-2009 07:40 PM
The answer is actually yes only if connected to a MDS server and the server is configured to pass that information through in the headers. See article http://www.blackberry.com/knowledgecenterpublic/li
06-14-2009 12:03 AM
The question was "can I retrieve the device PIN and send to my server".
The answer is "yes". There is no requirement for BES.
I believe you are thinking of the BES feature which collects the device PIN from the browser user agant, if enabled.
06-15-2009 10:11 PM
Yes, that is exactly what I was referencing. I interpreted the request as the need to discover the PIN when the device logs into the customer's web server. That would imply using the request header information which is only there if enabled and provided by the MDS server.
You say there is a different way to do that. I really could use the answer to that also.
06-16-2009 05:19 PM
The MDS header insertion approach should be combined with checking for the source IP of the request on the web server end to ensure that it comes from the MDS - otherwise it would be easy for anyone to insert the header into an http request.