02-28-2012 08:32 AM
An old topic coming back...
I want to setup Integrated Windows Authentication so that BB users on BES for Domino use an individual account/password combination to access intranet resources without being prompted for their credentials. As far as I understand the documentation BlackBerry_MDS_Connection_Service_Integrated_Authe
Now there seems to be a missing link. Point 5 of the process flow descriptions says "The BlackBerry MDS Connection Service performs the following actions [...] retrieves the Microsoft Active Directory user name for the user from Microsoft Active Directory".
How does this work? Where can I set the relationship between a specific Domino user (and his BlackBerry device) and the AD user account? Is this possible at all? I did not find any reference to it.
Any help is welcome!
05-18-2012 12:34 PM - edited 05-18-2012 12:46 PM
Whilst trying to get IA working I had the same log lines as your older posting from January 2011...
>>Must have a mailboxDN for exchange or else a GUID
>>client account is null
>>Unable to to determine user AD login name for impersonation
If you haven't already, you need to add AD Authentication Support to your BES by re-running setup and selecting the Active Directory Authentication check box. Once this is added you can assign your users a link to their AD credentials.