Sunday, August 5, 2012

Configure BalckBerry mail with Exchange 2010

 

ON THE BLACKBERRY SERVER

TASK 1

1.      Click Start > Administrative Tools > Computer Management.

2.      In the left pane, expand System Tools and click Local Users and Groups.

3.      In the right pane, double-click Groups.

4.      Right-click Administrators and click Properties.

5.      In the Select Users, Contacts, Computers, or Groups window, select the BlackBerry Enterprise Server service account name.

6.      Click OK.

Task 2

To assign Local Security Policy permissions to the BlackBerry Enterprise Server service account, complete the following steps:

Note: This allows the BlackBerry Enterprise Server service account to access the local computer and to run the BlackBerry Enterprise Server software as a Windows® service.

  1. Click Start > Administrative Tools > Local Security Policy.

If the computer is a domain controller, click Start > Administrative ToolsDomain Controller Security Policy.

  1. In the Local Securities window, click Local Policies > User Rights Assignment.

  2. Do one of the following:

    • For Windows Server® 2000, double-click Log on Locally

    • For Windows Server 2003, double-click Allow Log on Locally

  3. Click Add User or Group.

  4. Select the BlackBerry Enterprise Server service account name and click Add.

  5. Click OK.

  6. In the Local Security Settings window, double-click Log On As a Service.

  7. Click Add User and select the BlackBerry Enterprise Server service account.

  8. Click OK.

 

 

 

Microsoft Exchange 2010

Create a Windows account that has a Microsoft Exchange 2010 mailbox

You must create a Windows® account with a Microsoft® Exchange 2010 mailbox so that the Windows account can authenticate with the Microsoft® Exchange Server.

1.     On the computer that hosts Microsoft Exchange, log in using an administrator account that has the permission to create accounts.

2.     Open the Microsoft Exchange Management Console.

3.     Create an account and mailbox that you name BESAdmin.

4.     To permit the BlackBerry® Enterprise Server to check if a BlackBerry device user has permission to access a public folder, assign the Owner permission for all public folders to the administrator account.

  • To verify that you created the Windows account, log in to a computer using the Windows account.

  • Verify that the Windows account is not a member of the Domain Administrators group in Microsoft® Active Directory®.

  • Verify that BlackBerry device users have Read permissions and Visible permissions to public folders.

  • To permit BlackBerry device users to check the availability of meeting participants using BlackBerry® Device Software 4.5 or later, configure the Schedule+ Free/Busy information for the system public folder. For more information, visit http://technet.microsoft.com to read articles 629523 and 691129.

Configure Microsoft Exchange 2010 permissions for the Windows account

1.     On a computer that hosts the Microsoft® Exchange Management Shell, open the Microsoft Exchange Management Shell.

2.     Type Get-MailboxDatabase | Add-ADPermission -User "BESAdmin" -AccessRights ExtendedRight -ExtendedRights Receive-As, ms-Exch-Store-Admin.

3.     Type Add-RoleGroupMember "View-Only Organization Management" -Member "BESAdmin".

4.     Type Add-ADPermission -InheritedObjectType User -InheritanceType Descendents -ExtendedRights Send-As -User "BESAdmin" -Identity "CN=Users,DC=<domain_1>,DC=<domain_2>,DC=<domain_3>" where <domain_1>, <domain_2>, and <domain_3> form the name of the domain. For example, if the domain name is www.example.com, type www for <domain_1>, example for <domain_2>, and com for <domain_3>.

If you create a new mailbox database for Microsoft Exchange, repeat step 2.

Turn off client throttling in Microsoft Exchange 2010

By default, Microsoft® Exchange 2010 uses client throttling policies to track the bandwidth that each Microsoft Exchange user consumes and enforce bandwidth limits, as necessary. The policies affect the performance of the BlackBerry® Enterprise Server negatively, so you should turn off client throttling for the Windows® account that has a Microsoft Exchange mailbox.

1.     On a computer that hosts the Microsoft Exchange Management Shell, open the Microsoft Exchange Management Shell.

2.     Type New-ThrottlingPolicy BESPolicy.

3.     Type Set-Mailbox "BESAdmin" -ThrottlingPolicy BESPolicy.

Increase the maximum number of connections to the Address Book service in Microsoft Exchange 2010

By default, Microsoft® Exchange 2010 limits the maximum number of connections from the BlackBerry® Enterprise Server to the Address Book service to 50. To permit the BlackBerry Enterprise Server to run, you must increase the number of permitted connections to a large value (for example, 100,000).

1.     On the computer that hosts the Microsoft Exchange CAS server, in <drive>:\Program Files\Microsoft\Exchange Server\V14\Bin, in a text editor, open the microsoft.exchange.addressbook.service.exe.config file.

2.     Change the value of the MaxSessionsPerUser key to 100000.

3.     Save and close the file.

4.     Restart the Address Book service.

 

In the Active Directory

1. On any computer within your domain, on the taskbar, click Start > Administrative Tools > Active Directory Users and Computers.
2. In the View menu, click Advanced Features.
3. Right-click the domain root.
4. Click Properties.
5. On the Security tab, click Advanced.
6. Click Add.
7. Type BESAdmin.
8. Click Check Name.
9. Click OK.
10. In the Apply Onto drop-down list, click (Descentant ) User Objects.
11. In the Allow column, select the Send As, Receive As and Allow to authenticate check boxs.
12. Click Apply.
13. Click Ok.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)