Is there a proven way to block all Blackberry's that access Exchange 2007 via OWA? It is against my company policies to store password with 3rd party (BIS) as well as not having the ability to apply policies, remote wipe if lost, etc.
Now I know I could block all the BIS subnets at the Firewall but this could be problematic. We have users who use NotifyLink or AstraSync which works with Exchange's ActiveSync thereby allow our policies to be applied to protect the device. These applications however use the BIS network and blocking the BIS subnets at the FW would block these users as well (may have to go down this road anyway).
I can also put to rest implementing a BES as our company has decided against spending money which is not needed when so many devices have ActiveSync ability.
We are looking at allowing our users to pick the mobile device they like the best or are more comfortable with.
Your company won't deploy a BES due to cost yet you pay for NotifyLink?
We no longer pay for notifylink service since the move to Exchange 2007\2010. Users can still pay for the application which works with Exchange's ActiveSync.
There is a way to do it - I remember seeing a RIM KB article on it. You have to block a range of RIM's IP addresses to do it.
Seeing if I can find it.
I know about blocking the BIS subnets at the FW, but since we have BB users who use Astrasync and Notifylink we would like to avoid blocking everything if possible.
Both AstraSync and Notifylink which works with Exchange 2007\2010 ActiveSync's direct push still goes through BIS network.