[pej]

We've convinced management to start applying IT policy to our devices, but they don't like the notion of wiping devices due to password failures. They would prefer "Lock device and require a password reset" as the outcome of too many failed password attempts.

It doesn't look like this is possible in BES 4.1.x -- "Maximum Password Attempts" is only the number until a WIPE occurs.
- Does BES 5 offer any new options?
- Can we raise the Max Password Attempts to a HIGHER value than 10? The docs don't make this overly clear.
- Is there any way to implement such a configuration? I imagine we could have the Help Desk queue the BES admins to do a "Lock and Reset Passcode" if someone called in with an issue, which might be the next-best-thing.

Thanks!

[penguin3107]

Quote:

Originally Posted by pej

It doesn't look like this is possible in BES 4.1.x -- "Maximum Password Attempts" is only the number until a WIPE occurs.
- Does BES 5 offer any new options?

No.

Quote:

Originally Posted by pej

- Can we raise the Max Password Attempts to a HIGHER value than 10?

No.

Quote:

Originally Posted by pej

- Is there any way to implement such a configuration?

No.

[pej]

Thanks Penguin, that's what I was afraid of (but expecting). We'll probably need to set the "Suppress Password Echo" option to False to make it easier for the forgetful folks.

Getting them to use a password at all is a victory, so we'll have to find a way to convince them that 10 tries is more than enough for a legitimate user!

[lprmcnit]

We've had the same challenge with some of the hi-end users. One thing you can do is emphasize the enormous costs of data loss, particularly if you are in Health care or Finance. If, say a DBA sends themself a spreadsheet with say, 10000 customer social security or credit card numbers, and the data is lost, at least in our State their is a reporting obligation, and an obligation to pay a 1 year credit reporting fee at $100 a pop...In our state if the device is encrypted, there is no reporting obligation, but I know from personal experie nce, there is enormouse peace of mind if you lose your device and know that no one can get into it. Probably all it will take is for one device to be lost, with data, and all of the senior execs will change their tune. Good Luck.

[cyclmpc]

pej, I believe once you hit the 6th attempt, it prompts you to type in the word "blackberry" to continue and does so with additional attempts. This should be enough for a user to look for help before the wipe. GL.

[NJBlackBerry]

Obviously you haven't experienced enough users who blow right through that...