By sending IT commands to the devices, you can make the devices perform a certain function. These IT commands were first introduced in the Domino BES 4.0 product, so they are not available on the Lotus Domino BES 2.2. For Exchange BES environments, the IT commands have been available since BES 3.6. In addition to the correct BES version, the device must be running at least version 3.6 of the Handheld Software.
To use this feature, begin by opening the BlackBerry Manager console. On the far left of the screen, select the desired server. At the top of the screen, select the User List tab, then click on one of the users below the tab. As shown in Figure 7-1, you can view the IT Admin tasks by clicking that heading in the lower-right portion of the screen.
The list of available tasks includes the following:
* Resend IT Policy
* Assign IT Policy
* Resend Peer-to-Peer Key
* Resend Service Book
* Set Password and Lock Handset
* Set Owner Information
* Erase Data and Disable Handheld
Resend IT Policy
As discussed in Chapter 3, IT Policies are a set of parameters you can use to enforce company policy, security, or simply limit the available functions on the BlackBerry handheld device. In BES 4.0, IT Policies can also contain settings for third-party applications that may be running on your devices.
There should be no need to resend IT Policies because they are automatically sent out when they are updated, or when you assign a new one to a user or users. However, if for some reason a particular device does not receive an IT Policy, you can use this task to resend it.
Assign IT Policy
When a BlackBerry user is added to the BES, the default IT Policy is automatically sent to that user. If a user is moved between BlackBerry Enterprise Servers in the same BlackBerry domain, that user will keep using the same IT Policy. To be safe, the BES will resend the IT Policy to the device. If at some point you create a new IT Policy, you can use this task to assign it to one or many BlackBerry users.
Resend Peer-to-Peer Key
A peer-to-peer encryption key is a key that you can set to limit the sending of PIN-to-PIN messages. If you set a peer-to-peer key, then your BlackBerry users will not be able to send PIN-to-PIN messages to devices outside of their BlackBerry domain, although they will be able to receive incoming PIN messages from any device. When you set the encryption key, all PIN-to-PIN communications are encrypted with that key. This is in addition to the 3DES encryption that is applied to all BlackBerry communications. To set a peer-to-peer encryption key, click your BlackBerry domain in the left of the BlackBerry Manager screen, and then click Update Peer-To-Peer Encryption Key under the Service Control and Customization section on the right.
To resend this encryption key, use the Resend Peer-To-Peer Key command in the IT Admin section of the BlackBerry Manager console screen.