How to disable Mobile Data Service (MDS) for a specific user in BES?

Posted on 2007-07-26
Last Modified: 2011-10-03
I have a Blackberry Enterprise Server (BES) version 4.1 and some Blackberry users. Right now MDS is running on BES. Blackberry users are able to connect to internal network through MDS. To increase security, I like to disable MDS for some Blackberry users but not all.
I created a new IT policy called NoMDS: disable MDS Runtime Environment=true for MDS policy group and assign NoMDS to suerA, resend IT policy to userA. But userA is still able to use MDS to connect to internal network.
Q#1. If I just want to enable phone, email for userA, but not Blackberry browser or connection to internal network, how to achieve this?
Q#2. Can someone post a baseline IT policy for the BES? Or what services should be usually shut down?
Question by:richtree
    LVL 63

    Assisted Solution

    1) See if you can remove the MDS component in the policy - check for more options
    2) Depends on what you want.  The default is secure but does not do everything.

    No forced password on the BB device, and open browser for BB and Internet.

    You simply have to go over all the options and do some testing.

    Did you check the log on the user or the server ?

    I hope this helps !
    LVL 7

    Accepted Solution

    The Mobile Data Service is in BES 4.1 not the part for connecting to the Internet, that is the MDS Connection services. Here are some of the IT Policies you have to set (for no browsing):

    Allow IBS Browser FALSE  
    Enable WAP Config FALSE
    Allow Browser FALSE
    Allow Other Browser Services FALSE
    Allow External Connections FALSE
    Allow Internal Connections FALSE

    In this document you find all the IT Policy:


    Author Comment

    Hi Bob,
    Thanks for your tips. Here is the results from testing:
    browser policy group->allow IBS browser: for Internet browser.
    global items->allow browser: for Blackberry browser.
    service exclusivity policy group->allow other browser service: for all browser services, Blackberry, WAP, Internet browsers.

    Author Comment

    Thank you all.

    Author Comment

    device-only items->enable wap config: seems not related
    security policy group->allow internal connections: seems not related
    security policy group->allow external connections: seems not related
    LVL 7

    Expert Comment

    This is that also non browser application can not go to the internet.


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Security Threats Are You Missing?

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    Suggested Solutions

    Title # Comments Views Activity
    cheap and best smart phone 19 83
    Firmware 9790 3 104
    Creating an icon for an Android App 2 143
    Outlook Contact Groups 2 43
    Introduction Everyone is using a smartphone these days. Contacts, messages, applications, documents, bookmarks, pictures, videos and other stuff which you created and are present only on your device come under the umbrella called “Personal Data”.…
    This is not just another Android bug that needs patching, rather this is a major hole in one component of the the current android system, namely StageFright.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now