Ah, ok. Our intent is to block all direct access from Android devices. We don't do Exchange ActiveSync. Our only allowed access is through "Good for Enterprise" for androids/iOS and BES for Blackberries.
On Tue, Jun 21, 2011 at 4:53 PM, Darhl Thomason < [email protected]> wrote: > I use powershell scripts that run periodically through the day to capture > any changes. The powershell scripts check A/D group membership and turn > off/turn on various Exchange attributes depending on the group. The ones > that I use/control are:**** > > ** ** > > IMAP enabled/disabled**** > > POP enabled/disabled**** > > Outlook Anywhere enabled/disabled**** > > Exchange ActiveSync enabled/disabled**** > > EAS Policy assigned/not assigned**** > > ** ** > > d**** > > ** ** > > *Darhl Thomason *| SysAdmin | Business Technology**** > > *Papa Murphy’s* Int'l. | *d* 360-449-4044 | *c* 360-607-5617 | > www.papamurphys.com**** > > ** ** > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Michael Wells > *Sent:* Tuesday, June 21, 2011 1:48 PM > > *To:* A list for BES Admin's to discuss issues, etc. > *Subject:* Re: [Bes-admins] Blocking BIS access to our Exchange**** > > ** ** > > One thing to note - blocking the IP's will block RIM devices, but I believe > Android has similar features without an ip list to block. > > > That's why we ended up using the captcha - it block them all. (So far, at > least.) > > **** > > On Tue, Jun 21, 2011 at 4:21 PM, Michael Wells <[email protected]> wrote:** > ** > > You can block the ports, but I don't have that doc handy. > > You can also put a captcha on your OWA page which will stop BIS and Android > users. > > **** > > On Tue, Jun 21, 2011 at 4:14 PM, Art Alexion <[email protected]> wrote:**** > > I have Googled this with minimal luck. > > We have some users who are accessing their corporate mail via BIS. Though > we freely provide BES accounts, I suspect these are users with personal > devices who don't want to pay for an Enterprise Data Plan. Pretty ironic > that we are having this problem with BlackBerries, incidentally, because > with the other smartphones I can just boot them from EAS. My understanding > is that BIS uses OWA for Exchange access. Of course, we can't turn of OWA > or Outlook Anywhere. I also read that I can accomplish this by blocking the > BIS IP range in our firewall. Other posts say you have to do it on the IIS > server for OWA. None of the posts, however seem to want to give up the IP > range to be blocked. > > Anyone successful at this? How? > > -- > > Art Alexion > Systems Engineer -- Infrastructure Engineering Group > Resources for Human Development > [cid:250E70F0-B191-4D90-8033-DD47AEDCAFAD]**** > > _______________________________________________ > Bes-Admins mailing list > [email protected] > http://www.dataoutages.com/mailman/listinfo/bes-admins > http://www.dataoutages.com > http://www.dataoutagenews.com > RSS Feed: http://feeds.feedburner.com/Bes-admins > --------------------------------- > Bes-Admins mailing list is sponsored by Dataoutagenews.com. > http://www.dataoutagenews.com**** > > ** ** > > ** ** > > ------------------------------------------------------------------------------------ > Join the TAKE 'N' BAKE REVOLUTION! www.facebook.com/papamurphyspizza > ** > > "#1 Rated Pizza Chain" - ZAGAT 2010 National Restaurant Chains Survey (r) > > > > > > _______________________________________________ > Bes-Admins mailing list > [email protected] > http://www.dataoutages.com/mailman/listinfo/bes-admins > http://www.dataoutages.com > http://www.dataoutagenews.com > RSS Feed: http://feeds.feedburner.com/Bes-admins > --------------------------------- > Bes-Admins mailing list is sponsored by Dataoutagenews.com. > http://www.dataoutagenews.com >
_______________________________________________ Bes-Admins mailing list [email protected] http://www.dataoutages.com/mailman/listinfo/bes-admins http://www.dataoutages.com http://www.dataoutagenews.com RSS Feed: http://feeds.feedburner.com/Bes-admins --------------------------------- Bes-Admins mailing list is sponsored by Dataoutagenews.com. http://www.dataoutagenews.com
