Welcome To The Network Administrator

1. In the BlackBerry(r) Administration Service, on the Servers and components menu, expand BlackBerry Solution topology
> BlackBerry Domain > Component view.
2. Click BlackBerry Administration Service.
Administration Guide Managing BlackBerry CAL keys
3. Click Edit component.
4. In the License key section, perform one of the following actions:
To add a BlackBerry CAL key, type the information for the BlackBerry CAL key. Click the Add icon.
To delete a BlackBerry CAL key, click the Delete icon.
5. Click Save all.

So after we had Exchange 2010 installed, and verifying all activeSync settings were correct. I kept getting cannot connect to server when setting up ActiveSync on my iPhone…This is was solved the issue…

This issue occurs if the AD user object of the Exchange 2010 user doesn’t have “Allow inheritable permissions from the parent to propagate to this object and all child objects. Include these with entries explicitly defined here.”

Once this setting is checked, Exchange ActiveSync works again.

chown -R ../

We recently updated our Microsoft Exchange Server from 2003 to 2010. As a result of that upgrade we needed to upgrade our Blackberry enterprise server from version 4.6 to version 5.0. Everything went well, I was able to perform an in place upgrade, after moving my SQL database off to a separate database server. I was also able to finally get all BES services to run as a regular Domain user instead of a domain administrator which was a pretty regular practice with previous versions.

In an effort to save someone else a lot of time troubleshooting with RIM, I will say this…
If you getting ready to upgrade to BES version 5 and you have exchange 2010, please make sure that you have done the following to ensure there are no communications issues between exchange 2010 and the BES.

In order to enable full support, three updates are required:

Roll-Up 1 (RU1) for Exchange Server 2010
MAPI v6.5.8147
BlackBerry Enterprise Server 5.0.1 Maintenance Release 1 (MR1)
All three of these updates are available to customers of Exchange Server 2010 and BlackBerry Enterprise Server v.5.0 with Service Pack 1 at no cost. BlackBerry Enterprise Server v5.0 Service Pack 1 and Maintenance Release 1 can be found here: http://www.blackberry.com/support/downloads

Also this is where to get the upgrade/install guide from RIM

http://docs.blackberry.com/en/admin/subcategories/?userType=2&category=BlackBerry+Enterprise+Server+for+Microsoft+Exchange

I needed to configure an SFTP server on a Fedora 8 Core server. To Keep things simple I choose SFTP over VSFTP as I was already running the SSH Daemon for server management.

So if you dont already have the SSH Daemon installed, open a terminal session as root and type

Yum install ssh*

Select Yes to download and install

type cd /etc/ssh

type vi sshd_config and make sure the config is similar to the one below

#####SSHD_Config######

# $OpenBSD: sshd_config,v 1.80 2008/07/02 02:24:18 djm Exp $

# This is the sshd server system-wide configuration file. See
# sshd_config(5) for more information.

# This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin

# The strategy used for options in the default sshd_config shipped with
# OpenSSH is to specify options with their default value where
# possible, but leave them commented. Uncommented options change a
# default value.

#Port 22
#AddressFamily any
#ListenAddress 0.0.0.0
#ListenAddress ::

# Disable legacy (protocol version 1) support in the server for new
# installations. In future the default will change to require explicit
# activation of protocol 1
Protocol 2

# HostKey for protocol version 1
#HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
#HostKey /etc/ssh/ssh_host_rsa_key
#HostKey /etc/ssh/ssh_host_dsa_key

# Lifetime and size of ephemeral version 1 server key
#KeyRegenerationInterval 1h
#ServerKeyBits 1024

# Logging
# obsoletes QuietMode and FascistLogging
#SyslogFacility AUTH
#LogLevel INFO

# Authentication:

#LoginGraceTime 2m
#PermitRootLogin yes
#StrictModes yes
#MaxAuthTries 6
#MaxSessions 10

#RSAAuthentication yes
#PubkeyAuthentication yes
#AuthorizedKeysFile .ssh/authorized_keys

# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
#RhostsRSAAuthentication no
# similar for protocol version 2
#HostbasedAuthentication no
# Change to yes if you don’t trust ~/.ssh/known_hosts for
# RhostsRSAAuthentication and HostbasedAuthentication
#IgnoreUserKnownHosts no
# Don’t read the user’s ~/.rhosts and ~/.shosts files
#IgnoreRhosts yes

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication no
#PermitEmptyPasswords no

# Change to no to disable s/key passwords
#ChallengeResponseAuthentication yes

# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
#KerberosGetAFSToken no

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes

# Set this to ‘yes’ to enable support for the deprecated ‘gssapi’ authentication
# mechanism to OpenSSH 3.8p1. The newer ‘gssapi-with-mic’ mechanism is included
# in this release. The use of ‘gssapi’ is deprecated due to the presence of
# potential man-in-the-middle attacks, which ‘gssapi-with-mic’ is not susceptible to.
#GSSAPIEnableMITMAttack no

# Set this to ‘yes’ to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication. Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of “PermitRootLogin without-password”.
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to ‘no’.
UsePAM yes

#AllowAgentForwarding yes
#AllowTcpForwarding yes
#GatewayPorts no
X11Forwarding yes
#X11DisplayOffset 10
#X11UseLocalhost yes
#PrintMotd yes
#PrintLastLog yes
#TCPKeepAlive yes
#UseLogin no
#UsePrivilegeSeparation yes
#PermitUserEnvironment no
#Compression delayed
#ClientAliveInterval 0
#ClientAliveCountMax 3
#UseDNS yes
#PidFile /var/run/sshd.pid
#MaxStartups 10
#PermitTunnel no
#ChrootDirectory none

# no default banner path
#Banner none

# override default of no subsystems
Subsystem sftp /usr/libexec/openssh/sftp-server

# This enables accepting locale enviroment variables LC_* LANG, see sshd_config(5).
AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
AcceptEnv LC_IDENTIFICATION LC_ALL

# Example of overriding settings on a per-user basis
#Match User anoncvs
# X11Forwarding no
# AllowTcpForwarding no
# ForceCommand cvs server

type Esc :wq and enter to close out of the vi editor and save changes

Restart the SSH Daemon by typing service sshd restart

If you have any trouble connecting, you can install Putty http://www.chiark.greenend.org.uk/~sgtatham/putty/

After installing putty, open a windows command window, browse to C:\Program Files (x86)\PuTTY>psftp -v (internal or external server IP address)

I did see a difference between Fedora and Open SuSE with this line in sshd_config, just make sure the path to sftp-server is correct. If your unsure where sftp-server is you can always run a search as find -name ‘ftp-server*’ or something like that.

Subsystem sftp /usr/libexec/openssh/sftp-server

AT&T has released a new iPhone application called Mark the Spot to help AT&T customers report any failures with their service. Having had Verizon for well over 10 years i was relucant to switch to ATT. At the time i was one of the many who were mezmorized by the possibilites of having an iPhone. Im not happy about having to pay $135 a month for two iPhones and having to do ATT network coverage outage detection. I guess if it will help and the app is simple ill do my part…

We recently came accross and issue while creating a new site to site vpn with a Cisco Pix 515 IOS 6.3(4) and a new ASA 5505 IOS 7.2(4) We were able to resolve the issue by removing peer-id-validate nocheck by issuing simple  peer-id-validate nocheck

http://www.cisco.com/en/US/docs/security/asa/asa70/configuration/guide/vpngrp.html

Specify whether to validate the identity of the peer using the peer’s certificate:

hostname(config-ipsec)# peer-id-validate option
The available options are req (required), cert (if supported by certificate), and nocheck (do not check). The default is req. For example, the following command sets the peer-id-validate option to nocheck:

hostname(config-ipsec)# peer-id-validate nocheck

I just recently ordered a blackberry 9700 for one of our  users. My over impressions of the device were good. I really like how they have replaced the mechcanical trackball as that causes people a lot issues over time. The battery life is outstanding compared to previous devices.

One funny draw back was removing the battery cover. The device that I got had no instructions for removing the cover.

http://crackberry.com/proper-blackberry-bold-9700-battery-cover-removal

Even after watching this video the cover refused to budge. I ended up using a small flat screw driver and gently prying the cover down from the top slit and then sliding it down the rest of the way according to the video above.

http://na.blackberry.com/eng/devices/blackberrybold9700/bold_features.jsp

The BlackBerry® Bold™ 9700 smartphone has a large, hi-res screen that displays over 65,000 colors; creating a vivid viewing experience for all your photos, videos, files and websites.

Access what’s important with trackpad navigation based on how laptops are designed. Glide
your finger over the trackpad to scroll through menus and icons. A slight press and click lets you select an item to navigate where you want to go.

Enhance the 256 MB of on-board flash memory by easily inserting a microSD  Card

Hi-speed 3G network connectivity lets you browse the web or view email attachments faster. While
Wi-Fi® support enables your BlackBerry Bold 9700 smartphone to access available hotspots

Dont forget to visit http://na.blackberry.com/eng/services/appworld/ for all the latest blackberry apps.

I am working on a new site which should be lauched after the first of the year, http://www.learnitbyexample.com

Interesting website I thought I would share…..I like the real stories

http://www.trueittales.com/