nsbuck
Password reset by admin is not compulsory to be done over the OTA, the password change can be done on site with Admin.
BES policies were set by default as BES is deployed set up out of the box. Admin would need to use a trial sample for a period of time to understand how it works. The BES Policy makes it clear periods are left for Admin to specify. So in that regard there could be a problem.
As for a non-existent BES account, there might be a problem but what that might be is not clear yet. I think I would ask Blackberry directly on this one just to make sure. However, the 7290 is compatible with BES.
BES Policy makes it clear that sync does not have to include wiping data on the device if you select certain parameters.
Greg…. I don't fully understand what you're saying above. Can you elaborate please?
Which bits needs elaboration and what are you not sure about Steve?
The whole lot to be honest - not a big issue tbh, just I found it hard to relate to the OP's initial Q.
In any case, I think there will be problems re-associating the device with a potentially expired BES-link, especially if that user has since updated their device to a newer model.
Also, one should be really wary of interaction causing the consolidation of existing data and retention policies. My own BES-BB has a 30 day retention (as mentioned earlier) but I can change that to what I want to change it for (its not necessarily enforced by the BES)
The whole lot to be honest - not a big issue tbh
Phew, that is a relief I can now sleep easy at night -)
I found it hard to relate to the OP's initial Q.
Well its a difficult subject not mastered by having one device. Blackberry is enjoyable but always complicated because of the many policies and interchanging rules.
OP stated
Is there a way of bypassing the security password on a blackberry 7290?
especially if that user has since updated their device to a newer model.
There is nothing in the OP initial question updating their device to a newer model. I think you may, by mistake, have added your point.
one should be really wary of interaction causing the consolidation of existing data and retention policies.
Well exactly and I agree with you, hence the reason for this topic discussion so we all can get it right.
My own BES-BB has a 30 day retention (as mentioned earlier) but I can change that to what I want to change it for (its not necessarily enforced by the BES)
Perhaps you can help us here then, Steve. Does the 7290 device have a default 30 day retention policy?
It would be a shame for this BB thread to fizzle out, so I have spent a little time investigating further about BB data wipe.
My own BES-BB has a 30 day retention (as mentioned earlier) but I can change that to what I want to change it for (its not necessarily enforced by the BES)
I have checked into the BB 7290 and the device does not have the function to set a validity period when user data should be wiped. So the user either has to manually select the data to be deleted or enable the data to be wiped when connected to BES as an IT policy rule.
It occurred to me that trying to bypass the password was not the only avenue of investigation. It is only presumption on our part that when the BB 7290 had been used a "wipe data" policy was in place and active? The truth is we simply do not know that as a statement of fact - merely it is speculative?
If Blackberry intended 'wiping data' within specified parameters why invite BES users to set 'prevent unwanted BlackBerry device wiping'?
'Secure Wipe Delay After IT Policy Received
Specify the length of time, in hours, after receiving an IT policy update that the BlackBerry device securely wipes all of its user data. The permitted range is 2 to 720 hours.
'Warning If you set this IT policy rule, set the Policy Resend Interval on the BlackBerry Enterprise Server (in the IT Admin properties) to a value that is lower than this rule setting to prevent unwanted BlackBerry device wiping.'
That IT policy rule is effective so long as the wipe policy is active in the first place. Admin can switch off the wipe policy altogether thus not set Secure Wipe Delay at all.
The sticking point I have run into so far with BB policy rule is removal of accounts, as per BB policy rule below
'Background
The BlackBerry device user information retention interval defines the length of time, in days, that BlackBerry device user information is retained after accounts are removed from the BlackBerry Enterprise Server. By default, the information is permanently deleted at 300 AM, three days after the removal of BlackBerry device users' accounts from the BlackBerry Enterprise Server.
'If you re-add a BlackBerry device user to the BlackBerry Enterprise Server, whose account was deleted, before the information is permanently deleted, the state database information is retained and messages received after deletion are redirected to the BlackBerry device.
'You can modify the BlackBerry device user information retention interval by defining a registry value. The BlackBerry Enterprise Server reads the value at 300 AM every day to determine if information can be deleted.'
The presumption is that Admin deleted the user account and a back-up of previous Devices has not been retained somewhere, maybe recorded to tape or CD etc.
This is as far as I have got so far. If nsbuck has any feedback yet or anyway can chip in, it would be useful.