The BlackBerry® Application Control IT policy rules provide administrators with the ability to establish the capabilities of an application when it runs on a specific BlackBerry device. For example, administrators can use the BlackBerry Application Control IT policy rule to make sure that a game that exists on the BlackBerry device cannot access the phone API. The BlackBerry Application Control IT policy rule works only when the BlackBerry device is connected to a BlackBerry® Enterprise Server. This IT policy does not apply to BlackBerry devices that use the BlackBerry® Internet Service only.

If the administrator or a user denies the application access to one of the protected areas, the associated method throws a ControlledAccessException. For class-level checks, the method throws a NoClassDefFoundError. Depending on which APIs that you use, your application might need to handle both types of errors.

• Allow a BlackBerry device application to request access to resources