Get the PDF

Setting up work email for devices
Controlling which devices can access Exchange ActiveSync for work email and organizer data
Creating email profiles
- Create an email profile
- Email profile settings
Protecting email data sent to iOS devices using the BlackBerry Secure Gateway
- Configure BlackBerry UEM to trust the Exchange ActiveSync server or identity provider certificate
- Configure the BlackBerry Secure Gateway to use OAuth with supported TLS versions and ciphers
Enable the BlackBerry Hub app for Android Enterprise devices
Extending email security using S/MIME
Create an IMAP/POP3 email profile
Setting up CardDAV and CalDAV profiles for iOS and macOS devices
- Create a CardDAV profile
- Create a CalDAV profile

Create a CRL profile

CRL profiles are supported for

iOS

and

Android

devices.

In the management console, on the menu bar, click

Policies and profiles

Click

Certificates > CRL

Click

Type a name and description for the CRL profile.

To allow devices to use responder URLs defined in the certificate, select the

Use certificate extension responders

check box.

Perform any of the following tasks:

Task	Steps
Use HTTP or HTTPS for CRL	In the HTTP for CRL section, click . Type a name and description for the HTTP CRL configuration. In the Service URL field, type the web address of an HTTP or HTTPS server. Click Add . Repeat these steps for each HTTP or HTTPS server.
Use LDAP for CRL	In the LDAP for CRL section, click . Type a name and description for the LDAP CRL configuration. In the Service URL field, type the FQDN of an LDAP server using the format ldap://`<fqdn>`:`<port>` (for example, ldap://server01.example.com:389). For secure connections, use the format ldaps://`<fqdn>`:`<port>`. In the Search base field, type the base DN that is the starting point for LDAP server searches. In the Search scope drop-down list, select the appropriate search scope for LDAP servers searches. If necessary, select the Use secure connection check box. In the LDAP user ID field, type the DN of an account that has search permissions on the LDAP server (for example, cn=admin,dc=example,dc=com). In the LDAP password field, type the password for the account that has search permissions on the LDAP server. Click Add . Repeat these steps for each LDAP server.

Task

Steps

Use HTTP or HTTPS for CRL

In the

HTTP for CRL

section, click

Type a name and description for the HTTP CRL configuration.

In the

Service URL

field, type the web address of an HTTP or HTTPS server.

Click

Add

Repeat these steps for each HTTP or HTTPS server.

Use LDAP for CRL

In the

LDAP for CRL

section, click

Type a name and description for the LDAP CRL configuration.

In the

Service URL

field, type the FQDN of an LDAP server using the format ldap://<fqdn>:<port> (for example, ldap://server01.example.com:389). For secure connections, use the format ldaps://<fqdn>:<port>.

In the

Search base

field, type the base DN that is the starting point for LDAP server searches.

In the

Search scope

drop-down list, select the appropriate search scope for LDAP servers searches.

If necessary, select the

Use secure connection

check box.

In the

LDAP user ID

field, type the DN of an account that has search permissions on the LDAP server (for example, cn=admin,dc=example,dc=com).

In the

LDAP password

field, type the password for the account that has search permissions on the LDAP server.

Click

Add

Repeat these steps for each LDAP server.

Click

Add

If necessary, rank the profile.

Section:

Determining the status of S/MIME certificates on devices