27.5 C
Dubai
Tuesday, November 29, 2022

How to install / Configure Blackberry Enterprise Server 5.0.4 MR2 with Exchange 2013 – Part 1

Will start this from scratch.Long process . be patient . Go slowly Step by step . you will succeed . lol

Step 1 :

Get a Windows 2012 Server ,  Run Windows Updates , Join in the domain I assume Exchange 2013 is installed in the domain

Step 2 :

Create a mailbox for Besadmin

image

Step3 :

Give Besadmin ViewOnly Organizaion Management Permission using ADUC or Shell

Through Exchange management shell – Run below command

Add-RoleGroupMember "View-Only Organization Management" -Member BesAdmin
or Open ADUC 
Open Active Directory Users and Computers – Add – View-Only Organization Management
image

 

Step 4:

Assign Receive As permission on BesAdmin account

Get-MailboxDatabase | Add-ADPermission -User BesAdmin -AccessRights ExtendedRight -ExtendedRights Receive-As, ms-Exch-Store-Admin
image
Step 5:
Now Assign Send-AS permission on a OU where users are going to be
Run this to Get your OU distinguish Name - Get-OrganizationalUnit | fl Dis*
Add-ADPermission -InheritedObjectType User -InheritanceType Descendents -ExtendedRights Send-As -User BesAdmin -Identity "CN=Users,DC=Domain,DC=com"
 
image
 
If you Access Denied – Check below article - 
https://www.azure365pro.com/assigning-send-as-permission-on-a-ou-in-exchange-2013-access-is-denied-insuff_access_rights/
Step 6:
Add impersonation access for EWS 
New-ManagementRoleAssignment -Name BesAdmin -Role:ApplicationImpersonation -User BesAdmin
image
Step 7:
Enable mailboxes you require to process External meeting Requests . Below Command Enables for all mailboxes
Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq 'UserMailbox'}| Set-CalendarProcessing -ProcessExternalMeetingMessages $true
image
==================
Also Create a Throttling policy and add to the bes mailbox
New-ThrottlingPolicy BESPolicy -RCAMaxConcurrency Unlimited -EWSMaxConcurrency Unlimited
Set-Mailbox "BESAdmin" -ThrottlingPolicy BESPolicy
image
Step 8:
Open IIS manager of the Client access server – Right click on EWS – Edit Permissions
image
Add – Besadmin – Make sure “Read&Execute,List Folder Contents,Read” are checked
Apply Ok
image
Step 9:
Now Login to BES server as Administrator - 

Start – Run – Lusrmgr.msc

Local users and Groups – Groups – Administrators Group – Add Besadmin as local administrator

image

 

From Now . you do anything on Blackberry Server . Login as DomainName\BESadmin . so that your can over come all permission issues

Step 10:

Login as Besadmin

Start – Local Security Policy

Security Settings – User Rights Assignment – Log on As a Service

Add Besadmin

image

 

Add – Allow Log on locally

image

Step 11:

Login as Domain\Besadmin in BES server

Check this article on how to install it

Now Install SQL 2012 Express

https://www.azure365pro.com/how-to-install-sql-2012-express-on-windows-server-2012/

After installation open  SQL Configuration Manager from start – Enable – Named Pipes / TCP/IP – IN SQL Server Network Configuration

image

 

Now Open Services.msc – Open SQL Server browser Service – Set to automatic

image

 

Now Start SQL Server Browser Service

image

 

Now Reboot or Restart SQL Services for changes to take effect.

Step 12:

Login as Domain\Besadmin .

Download MAPI CDO and Install it . Next- Install – and Finish

http://www.microsoft.com/en-us/download/details.aspx?id=39045

please verify you are downloading the latest version .

version 6.5.8289.0 or later

image

 

image

 

Step 13:

Login as Domain\Besadmin

Now download Blackberry Enterprise Server Trial version from the below link

https://www.blackberry.com/eBES/trialOrder.do?id=15\

Download – Extract

Continue Installation

image

 

Accept

image

 

Choose Next

image

 

Choose next

image

 

Chose Next

image

 

Choose BES server name , Have the Same as host name . so that you don’t go confused

image

 

Choose Continue

image

 

Choose Next

image

 

Choose next

image

 

SRP Lookup by Country

https://www.blackberry.com/SRPAddressLookup/index.do

Step 14 :

Now

Open Registry

  • Log in to the server to which the BlackBerry Enterprise Server software is to be installed using the service account (BESAdmin).
  • Open the Registry Editor: Click Start > Run, type regedit and click OK.
  • Navigate to HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem.
  • On the left hand side, right-click on Windows Messaging Subsystem, expand New, and select String Value.
  • Enter RPCHTTPProxyMap_BES in the Name field.
  • Double-click the RPCHTTPProxyMap_BES registry value.
  • Type *=https://<FrontEndPoolFQDN> in the value field.
  • Click OK, and then close the Registry Editor.
    image

     

    Open MMC – Add Certificated Snap in – Add the Cert to Trusted Root Container , so that when it query the CAS server , it wont give a Cert Error

    image

     

    Reference link :

    Step 15 :

    A small bug in this step – Enter the DC name – if exchange Server Name Fails. Don’t Check name , Just Click Next

    image

     

    Reference :

    http://supportforums.blackberry.com/t5/BlackBerry-Enterprise-Service-10/BES-5-03-Setup-0x80040115-on-MAPI-config/td-p/1868435

    If the BES setup asks you for the Exchange server and the Exchange account to be used you should not do as requested as it does not work.

    Instead you should enter the GC-server instead of the Exchange server and you should not press the check name button. Then it works even if I don’t have a clue why.

    Step 16 :

    Choose Next

    image

     

    image

     

    image

     

    Now Click On start Services  –

    image

     

     

    Now Will see Upgrading to Latest Version and Testing it in the next Part.

     

     

     

     

     

     

     

     

     

     

Satheshwaran Manoharan
Satheshwaran Manoharanhttps://www.azure365pro.com
Specialized in Microsoft Azure - Office 365 / Microsoft Exchange; conducted numerous projects worldwide in designing, supporting, and implementing messaging and virtualization infrastructure for medium-sized and large enterprises. Further, I am a Cloud Architect and Technical Advisor for various start-ups.

Related Articles

10 COMMENTS

  1. Hi,
    I am trying to install the BES 5 on Window 2012 Standard, Installed the latest version of MAPI CDO but the registry key is missing
    HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem

    Kindly advise what could be the issue

  2. Hey, Thanks for the article. do you have any good article which has the communication architecture between BES5 and exchange 2013.

  3. Hi Satish

    I our environment I noticed our BES Service account is part of domainadmins.

    Do we have any valid reason behind it ? if not shall I go ahead and remove the account from domainAdmins groups or any pre-check need to be made before removing from the group

LEAVE A REPLY

Please enter your comment!
Please enter your name here

× How can I help you?