I did fix the issue on my BES attached BB by having the IT dept do their thing. I've just been looking for a way to remove the restriction from my old BB so I can use the keyboard (and others) on that BB as well. I may have to switch devices so the new policy is pushed to the old device. However, that only allows the one particular application permission to the keystroke injection. It doesn't really *solve* the core problem.