In 4.1.6 I was able to add a AD group to a security role which was nice because I didn't have to manage individual users. I tried to add a AD group in BES 5 as an admin user but it complains because it isn't a user. Is it possible to use AD groups in 5 like 4.1.6?

Anyone?

I'm told that AD integration has been removed, which is a pain. Though in fairness it often didn't work very well - at least in my experience. Going to have to add individual users to each role. The bit that really bugs me about that is that all users (BlackBerry users and Admin users) show up when you hit the search button. Would really like to be able to filter that.

I called RIM on this exact issue. We had a pretty good tiered support model with 4.1 built with AD groups but we're having to recreate it within the BAS. The support person I spoke with was surprised that he hadn't heard of this call before. At the moment, it's been submitted as a feature request and may be implemented sometime in the future.

From my understanding, it's how authorization has been changed. When you add a AD group in 4.1, it would added as a SQL user. With 5.0, all of the added admin users appear to be added to a SQL table.

Hope this helps ...

I'm not positive on this but i think this has to do with DB mirroring. If the DB fails over, the users wouldn't failover in 4.1 because they are specifically listed as SQL users which resides on the SQL instance and not in the actual DB. now that they are in the actual DB that would failover as well.