Ok first of all I had better explain a few things.
I work for a small business who currently rent a pop mailbox from another company (which also includes our domain name registered on their server), on a "catch all" basis. (Wasn't my idea this is what happens when the bosses do things off their own bat before they hand you the job of the IT management)
We have 12 users within the company who need email and thus we run and internal email server to collect email from the rented pop mail box, sort the email, perform spam, anti virus filtering before sorting users email for them to collect. I ended up using SME Server as an emergency fallback on a spare machine since the previous email server software on NT used as a file server keeled over and couldn't be recovered.
My bosses have purchased a Blackberry each. Now collecting the email from the pop mailbox provider is a no go since the amount of spam sitting on it before it is filtered by our internal email server is a serious amount to provide a problem without spam filtering as well as the fact they will pick up mail which is not meant for other users. So, I need their Blackberries to connect to email server sitting in the office where they can collect their own email via SSL IMAP. The problem I have (and believe me I have crawled all over the blackberry forums without success) is the Blackberries only like signed valid SSL Certificates and thus the server signed certificate by SME server registers as an error therefore making the blackberry refuse to connect to our sme server.
Unless I am missing something, the only viable solutions would be:-
1) Turn on unsecured IMAP on SME Server
I don't really want to do this as ideally we need to use SSL due to confidential material being part of our business, although it probably would save me a headache.
2) Get our domain name transferred to us, so we can go direct to a hosting provider (who provides a free SSL certificate as part of the ecommerce hosting package) and ditch SME Server entirely. Torn here because I like keep my finger on the pulse for the spam filtering and adapt it as necessary.
3) Get our domain transferred and host our own servers using SME server. Price of building new servers isn't going to sit well with the boss.
So far as I can see there is no way I can solve the SSL certificate problem with the current setup because we do not currently control our own domain. Looking for confirmation really to make sure I haven't missed anything before I sit the boss down and try to explain the technicalities to a non tech of how am I am going to get the blackberries to work so they can collect their email!