BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 07-19-2006, 09:05 AM   #1 (permalink)
New Member
 
Join Date: Jul 2006
Model: 7100T
Posts: 1
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default Adding untrusted X.509 cert chain to cacerts file

Please Login to Remove!

Good morning,

I have been unsuccessful in my attempt to correctly add an untrusted certificate chain to my BES so that applications which talk to the BES have a trusted SSL link. The Admin Guide is not very helpful (vague).

Specifically, our enterprise uses certs from DST, and DST certs are not loaded into the cacerts file by default (34 other certs are, however).

This certificate chain has a root, a sub-CA, a second sub-CA and the server cert.

I have tried using keytool and importing all three CA certs individually (as a .cer file) into the cacerts file and the import process does work. There are now 37 certs in the cacerts file.

What else needs to be done? Does the server certificate need to be stored somewhere else on the BES? Is there a truststore file or keystore file in addition to the cacerts file that the BES uses?

Is the cacerts file stored in memory and thus the does the BES need to be restarted for the new certs to be seen?

The error message seen on the BB is "Access denied Insecure SSL request"

Any help or guidance is appreciated!

Thanks!
Joe

Last edited by jlareau : 07-19-2006 at 09:34 AM.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Condiment Dispenser 6 Compartments Fruit Server Caddy Food Tray Salad Bar NEW
$0.99
Condiment Dispenser 6 Compartments Fruit Server Caddy Food Tray Salad Bar NEW picture# SALE. Bretford locking food/bar/utility/server cart new with power port
$475.0
# SALE. Bretford locking  food/bar/utility/server  cart new with power port  pictureSupermicro X6DHT-G Dual Xeon Server Motherboard w/ Adaptec AAR-2020SA
$199.99
Supermicro X6DHT-G Dual Xeon Server Motherboard w/ Adaptec AAR-2020SA  picture6 Wihte 1 POCKET Half Apron WAITER SERVER BISTRO + Carabiner Y
$25.0
6 Wihte 1 POCKET Half Apron WAITER SERVER BISTRO + Carabiner Y pictureNEW IBM BLADE SERVER OPTICAL PASS THROUGH MODULE PN: 02R9082
$74.99
NEW IBM BLADE SERVER OPTICAL PASS THROUGH MODULE PN: 02R9082 picture






Copyright 2004-2016 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.