BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 06-12-2007, 06:26 AM   #1 (permalink)
New Member
 
Join Date: Jun 2007
Model: 8100
PIN: N/A
Carrier: oRANGE
Posts: 5
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default Importing trusted root certificates for MDS

Please Login to Remove!

Hi,

I'm trying to test a connection to an SSL server through MDS. I have a trial Verisign SSL certificate installed on the SSL server and I need to import the Verisign Trial Root certificate in the MDS server (Verisign provides a different root certificate for trial SSL certificates).

From what I've read in the BES documentation, I have to import the root certificate in the Java keystore (jdk 1.4.2_08) which is installed on the machine that runs the BES. However, after I imported the certificate, I still get the "Insecure SSL Request" message on my Blackberry device. I know that MDS has a flag that can be set to accept insecure connections, and it works, but I want the device to not display anything to the user, that's why I'm testing the Verisign Trial solution.

Is there anything that I'm doing wrong here? Should I restart the server after importing the certificate?
Offline  
Old 06-12-2007, 07:16 AM   #2 (permalink)
BlackBerry Genius
 
hdawg's Avatar
 
Join Date: Aug 2006
Model: hdawg
PIN: port3101.org
Carrier: hdawg
Posts: 6,632
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

I *think* this is what you're looking for ... you shouldn't need to restart.

If you go to Options --> Security Options --> TLS

You can modify the settings here. I beleive if you set the 'TLS Default' to "Proxy" you'll be all set as the SSL connection will only be established between the BES and the destination server. Also, set the 'Allow HTTPS
Redirections' field to "Yes".
Offline  
Old 06-12-2007, 07:35 AM   #3 (permalink)
New Member
 
Join Date: Jun 2007
Model: 8100
PIN: N/A
Carrier: oRANGE
Posts: 5
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

I already did that on the device side. The device is set to proxy mode, so SSL should be done only between the BES and the SSL server.
I think that there must be something wrong on the BES/MDS side because it is as if the root certificates are not imported correctly.
Offline  
Old 06-13-2007, 07:17 AM   #4 (permalink)
New Member
 
Join Date: Jun 2007
Model: 8100
PIN: N/A
Carrier: oRANGE
Posts: 5
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Isn't there anyone who has had this problem before? It seems to be a basic issue that should have been dealt with so far.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On





Copyright 2004-2014 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.